/usr/bin/java -ea -Xmx8000000000 -Xss4m -jar ./plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata ./data --core.log.level.for.class de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=WARN -tc ../../../trunk/examples/toolchains/AutomizerC.xml -s ../../../trunk/examples/settings/default/automizer/svcomp-Reach-32bit-Automizer_Default.epf -i ../../../trunk/examples/svcomp/ntdrivers/kbfiltr.i.cil-2.c -------------------------------------------------------------------------------- This is Ultimate 0.2.2-dev-fb4f59a-m [2022-04-27 15:12:40,712 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-04-27 15:12:40,713 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-04-27 15:12:40,761 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-04-27 15:12:40,761 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-04-27 15:12:40,762 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-04-27 15:12:40,763 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-04-27 15:12:40,764 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-04-27 15:12:40,765 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-04-27 15:12:40,766 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-04-27 15:12:40,766 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-04-27 15:12:40,767 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-04-27 15:12:40,767 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-04-27 15:12:40,768 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-04-27 15:12:40,769 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-04-27 15:12:40,769 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-04-27 15:12:40,770 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-04-27 15:12:40,771 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-04-27 15:12:40,778 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-04-27 15:12:40,782 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-04-27 15:12:40,785 INFO L181 SettingsManager]: Resetting HornVerifier preferences to default values [2022-04-27 15:12:40,788 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-04-27 15:12:40,789 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-04-27 15:12:40,791 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-04-27 15:12:40,793 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-04-27 15:12:40,798 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-04-27 15:12:40,798 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-04-27 15:12:40,798 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-04-27 15:12:40,799 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-04-27 15:12:40,799 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-04-27 15:12:40,800 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-04-27 15:12:40,800 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-04-27 15:12:40,800 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-04-27 15:12:40,801 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-04-27 15:12:40,801 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-04-27 15:12:40,802 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-04-27 15:12:40,802 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-04-27 15:12:40,802 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-04-27 15:12:40,802 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-04-27 15:12:40,802 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-04-27 15:12:40,803 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-04-27 15:12:40,805 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-04-27 15:12:40,806 INFO L101 SettingsManager]: Beginning loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../../../trunk/examples/settings/default/automizer/svcomp-Reach-32bit-Automizer_Default.epf [2022-04-27 15:12:40,831 INFO L113 SettingsManager]: Loading preferences was successful [2022-04-27 15:12:40,832 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-04-27 15:12:40,832 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-04-27 15:12:40,832 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-04-27 15:12:40,832 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-04-27 15:12:40,832 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-04-27 15:12:40,833 INFO L136 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2022-04-27 15:12:40,833 INFO L138 SettingsManager]: * Create parallel compositions if possible=false [2022-04-27 15:12:40,833 INFO L138 SettingsManager]: * Use SBE=true [2022-04-27 15:12:40,833 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-04-27 15:12:40,834 INFO L138 SettingsManager]: * sizeof long=4 [2022-04-27 15:12:40,834 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-04-27 15:12:40,834 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-04-27 15:12:40,834 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-04-27 15:12:40,834 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-04-27 15:12:40,834 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-04-27 15:12:40,834 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-04-27 15:12:40,834 INFO L138 SettingsManager]: * sizeof long double=12 [2022-04-27 15:12:40,834 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-04-27 15:12:40,834 INFO L138 SettingsManager]: * Use constant arrays=true [2022-04-27 15:12:40,834 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-04-27 15:12:40,834 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-04-27 15:12:40,834 INFO L138 SettingsManager]: * Size of a code block=SequenceOfStatements [2022-04-27 15:12:40,835 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-04-27 15:12:40,835 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-04-27 15:12:40,835 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-04-27 15:12:40,835 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-04-27 15:12:40,835 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-04-27 15:12:40,835 INFO L138 SettingsManager]: * Trace refinement strategy=CAMEL [2022-04-27 15:12:40,835 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-04-27 15:12:40,835 INFO L138 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2022-04-27 15:12:40,835 INFO L138 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2022-04-27 15:12:40,835 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-04-27 15:12:40,836 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.core: Log level for class -> de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=WARN; [2022-04-27 15:12:41,008 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-04-27 15:12:41,020 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-04-27 15:12:41,021 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-04-27 15:12:41,022 INFO L271 PluginConnector]: Initializing CDTParser... [2022-04-27 15:12:41,023 INFO L275 PluginConnector]: CDTParser initialized [2022-04-27 15:12:41,023 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../../../trunk/examples/svcomp/ntdrivers/kbfiltr.i.cil-2.c [2022-04-27 15:12:41,060 INFO L220 CDTParser]: Created temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/0224b6a38/105f1a419a844558983287ac94cf6146/FLAGaf3fb57a7 [2022-04-27 15:12:41,511 INFO L306 CDTParser]: Found 1 translation units. [2022-04-27 15:12:41,511 INFO L160 CDTParser]: Scanning /storage/repos/ultimate/trunk/examples/svcomp/ntdrivers/kbfiltr.i.cil-2.c [2022-04-27 15:12:41,532 INFO L349 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/0224b6a38/105f1a419a844558983287ac94cf6146/FLAGaf3fb57a7 [2022-04-27 15:12:41,838 INFO L357 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/0224b6a38/105f1a419a844558983287ac94cf6146 [2022-04-27 15:12:41,840 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-04-27 15:12:41,841 INFO L131 ToolchainWalker]: Walking toolchain with 4 elements. [2022-04-27 15:12:41,844 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-04-27 15:12:41,844 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-04-27 15:12:41,846 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-04-27 15:12:41,847 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 27.04 03:12:41" (1/1) ... [2022-04-27 15:12:41,848 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@22fa67d9 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.04 03:12:41, skipping insertion in model container [2022-04-27 15:12:41,848 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 27.04 03:12:41" (1/1) ... [2022-04-27 15:12:41,852 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-04-27 15:12:41,929 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-04-27 15:12:42,204 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/trunk/examples/svcomp/ntdrivers/kbfiltr.i.cil-2.c[62209,62222] [2022-04-27 15:12:42,339 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-04-27 15:12:42,350 INFO L203 MainTranslator]: Completed pre-run [2022-04-27 15:12:42,406 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/trunk/examples/svcomp/ntdrivers/kbfiltr.i.cil-2.c[62209,62222] [2022-04-27 15:12:42,519 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-04-27 15:12:42,543 INFO L208 MainTranslator]: Completed translation [2022-04-27 15:12:42,543 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.04 03:12:42 WrapperNode [2022-04-27 15:12:42,543 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-04-27 15:12:42,544 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-04-27 15:12:42,544 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-04-27 15:12:42,544 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-04-27 15:12:42,551 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.04 03:12:42" (1/1) ... [2022-04-27 15:12:42,551 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.04 03:12:42" (1/1) ... [2022-04-27 15:12:42,583 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.04 03:12:42" (1/1) ... [2022-04-27 15:12:42,591 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.04 03:12:42" (1/1) ... [2022-04-27 15:12:42,660 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.04 03:12:42" (1/1) ... [2022-04-27 15:12:42,674 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.04 03:12:42" (1/1) ... [2022-04-27 15:12:42,685 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.04 03:12:42" (1/1) ... [2022-04-27 15:12:42,693 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-04-27 15:12:42,694 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-04-27 15:12:42,694 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-04-27 15:12:42,694 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-04-27 15:12:42,695 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.04 03:12:42" (1/1) ... [2022-04-27 15:12:42,704 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-04-27 15:12:42,711 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2022-04-27 15:12:42,719 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-04-27 15:12:42,723 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-04-27 15:12:42,740 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.init [2022-04-27 15:12:42,744 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-04-27 15:12:42,744 INFO L138 BoogieDeclarations]: Found implementation of procedure ##fun~~PVOID~0~X~~PVOID~0~X~$Pointer$~X~$Pointer$~X~~PBOOLEAN~0~TO~~NTSTATUS~0 [2022-04-27 15:12:42,744 INFO L138 BoogieDeclarations]: Found implementation of procedure ##fun~~PVOID~0~X~~PKEYBOARD_INPUT_DATA~0~X~~POUTPUT_PACKET~0~X~~UCHAR~0~X~~PUCHAR~0~X~~PBOOLEAN~0~X~~PKEYBOARD_SCAN_STATE~0~TO~~BOOLEAN~0 [2022-04-27 15:12:42,744 INFO L138 BoogieDeclarations]: Found implementation of procedure ##fun~~PVOID~0~X~~PVOID~0~X~~PVOID~0~X~~PVOID~0~TO~VOID [2022-04-27 15:12:42,744 INFO L138 BoogieDeclarations]: Found implementation of procedure reach_error [2022-04-27 15:12:42,744 INFO L138 BoogieDeclarations]: Found implementation of procedure assume_abort_if_not [2022-04-27 15:12:42,744 INFO L138 BoogieDeclarations]: Found implementation of procedure InterlockedIncrement [2022-04-27 15:12:42,744 INFO L138 BoogieDeclarations]: Found implementation of procedure InterlockedDecrement [2022-04-27 15:12:42,744 INFO L138 BoogieDeclarations]: Found implementation of procedure KbFilter_IoCtl [2022-04-27 15:12:42,744 INFO L138 BoogieDeclarations]: Found implementation of procedure errorFn [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure _BLAST_init [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure DriverEntry [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure KbFilter_AddDevice [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure KbFilter_Complete [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure KbFilter_CreateClose [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure KbFilter_DispatchPassThrough [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure KbFilter_InternIoCtl [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure KbFilter_PnP [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure KbFilter_Power [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure KbFilter_InitializationRoutine [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure KbFilter_IsrHook [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure KbFilter_ServiceCallback [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure KbFilter_Unload [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure stub_driver_init [2022-04-27 15:12:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure main [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure ExAcquireFastMutex [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure ExReleaseFastMutex [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure ExAllocatePoolWithTag [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure ExFreePool [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure ExfInterlockedInsertHeadList [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure ExfInterlockedInsertTailList [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure ExfInterlockedRemoveHeadList [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure IoAllocateMdl [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure IoAttachDeviceToDeviceStack [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure IoBuildAsynchronousFsdRequest [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure IoBuildDeviceIoControlRequest [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure IoCreateDevice [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure IoCreateSymbolicLink [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure IoDeleteDevice [2022-04-27 15:12:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure IoDeleteSymbolicLink [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure IoDetachDevice [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure IoFreeIrp [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure IoFreeMdl [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure IoGetConfigurationInformation [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure IoQueryDeviceDescription [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure IoRegisterDeviceInterface [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure IoReleaseCancelSpinLock [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure IoSetDeviceInterfaceState [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure IoSetHardErrorOrVerifyDevice [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure stubMoreProcessingRequired [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure IofCallDriver [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure IofCompleteRequest [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure KeAcquireSpinLockRaiseToDpc [2022-04-27 15:12:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure KeDelayExecutionThread [2022-04-27 15:12:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure KeInitializeEvent [2022-04-27 15:12:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure KeInitializeSemaphore [2022-04-27 15:12:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure KeInitializeSpinLock [2022-04-27 15:12:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure KeReleaseSemaphore [2022-04-27 15:12:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure KfReleaseSpinLock [2022-04-27 15:12:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure KeSetEvent [2022-04-27 15:12:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure KeWaitForSingleObject [2022-04-27 15:12:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure MmAllocateContiguousMemory [2022-04-27 15:12:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure MmFreeContiguousMemory [2022-04-27 15:12:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure MmMapLockedPagesSpecifyCache [2022-04-27 15:12:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure MmPageEntireDriver [2022-04-27 15:12:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure MmResetDriverPaging [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure MmUnlockPages [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure ObReferenceObjectByHandle [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure ObfDereferenceObject [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure PoCallDriver [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure PoStartNextPowerIrp [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure PsCreateSystemThread [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure PsTerminateSystemThread [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure RtlAnsiStringToUnicodeString [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure RtlCompareMemory [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure RtlCopyUnicodeString [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure RtlDeleteRegistryValue [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure RtlFreeUnicodeString [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure RtlInitString [2022-04-27 15:12:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure RtlInitUnicodeString [2022-04-27 15:12:42,750 INFO L138 BoogieDeclarations]: Found implementation of procedure RtlQueryRegistryValues [2022-04-27 15:12:42,750 INFO L138 BoogieDeclarations]: Found implementation of procedure ZwClose [2022-04-27 15:12:42,750 INFO L138 BoogieDeclarations]: Found implementation of procedure #Ultimate.C_memset [2022-04-27 15:12:42,750 INFO L138 BoogieDeclarations]: Found implementation of procedure #Ultimate.C_memmove [2022-04-27 15:12:42,750 INFO L130 BoogieDeclarations]: Found specification of procedure abort [2022-04-27 15:12:42,750 INFO L130 BoogieDeclarations]: Found specification of procedure __assert_fail [2022-04-27 15:12:42,750 INFO L130 BoogieDeclarations]: Found specification of procedure reach_error [2022-04-27 15:12:42,750 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-04-27 15:12:42,750 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_nondet_char [2022-04-27 15:12:42,750 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_nondet_int [2022-04-27 15:12:42,750 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_nondet_long [2022-04-27 15:12:42,750 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_nondet_ulong [2022-04-27 15:12:42,750 INFO L130 BoogieDeclarations]: Found specification of procedure assume_abort_if_not [2022-04-27 15:12:42,750 INFO L130 BoogieDeclarations]: Found specification of procedure memcpy [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure memmove [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure memset [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure RtlQueryRegistryValues [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure RtlDeleteRegistryValue [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure RtlInitString [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure RtlInitUnicodeString [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure RtlAnsiStringToUnicodeString [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure RtlCopyUnicodeString [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure RtlFreeUnicodeString [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure RtlCompareMemory [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure InterlockedIncrement [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure read~int [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure write~int [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure InterlockedDecrement [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure KeInitializeEvent [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure KeSetEvent [2022-04-27 15:12:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure KeInitializeSemaphore [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure KeReleaseSemaphore [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure KeDelayExecutionThread [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure KeWaitForSingleObject [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure KeInitializeSpinLock [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure KfReleaseSpinLock [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure ExAllocatePoolWithTag [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure ExFreePool [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure ExAcquireFastMutex [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure ExReleaseFastMutex [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure ExfInterlockedInsertHeadList [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure ExfInterlockedInsertTailList [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure ExfInterlockedRemoveHeadList [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure MmUnlockPages [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure MmMapLockedPagesSpecifyCache [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure MmAllocateContiguousMemory [2022-04-27 15:12:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure MmFreeContiguousMemory [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure MmResetDriverPaging [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure MmPageEntireDriver [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure PsCreateSystemThread [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure PsTerminateSystemThread [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IoAllocateMdl [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IoAttachDeviceToDeviceStack [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IoBuildAsynchronousFsdRequest [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IoBuildDeviceIoControlRequest [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IofCallDriver [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IofCompleteRequest [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IoCreateDevice [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IoCreateSymbolicLink [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IoDeleteDevice [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IoDeleteSymbolicLink [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IoDetachDevice [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IoFreeIrp [2022-04-27 15:12:42,753 INFO L130 BoogieDeclarations]: Found specification of procedure IoFreeMdl [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure IoGetConfigurationInformation [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure IoQueryDeviceDescription [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure IoReleaseCancelSpinLock [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure IoSetHardErrorOrVerifyDevice [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure IoRegisterDeviceInterface [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure IoSetDeviceInterfaceState [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure PoCallDriver [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure PoStartNextPowerIrp [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure ObReferenceObjectByHandle [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure ObfDereferenceObject [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure ZwClose [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure KbFilter_AddDevice [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure KbFilter_CreateClose [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure KbFilter_DispatchPassThrough [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure KbFilter_InternIoCtl [2022-04-27 15:12:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure KbFilter_IoCtl [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure KbFilter_PnP [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure KbFilter_Power [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure KbFilter_InitializationRoutine [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure KbFilter_IsrHook [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure KbFilter_ServiceCallback [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure KbFilter_Unload [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure DriverEntry [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure malloc [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure errorFn [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure _BLAST_init [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure write~$Pointer$ [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure read~$Pointer$ [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocOnStack [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.dealloc [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.C_memset [2022-04-27 15:12:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure KbFilter_Complete [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.C_memmove [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure ##fun~~PVOID~0~X~~PVOID~0~X~$Pointer$~X~$Pointer$~X~~PBOOLEAN~0~TO~~NTSTATUS~0 [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure ##fun~~PVOID~0~X~~PKEYBOARD_INPUT_DATA~0~X~~POUTPUT_PACKET~0~X~~UCHAR~0~X~~PUCHAR~0~X~~PBOOLEAN~0~X~~PKEYBOARD_SCAN_STATE~0~TO~~BOOLEAN~0 [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure ##fun~~PVOID~0~X~~PVOID~0~X~~PVOID~0~X~~PVOID~0~TO~VOID [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure stub_driver_init [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_nondet_uchar [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure main [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocOnHeap [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure stubMoreProcessingRequired [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure KeAcquireSpinLockRaiseToDpc [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.init [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure write~unchecked~$Pointer$ [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure read~unchecked~$Pointer$ [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure write~unchecked~int [2022-04-27 15:12:42,756 INFO L130 BoogieDeclarations]: Found specification of procedure read~unchecked~int [2022-04-27 15:12:43,056 INFO L234 CfgBuilder]: Building ICFG [2022-04-27 15:12:43,060 INFO L260 CfgBuilder]: Building CFG for each procedure with an implementation [2022-04-27 15:12:43,084 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,131 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,132 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,132 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,138 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,138 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,154 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,159 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,160 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,160 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,173 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,173 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,176 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,183 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,183 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,414 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,435 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,436 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,436 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,459 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,459 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,460 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,484 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,484 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,507 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,513 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,513 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,514 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,519 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,519 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,520 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,530 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,530 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,574 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,580 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,580 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,581 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,587 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,587 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,599 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,746 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##43: assume false; [2022-04-27 15:12:43,746 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##44: assume !false; [2022-04-27 15:12:43,758 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,778 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##12: assume !false; [2022-04-27 15:12:43,778 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##11: assume false; [2022-04-27 15:12:43,789 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:43,793 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:43,793 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:43,796 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:45,374 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##21: assume !false; [2022-04-27 15:12:45,375 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##20: assume false; [2022-04-27 15:12:45,491 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:45,495 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:45,495 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:45,631 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:45,634 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:45,635 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:45,648 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:45,662 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##12: assume !false; [2022-04-27 15:12:45,663 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##11: assume false; [2022-04-27 15:12:45,672 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:45,680 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##16: assume !false; [2022-04-27 15:12:45,681 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##15: assume false; [2022-04-27 15:12:45,713 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:45,721 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:45,722 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:45,725 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:45,753 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##10: assume !false; [2022-04-27 15:12:45,753 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##9: assume false; [2022-04-27 15:12:45,755 WARN L811 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2022-04-27 15:12:45,759 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##4: assume !false; [2022-04-27 15:12:45,760 INFO L764 $ProcedureCfgBuilder]: dead code at ProgramPoint $Ultimate##3: assume false; [2022-04-27 15:12:45,783 INFO L275 CfgBuilder]: Performing block encoding [2022-04-27 15:12:45,791 INFO L294 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-04-27 15:12:45,791 INFO L299 CfgBuilder]: Removed 0 assume(true) statements. [2022-04-27 15:12:45,792 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 27.04 03:12:45 BoogieIcfgContainer [2022-04-27 15:12:45,792 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-04-27 15:12:45,793 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-04-27 15:12:45,793 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-04-27 15:12:45,800 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-04-27 15:12:45,800 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 27.04 03:12:41" (1/3) ... [2022-04-27 15:12:45,800 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@30f464e3 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 27.04 03:12:45, skipping insertion in model container [2022-04-27 15:12:45,800 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.04 03:12:42" (2/3) ... [2022-04-27 15:12:45,800 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@30f464e3 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 27.04 03:12:45, skipping insertion in model container [2022-04-27 15:12:45,801 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 27.04 03:12:45" (3/3) ... [2022-04-27 15:12:45,801 INFO L111 eAbstractionObserver]: Analyzing ICFG kbfiltr.i.cil-2.c [2022-04-27 15:12:45,812 INFO L201 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-04-27 15:12:45,812 INFO L160 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-04-27 15:12:45,853 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-04-27 15:12:45,857 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=de.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings@3632668c, mLbeIndependenceSettings=de.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings@62da0afd [2022-04-27 15:12:45,857 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-04-27 15:12:45,865 INFO L276 IsEmpty]: Start isEmpty. Operand has 308 states, 230 states have (on average 1.5) internal successors, (345), 248 states have internal predecessors, (345), 49 states have call successors, (49), 27 states have call predecessors, (49), 27 states have return successors, (49), 47 states have call predecessors, (49), 49 states have call successors, (49) [2022-04-27 15:12:45,869 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2022-04-27 15:12:45,870 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:12:45,870 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:12:45,870 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:12:45,873 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:12:45,873 INFO L85 PathProgramCache]: Analyzing trace with hash 1774662017, now seen corresponding path program 1 times [2022-04-27 15:12:45,879 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:12:45,879 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [690303269] [2022-04-27 15:12:45,879 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:12:45,879 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:12:46,145 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:12:46,334 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:12:46,339 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:12:46,354 INFO L290 TraceCheckUtils]: 0: Hoare triple {328#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {311#true} is VALID [2022-04-27 15:12:46,354 INFO L290 TraceCheckUtils]: 1: Hoare triple {311#true} assume true; {311#true} is VALID [2022-04-27 15:12:46,355 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {311#true} {311#true} #1270#return; {311#true} is VALID [2022-04-27 15:12:46,386 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:12:46,389 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:12:46,398 INFO L290 TraceCheckUtils]: 0: Hoare triple {329#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {311#true} is VALID [2022-04-27 15:12:46,399 INFO L290 TraceCheckUtils]: 1: Hoare triple {311#true} assume true; {311#true} is VALID [2022-04-27 15:12:46,399 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {311#true} {311#true} #1216#return; {311#true} is VALID [2022-04-27 15:12:46,405 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:12:46,423 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:12:46,435 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:12:46,436 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:12:46,443 INFO L290 TraceCheckUtils]: 0: Hoare triple {311#true} ~cond := #in~cond; {311#true} is VALID [2022-04-27 15:12:46,444 INFO L290 TraceCheckUtils]: 1: Hoare triple {311#true} assume 0 == ~cond;assume false; {312#false} is VALID [2022-04-27 15:12:46,444 INFO L290 TraceCheckUtils]: 2: Hoare triple {312#false} assume true; {312#false} is VALID [2022-04-27 15:12:46,444 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {312#false} {311#true} #1254#return; {312#false} is VALID [2022-04-27 15:12:46,445 INFO L290 TraceCheckUtils]: 0: Hoare triple {330#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {311#true} is VALID [2022-04-27 15:12:46,445 INFO L272 TraceCheckUtils]: 1: Hoare triple {311#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {311#true} is VALID [2022-04-27 15:12:46,445 INFO L290 TraceCheckUtils]: 2: Hoare triple {311#true} ~cond := #in~cond; {311#true} is VALID [2022-04-27 15:12:46,446 INFO L290 TraceCheckUtils]: 3: Hoare triple {311#true} assume 0 == ~cond;assume false; {312#false} is VALID [2022-04-27 15:12:46,446 INFO L290 TraceCheckUtils]: 4: Hoare triple {312#false} assume true; {312#false} is VALID [2022-04-27 15:12:46,447 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {312#false} {311#true} #1254#return; {312#false} is VALID [2022-04-27 15:12:46,447 INFO L290 TraceCheckUtils]: 6: Hoare triple {312#false} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {312#false} is VALID [2022-04-27 15:12:46,447 INFO L290 TraceCheckUtils]: 7: Hoare triple {312#false} assume true; {312#false} is VALID [2022-04-27 15:12:46,447 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {312#false} {311#true} #1218#return; {312#false} is VALID [2022-04-27 15:12:46,449 INFO L272 TraceCheckUtils]: 0: Hoare triple {311#true} call ULTIMATE.init(); {328#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:12:46,449 INFO L290 TraceCheckUtils]: 1: Hoare triple {328#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {311#true} is VALID [2022-04-27 15:12:46,450 INFO L290 TraceCheckUtils]: 2: Hoare triple {311#true} assume true; {311#true} is VALID [2022-04-27 15:12:46,450 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {311#true} {311#true} #1270#return; {311#true} is VALID [2022-04-27 15:12:46,450 INFO L272 TraceCheckUtils]: 4: Hoare triple {311#true} call #t~ret213 := main(); {311#true} is VALID [2022-04-27 15:12:46,453 INFO L290 TraceCheckUtils]: 5: Hoare triple {311#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {311#true} is VALID [2022-04-27 15:12:46,455 INFO L272 TraceCheckUtils]: 6: Hoare triple {311#true} call _BLAST_init(); {329#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:12:46,455 INFO L290 TraceCheckUtils]: 7: Hoare triple {329#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {311#true} is VALID [2022-04-27 15:12:46,455 INFO L290 TraceCheckUtils]: 8: Hoare triple {311#true} assume true; {311#true} is VALID [2022-04-27 15:12:46,455 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {311#true} {311#true} #1216#return; {311#true} is VALID [2022-04-27 15:12:46,456 INFO L272 TraceCheckUtils]: 10: Hoare triple {311#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {330#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:12:46,456 INFO L290 TraceCheckUtils]: 11: Hoare triple {330#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {311#true} is VALID [2022-04-27 15:12:46,457 INFO L272 TraceCheckUtils]: 12: Hoare triple {311#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {311#true} is VALID [2022-04-27 15:12:46,457 INFO L290 TraceCheckUtils]: 13: Hoare triple {311#true} ~cond := #in~cond; {311#true} is VALID [2022-04-27 15:12:46,457 INFO L290 TraceCheckUtils]: 14: Hoare triple {311#true} assume 0 == ~cond;assume false; {312#false} is VALID [2022-04-27 15:12:46,457 INFO L290 TraceCheckUtils]: 15: Hoare triple {312#false} assume true; {312#false} is VALID [2022-04-27 15:12:46,457 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {312#false} {311#true} #1254#return; {312#false} is VALID [2022-04-27 15:12:46,457 INFO L290 TraceCheckUtils]: 17: Hoare triple {312#false} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {312#false} is VALID [2022-04-27 15:12:46,457 INFO L290 TraceCheckUtils]: 18: Hoare triple {312#false} assume true; {312#false} is VALID [2022-04-27 15:12:46,458 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {312#false} {311#true} #1218#return; {312#false} is VALID [2022-04-27 15:12:46,458 INFO L290 TraceCheckUtils]: 20: Hoare triple {312#false} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {312#false} is VALID [2022-04-27 15:12:46,458 INFO L290 TraceCheckUtils]: 21: Hoare triple {312#false} assume !(~status~5 >= 0); {312#false} is VALID [2022-04-27 15:12:46,458 INFO L290 TraceCheckUtils]: 22: Hoare triple {312#false} assume !(1 == ~pended~0); {312#false} is VALID [2022-04-27 15:12:46,458 INFO L290 TraceCheckUtils]: 23: Hoare triple {312#false} assume !(1 == ~pended~0); {312#false} is VALID [2022-04-27 15:12:46,458 INFO L290 TraceCheckUtils]: 24: Hoare triple {312#false} assume !(~s~0 == ~UNLOADED~0); {312#false} is VALID [2022-04-27 15:12:46,458 INFO L290 TraceCheckUtils]: 25: Hoare triple {312#false} assume !(-1 == ~status~5); {312#false} is VALID [2022-04-27 15:12:46,458 INFO L290 TraceCheckUtils]: 26: Hoare triple {312#false} assume !(~s~0 != ~SKIP2~0); {312#false} is VALID [2022-04-27 15:12:46,459 INFO L290 TraceCheckUtils]: 27: Hoare triple {312#false} assume 1 == ~pended~0; {312#false} is VALID [2022-04-27 15:12:46,459 INFO L290 TraceCheckUtils]: 28: Hoare triple {312#false} assume 259 != ~status~5; {312#false} is VALID [2022-04-27 15:12:46,461 INFO L272 TraceCheckUtils]: 29: Hoare triple {312#false} call errorFn(); {312#false} is VALID [2022-04-27 15:12:46,461 INFO L290 TraceCheckUtils]: 30: Hoare triple {312#false} assume !false; {312#false} is VALID [2022-04-27 15:12:46,462 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:12:46,462 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:12:46,462 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [690303269] [2022-04-27 15:12:46,463 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [690303269] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:12:46,463 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:12:46,463 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2022-04-27 15:12:46,465 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1699479497] [2022-04-27 15:12:46,465 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:12:46,469 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 4.2) internal successors, (21), 2 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) Word has length 31 [2022-04-27 15:12:46,470 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:12:46,473 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 5 states, 5 states have (on average 4.2) internal successors, (21), 2 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) [2022-04-27 15:12:46,504 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 31 edges. 31 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:12:46,504 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-04-27 15:12:46,504 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:12:46,525 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-04-27 15:12:46,525 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2022-04-27 15:12:46,529 INFO L87 Difference]: Start difference. First operand has 308 states, 230 states have (on average 1.5) internal successors, (345), 248 states have internal predecessors, (345), 49 states have call successors, (49), 27 states have call predecessors, (49), 27 states have return successors, (49), 47 states have call predecessors, (49), 49 states have call successors, (49) Second operand has 5 states, 5 states have (on average 4.2) internal successors, (21), 2 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) [2022-04-27 15:12:48,611 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:12:51,176 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.71s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:12:53,451 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:12:53,452 INFO L93 Difference]: Finished difference Result 643 states and 953 transitions. [2022-04-27 15:12:53,452 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2022-04-27 15:12:53,452 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 4.2) internal successors, (21), 2 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) Word has length 31 [2022-04-27 15:12:53,452 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:12:53,453 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 5 states, 5 states have (on average 4.2) internal successors, (21), 2 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) [2022-04-27 15:12:53,480 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 6 states to 6 states and 953 transitions. [2022-04-27 15:12:53,481 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 5 states, 5 states have (on average 4.2) internal successors, (21), 2 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) [2022-04-27 15:12:53,499 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 6 states to 6 states and 953 transitions. [2022-04-27 15:12:53,501 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 6 states and 953 transitions. [2022-04-27 15:12:54,366 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 953 edges. 953 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:12:54,383 INFO L225 Difference]: With dead ends: 643 [2022-04-27 15:12:54,383 INFO L226 Difference]: Without dead ends: 343 [2022-04-27 15:12:54,386 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 14 GetRequests, 10 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=13, Invalid=17, Unknown=0, NotChecked=0, Total=30 [2022-04-27 15:12:54,388 INFO L413 NwaCegarLoop]: 332 mSDtfsCounter, 599 mSDsluCounter, 128 mSDsCounter, 0 mSdLazyCounter, 378 mSolverCounterSat, 225 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 604 SdHoareTripleChecker+Valid, 460 SdHoareTripleChecker+Invalid, 604 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 225 IncrementalHoareTripleChecker+Valid, 378 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.9s IncrementalHoareTripleChecker+Time [2022-04-27 15:12:54,389 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [604 Valid, 460 Invalid, 604 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [225 Valid, 378 Invalid, 1 Unknown, 0 Unchecked, 4.9s Time] [2022-04-27 15:12:54,406 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 343 states. [2022-04-27 15:12:54,451 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 343 to 299. [2022-04-27 15:12:54,451 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:12:54,456 INFO L82 GeneralOperation]: Start isEquivalent. First operand 343 states. Second operand has 299 states, 224 states have (on average 1.4464285714285714) internal successors, (324), 240 states have internal predecessors, (324), 49 states have call successors, (49), 27 states have call predecessors, (49), 25 states have return successors, (34), 34 states have call predecessors, (34), 34 states have call successors, (34) [2022-04-27 15:12:54,457 INFO L74 IsIncluded]: Start isIncluded. First operand 343 states. Second operand has 299 states, 224 states have (on average 1.4464285714285714) internal successors, (324), 240 states have internal predecessors, (324), 49 states have call successors, (49), 27 states have call predecessors, (49), 25 states have return successors, (34), 34 states have call predecessors, (34), 34 states have call successors, (34) [2022-04-27 15:12:54,459 INFO L87 Difference]: Start difference. First operand 343 states. Second operand has 299 states, 224 states have (on average 1.4464285714285714) internal successors, (324), 240 states have internal predecessors, (324), 49 states have call successors, (49), 27 states have call predecessors, (49), 25 states have return successors, (34), 34 states have call predecessors, (34), 34 states have call successors, (34) [2022-04-27 15:12:54,473 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:12:54,473 INFO L93 Difference]: Finished difference Result 343 states and 471 transitions. [2022-04-27 15:12:54,474 INFO L276 IsEmpty]: Start isEmpty. Operand 343 states and 471 transitions. [2022-04-27 15:12:54,481 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:12:54,481 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:12:54,483 INFO L74 IsIncluded]: Start isIncluded. First operand has 299 states, 224 states have (on average 1.4464285714285714) internal successors, (324), 240 states have internal predecessors, (324), 49 states have call successors, (49), 27 states have call predecessors, (49), 25 states have return successors, (34), 34 states have call predecessors, (34), 34 states have call successors, (34) Second operand 343 states. [2022-04-27 15:12:54,484 INFO L87 Difference]: Start difference. First operand has 299 states, 224 states have (on average 1.4464285714285714) internal successors, (324), 240 states have internal predecessors, (324), 49 states have call successors, (49), 27 states have call predecessors, (49), 25 states have return successors, (34), 34 states have call predecessors, (34), 34 states have call successors, (34) Second operand 343 states. [2022-04-27 15:12:54,496 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:12:54,496 INFO L93 Difference]: Finished difference Result 343 states and 471 transitions. [2022-04-27 15:12:54,496 INFO L276 IsEmpty]: Start isEmpty. Operand 343 states and 471 transitions. [2022-04-27 15:12:54,497 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:12:54,497 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:12:54,497 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:12:54,497 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:12:54,498 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 299 states, 224 states have (on average 1.4464285714285714) internal successors, (324), 240 states have internal predecessors, (324), 49 states have call successors, (49), 27 states have call predecessors, (49), 25 states have return successors, (34), 34 states have call predecessors, (34), 34 states have call successors, (34) [2022-04-27 15:12:54,506 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 299 states to 299 states and 407 transitions. [2022-04-27 15:12:54,508 INFO L78 Accepts]: Start accepts. Automaton has 299 states and 407 transitions. Word has length 31 [2022-04-27 15:12:54,508 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:12:54,508 INFO L495 AbstractCegarLoop]: Abstraction has 299 states and 407 transitions. [2022-04-27 15:12:54,508 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 4.2) internal successors, (21), 2 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) [2022-04-27 15:12:54,508 INFO L276 IsEmpty]: Start isEmpty. Operand 299 states and 407 transitions. [2022-04-27 15:12:54,509 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2022-04-27 15:12:54,509 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:12:54,509 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:12:54,509 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-04-27 15:12:54,510 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:12:54,510 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:12:54,510 INFO L85 PathProgramCache]: Analyzing trace with hash 186314115, now seen corresponding path program 1 times [2022-04-27 15:12:54,510 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:12:54,511 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1310561080] [2022-04-27 15:12:54,511 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:12:54,511 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:12:54,579 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:12:54,715 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:12:54,717 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:12:54,725 INFO L290 TraceCheckUtils]: 0: Hoare triple {2330#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {2311#true} is VALID [2022-04-27 15:12:54,725 INFO L290 TraceCheckUtils]: 1: Hoare triple {2311#true} assume true; {2311#true} is VALID [2022-04-27 15:12:54,725 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {2311#true} {2311#true} #1270#return; {2311#true} is VALID [2022-04-27 15:12:54,743 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:12:54,744 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:12:54,751 INFO L290 TraceCheckUtils]: 0: Hoare triple {2331#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {2311#true} is VALID [2022-04-27 15:12:54,751 INFO L290 TraceCheckUtils]: 1: Hoare triple {2311#true} assume true; {2311#true} is VALID [2022-04-27 15:12:54,751 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {2311#true} {2311#true} #1216#return; {2311#true} is VALID [2022-04-27 15:12:54,758 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:12:54,768 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:12:54,787 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:12:54,788 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:12:54,794 INFO L290 TraceCheckUtils]: 0: Hoare triple {2311#true} ~cond := #in~cond; {2311#true} is VALID [2022-04-27 15:12:54,795 INFO L290 TraceCheckUtils]: 1: Hoare triple {2311#true} assume !(0 == ~cond); {2311#true} is VALID [2022-04-27 15:12:54,795 INFO L290 TraceCheckUtils]: 2: Hoare triple {2311#true} assume true; {2311#true} is VALID [2022-04-27 15:12:54,795 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {2311#true} {2311#true} #1254#return; {2311#true} is VALID [2022-04-27 15:12:54,795 INFO L290 TraceCheckUtils]: 0: Hoare triple {2332#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {2311#true} is VALID [2022-04-27 15:12:54,795 INFO L272 TraceCheckUtils]: 1: Hoare triple {2311#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {2311#true} is VALID [2022-04-27 15:12:54,795 INFO L290 TraceCheckUtils]: 2: Hoare triple {2311#true} ~cond := #in~cond; {2311#true} is VALID [2022-04-27 15:12:54,795 INFO L290 TraceCheckUtils]: 3: Hoare triple {2311#true} assume !(0 == ~cond); {2311#true} is VALID [2022-04-27 15:12:54,795 INFO L290 TraceCheckUtils]: 4: Hoare triple {2311#true} assume true; {2311#true} is VALID [2022-04-27 15:12:54,796 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {2311#true} {2311#true} #1254#return; {2311#true} is VALID [2022-04-27 15:12:54,796 INFO L290 TraceCheckUtils]: 6: Hoare triple {2311#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {2337#(= |DriverEntry_#res| 0)} is VALID [2022-04-27 15:12:54,796 INFO L290 TraceCheckUtils]: 7: Hoare triple {2337#(= |DriverEntry_#res| 0)} assume true; {2337#(= |DriverEntry_#res| 0)} is VALID [2022-04-27 15:12:54,797 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {2337#(= |DriverEntry_#res| 0)} {2311#true} #1218#return; {2328#(= 0 |main_#t~ret169|)} is VALID [2022-04-27 15:12:54,798 INFO L272 TraceCheckUtils]: 0: Hoare triple {2311#true} call ULTIMATE.init(); {2330#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:12:54,798 INFO L290 TraceCheckUtils]: 1: Hoare triple {2330#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {2311#true} is VALID [2022-04-27 15:12:54,798 INFO L290 TraceCheckUtils]: 2: Hoare triple {2311#true} assume true; {2311#true} is VALID [2022-04-27 15:12:54,798 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {2311#true} {2311#true} #1270#return; {2311#true} is VALID [2022-04-27 15:12:54,798 INFO L272 TraceCheckUtils]: 4: Hoare triple {2311#true} call #t~ret213 := main(); {2311#true} is VALID [2022-04-27 15:12:54,798 INFO L290 TraceCheckUtils]: 5: Hoare triple {2311#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {2311#true} is VALID [2022-04-27 15:12:54,799 INFO L272 TraceCheckUtils]: 6: Hoare triple {2311#true} call _BLAST_init(); {2331#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:12:54,800 INFO L290 TraceCheckUtils]: 7: Hoare triple {2331#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {2311#true} is VALID [2022-04-27 15:12:54,800 INFO L290 TraceCheckUtils]: 8: Hoare triple {2311#true} assume true; {2311#true} is VALID [2022-04-27 15:12:54,800 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {2311#true} {2311#true} #1216#return; {2311#true} is VALID [2022-04-27 15:12:54,800 INFO L272 TraceCheckUtils]: 10: Hoare triple {2311#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {2332#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:12:54,800 INFO L290 TraceCheckUtils]: 11: Hoare triple {2332#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {2311#true} is VALID [2022-04-27 15:12:54,801 INFO L272 TraceCheckUtils]: 12: Hoare triple {2311#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {2311#true} is VALID [2022-04-27 15:12:54,801 INFO L290 TraceCheckUtils]: 13: Hoare triple {2311#true} ~cond := #in~cond; {2311#true} is VALID [2022-04-27 15:12:54,801 INFO L290 TraceCheckUtils]: 14: Hoare triple {2311#true} assume !(0 == ~cond); {2311#true} is VALID [2022-04-27 15:12:54,801 INFO L290 TraceCheckUtils]: 15: Hoare triple {2311#true} assume true; {2311#true} is VALID [2022-04-27 15:12:54,801 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {2311#true} {2311#true} #1254#return; {2311#true} is VALID [2022-04-27 15:12:54,801 INFO L290 TraceCheckUtils]: 17: Hoare triple {2311#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {2337#(= |DriverEntry_#res| 0)} is VALID [2022-04-27 15:12:54,802 INFO L290 TraceCheckUtils]: 18: Hoare triple {2337#(= |DriverEntry_#res| 0)} assume true; {2337#(= |DriverEntry_#res| 0)} is VALID [2022-04-27 15:12:54,802 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {2337#(= |DriverEntry_#res| 0)} {2311#true} #1218#return; {2328#(= 0 |main_#t~ret169|)} is VALID [2022-04-27 15:12:54,802 INFO L290 TraceCheckUtils]: 20: Hoare triple {2328#(= 0 |main_#t~ret169|)} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {2329#(= main_~status~5 0)} is VALID [2022-04-27 15:12:54,803 INFO L290 TraceCheckUtils]: 21: Hoare triple {2329#(= main_~status~5 0)} assume !(~status~5 >= 0); {2312#false} is VALID [2022-04-27 15:12:54,803 INFO L290 TraceCheckUtils]: 22: Hoare triple {2312#false} assume !(1 == ~pended~0); {2312#false} is VALID [2022-04-27 15:12:54,803 INFO L290 TraceCheckUtils]: 23: Hoare triple {2312#false} assume !(1 == ~pended~0); {2312#false} is VALID [2022-04-27 15:12:54,803 INFO L290 TraceCheckUtils]: 24: Hoare triple {2312#false} assume !(~s~0 == ~UNLOADED~0); {2312#false} is VALID [2022-04-27 15:12:54,803 INFO L290 TraceCheckUtils]: 25: Hoare triple {2312#false} assume !(-1 == ~status~5); {2312#false} is VALID [2022-04-27 15:12:54,803 INFO L290 TraceCheckUtils]: 26: Hoare triple {2312#false} assume !(~s~0 != ~SKIP2~0); {2312#false} is VALID [2022-04-27 15:12:54,803 INFO L290 TraceCheckUtils]: 27: Hoare triple {2312#false} assume 1 == ~pended~0; {2312#false} is VALID [2022-04-27 15:12:54,804 INFO L290 TraceCheckUtils]: 28: Hoare triple {2312#false} assume 259 != ~status~5; {2312#false} is VALID [2022-04-27 15:12:54,804 INFO L272 TraceCheckUtils]: 29: Hoare triple {2312#false} call errorFn(); {2312#false} is VALID [2022-04-27 15:12:54,804 INFO L290 TraceCheckUtils]: 30: Hoare triple {2312#false} assume !false; {2312#false} is VALID [2022-04-27 15:12:54,804 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:12:54,804 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:12:54,804 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1310561080] [2022-04-27 15:12:54,804 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1310561080] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:12:54,804 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:12:54,804 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2022-04-27 15:12:54,805 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [212331457] [2022-04-27 15:12:54,805 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:12:54,806 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 2.625) internal successors, (21), 4 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) Word has length 31 [2022-04-27 15:12:54,806 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:12:54,806 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 8 states, 8 states have (on average 2.625) internal successors, (21), 4 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) [2022-04-27 15:12:54,847 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 31 edges. 31 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:12:54,847 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-04-27 15:12:54,847 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:12:54,848 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-04-27 15:12:54,848 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=14, Invalid=42, Unknown=0, NotChecked=0, Total=56 [2022-04-27 15:12:54,848 INFO L87 Difference]: Start difference. First operand 299 states and 407 transitions. Second operand has 8 states, 8 states have (on average 2.625) internal successors, (21), 4 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) [2022-04-27 15:12:56,963 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:13:05,392 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:05,393 INFO L93 Difference]: Finished difference Result 360 states and 492 transitions. [2022-04-27 15:13:05,393 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-04-27 15:13:05,393 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 2.625) internal successors, (21), 4 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) Word has length 31 [2022-04-27 15:13:05,393 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:13:05,393 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8 states, 8 states have (on average 2.625) internal successors, (21), 4 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) [2022-04-27 15:13:05,398 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 9 states to 9 states and 492 transitions. [2022-04-27 15:13:05,398 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8 states, 8 states have (on average 2.625) internal successors, (21), 4 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) [2022-04-27 15:13:05,402 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 9 states to 9 states and 492 transitions. [2022-04-27 15:13:05,402 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 9 states and 492 transitions. [2022-04-27 15:13:05,934 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 492 edges. 492 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:13:05,942 INFO L225 Difference]: With dead ends: 360 [2022-04-27 15:13:05,942 INFO L226 Difference]: Without dead ends: 343 [2022-04-27 15:13:05,942 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 17 GetRequests, 9 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=24, Invalid=66, Unknown=0, NotChecked=0, Total=90 [2022-04-27 15:13:05,943 INFO L413 NwaCegarLoop]: 315 mSDtfsCounter, 395 mSDsluCounter, 369 mSDsCounter, 0 mSdLazyCounter, 1535 mSolverCounterSat, 147 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 6.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 401 SdHoareTripleChecker+Valid, 684 SdHoareTripleChecker+Invalid, 1683 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 147 IncrementalHoareTripleChecker+Valid, 1535 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 6.2s IncrementalHoareTripleChecker+Time [2022-04-27 15:13:05,943 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [401 Valid, 684 Invalid, 1683 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [147 Valid, 1535 Invalid, 1 Unknown, 0 Unchecked, 6.2s Time] [2022-04-27 15:13:05,944 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 343 states. [2022-04-27 15:13:05,957 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 343 to 299. [2022-04-27 15:13:05,957 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:13:05,957 INFO L82 GeneralOperation]: Start isEquivalent. First operand 343 states. Second operand has 299 states, 224 states have (on average 1.4419642857142858) internal successors, (323), 240 states have internal predecessors, (323), 49 states have call successors, (49), 27 states have call predecessors, (49), 25 states have return successors, (34), 34 states have call predecessors, (34), 34 states have call successors, (34) [2022-04-27 15:13:05,958 INFO L74 IsIncluded]: Start isIncluded. First operand 343 states. Second operand has 299 states, 224 states have (on average 1.4419642857142858) internal successors, (323), 240 states have internal predecessors, (323), 49 states have call successors, (49), 27 states have call predecessors, (49), 25 states have return successors, (34), 34 states have call predecessors, (34), 34 states have call successors, (34) [2022-04-27 15:13:05,959 INFO L87 Difference]: Start difference. First operand 343 states. Second operand has 299 states, 224 states have (on average 1.4419642857142858) internal successors, (323), 240 states have internal predecessors, (323), 49 states have call successors, (49), 27 states have call predecessors, (49), 25 states have return successors, (34), 34 states have call predecessors, (34), 34 states have call successors, (34) [2022-04-27 15:13:05,967 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:05,967 INFO L93 Difference]: Finished difference Result 343 states and 470 transitions. [2022-04-27 15:13:05,967 INFO L276 IsEmpty]: Start isEmpty. Operand 343 states and 470 transitions. [2022-04-27 15:13:05,968 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:13:05,968 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:13:05,969 INFO L74 IsIncluded]: Start isIncluded. First operand has 299 states, 224 states have (on average 1.4419642857142858) internal successors, (323), 240 states have internal predecessors, (323), 49 states have call successors, (49), 27 states have call predecessors, (49), 25 states have return successors, (34), 34 states have call predecessors, (34), 34 states have call successors, (34) Second operand 343 states. [2022-04-27 15:13:05,969 INFO L87 Difference]: Start difference. First operand has 299 states, 224 states have (on average 1.4419642857142858) internal successors, (323), 240 states have internal predecessors, (323), 49 states have call successors, (49), 27 states have call predecessors, (49), 25 states have return successors, (34), 34 states have call predecessors, (34), 34 states have call successors, (34) Second operand 343 states. [2022-04-27 15:13:05,977 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:05,978 INFO L93 Difference]: Finished difference Result 343 states and 470 transitions. [2022-04-27 15:13:05,978 INFO L276 IsEmpty]: Start isEmpty. Operand 343 states and 470 transitions. [2022-04-27 15:13:05,978 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:13:05,978 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:13:05,978 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:13:05,979 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:13:05,979 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 299 states, 224 states have (on average 1.4419642857142858) internal successors, (323), 240 states have internal predecessors, (323), 49 states have call successors, (49), 27 states have call predecessors, (49), 25 states have return successors, (34), 34 states have call predecessors, (34), 34 states have call successors, (34) [2022-04-27 15:13:05,986 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 299 states to 299 states and 406 transitions. [2022-04-27 15:13:05,987 INFO L78 Accepts]: Start accepts. Automaton has 299 states and 406 transitions. Word has length 31 [2022-04-27 15:13:05,987 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:13:05,987 INFO L495 AbstractCegarLoop]: Abstraction has 299 states and 406 transitions. [2022-04-27 15:13:05,987 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 2.625) internal successors, (21), 4 states have internal predecessors, (21), 2 states have call successors, (6), 5 states have call predecessors, (6), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) [2022-04-27 15:13:05,987 INFO L276 IsEmpty]: Start isEmpty. Operand 299 states and 406 transitions. [2022-04-27 15:13:05,988 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2022-04-27 15:13:05,988 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:13:05,988 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:13:05,988 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-04-27 15:13:05,988 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:13:05,989 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:13:05,989 INFO L85 PathProgramCache]: Analyzing trace with hash -1201516382, now seen corresponding path program 1 times [2022-04-27 15:13:05,989 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:13:05,989 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [943284742] [2022-04-27 15:13:05,989 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:13:05,989 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:13:06,046 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:06,112 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:13:06,114 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:06,124 INFO L290 TraceCheckUtils]: 0: Hoare triple {3967#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {3936#true} is VALID [2022-04-27 15:13:06,124 INFO L290 TraceCheckUtils]: 1: Hoare triple {3936#true} assume true; {3936#true} is VALID [2022-04-27 15:13:06,124 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {3936#true} {3936#true} #1270#return; {3936#true} is VALID [2022-04-27 15:13:06,144 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:13:06,145 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:06,152 INFO L290 TraceCheckUtils]: 0: Hoare triple {3968#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {3936#true} is VALID [2022-04-27 15:13:06,152 INFO L290 TraceCheckUtils]: 1: Hoare triple {3936#true} assume true; {3936#true} is VALID [2022-04-27 15:13:06,152 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {3936#true} {3936#true} #1216#return; {3936#true} is VALID [2022-04-27 15:13:06,158 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:13:06,164 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:06,174 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:13:06,175 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:06,180 INFO L290 TraceCheckUtils]: 0: Hoare triple {3936#true} ~cond := #in~cond; {3936#true} is VALID [2022-04-27 15:13:06,180 INFO L290 TraceCheckUtils]: 1: Hoare triple {3936#true} assume !(0 == ~cond); {3936#true} is VALID [2022-04-27 15:13:06,180 INFO L290 TraceCheckUtils]: 2: Hoare triple {3936#true} assume true; {3936#true} is VALID [2022-04-27 15:13:06,181 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {3936#true} {3936#true} #1254#return; {3936#true} is VALID [2022-04-27 15:13:06,181 INFO L290 TraceCheckUtils]: 0: Hoare triple {3969#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {3936#true} is VALID [2022-04-27 15:13:06,181 INFO L272 TraceCheckUtils]: 1: Hoare triple {3936#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {3936#true} is VALID [2022-04-27 15:13:06,181 INFO L290 TraceCheckUtils]: 2: Hoare triple {3936#true} ~cond := #in~cond; {3936#true} is VALID [2022-04-27 15:13:06,181 INFO L290 TraceCheckUtils]: 3: Hoare triple {3936#true} assume !(0 == ~cond); {3936#true} is VALID [2022-04-27 15:13:06,181 INFO L290 TraceCheckUtils]: 4: Hoare triple {3936#true} assume true; {3936#true} is VALID [2022-04-27 15:13:06,181 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {3936#true} {3936#true} #1254#return; {3936#true} is VALID [2022-04-27 15:13:06,181 INFO L290 TraceCheckUtils]: 6: Hoare triple {3936#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {3936#true} is VALID [2022-04-27 15:13:06,182 INFO L290 TraceCheckUtils]: 7: Hoare triple {3936#true} assume true; {3936#true} is VALID [2022-04-27 15:13:06,182 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {3936#true} {3936#true} #1218#return; {3936#true} is VALID [2022-04-27 15:13:06,190 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:13:06,199 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:06,222 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:13:06,230 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:06,258 INFO L290 TraceCheckUtils]: 0: Hoare triple {3974#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {3936#true} is VALID [2022-04-27 15:13:06,258 INFO L290 TraceCheckUtils]: 1: Hoare triple {3936#true} assume 0 == ~__BLAST_NONDET~5; {3936#true} is VALID [2022-04-27 15:13:06,259 INFO L290 TraceCheckUtils]: 2: Hoare triple {3936#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {3982#(and (<= |IoCreateDevice_#res| 0) (<= 0 |IoCreateDevice_#res|))} is VALID [2022-04-27 15:13:06,259 INFO L290 TraceCheckUtils]: 3: Hoare triple {3982#(and (<= |IoCreateDevice_#res| 0) (<= 0 |IoCreateDevice_#res|))} assume true; {3982#(and (<= |IoCreateDevice_#res| 0) (<= 0 |IoCreateDevice_#res|))} is VALID [2022-04-27 15:13:06,261 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {3982#(and (<= |IoCreateDevice_#res| 0) (<= 0 |IoCreateDevice_#res|))} {3936#true} #1176#return; {3980#(= |KbFilter_AddDevice_#t~ret22| 0)} is VALID [2022-04-27 15:13:06,261 INFO L290 TraceCheckUtils]: 0: Hoare triple {3974#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {3936#true} is VALID [2022-04-27 15:13:06,262 INFO L272 TraceCheckUtils]: 1: Hoare triple {3936#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {3974#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:06,262 INFO L290 TraceCheckUtils]: 2: Hoare triple {3974#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {3936#true} is VALID [2022-04-27 15:13:06,262 INFO L290 TraceCheckUtils]: 3: Hoare triple {3936#true} assume 0 == ~__BLAST_NONDET~5; {3936#true} is VALID [2022-04-27 15:13:06,263 INFO L290 TraceCheckUtils]: 4: Hoare triple {3936#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {3982#(and (<= |IoCreateDevice_#res| 0) (<= 0 |IoCreateDevice_#res|))} is VALID [2022-04-27 15:13:06,263 INFO L290 TraceCheckUtils]: 5: Hoare triple {3982#(and (<= |IoCreateDevice_#res| 0) (<= 0 |IoCreateDevice_#res|))} assume true; {3982#(and (<= |IoCreateDevice_#res| 0) (<= 0 |IoCreateDevice_#res|))} is VALID [2022-04-27 15:13:06,264 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {3982#(and (<= |IoCreateDevice_#res| 0) (<= 0 |IoCreateDevice_#res|))} {3936#true} #1176#return; {3980#(= |KbFilter_AddDevice_#t~ret22| 0)} is VALID [2022-04-27 15:13:06,265 INFO L290 TraceCheckUtils]: 7: Hoare triple {3980#(= |KbFilter_AddDevice_#t~ret22| 0)} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {3981#(= KbFilter_AddDevice_~status~0 0)} is VALID [2022-04-27 15:13:06,265 INFO L290 TraceCheckUtils]: 8: Hoare triple {3981#(= KbFilter_AddDevice_~status~0 0)} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {3937#false} is VALID [2022-04-27 15:13:06,265 INFO L290 TraceCheckUtils]: 9: Hoare triple {3937#false} assume true; {3937#false} is VALID [2022-04-27 15:13:06,265 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {3937#false} {3936#true} #1220#return; {3937#false} is VALID [2022-04-27 15:13:06,280 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:13:06,281 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:06,287 INFO L290 TraceCheckUtils]: 0: Hoare triple {3983#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {3936#true} is VALID [2022-04-27 15:13:06,287 INFO L290 TraceCheckUtils]: 1: Hoare triple {3936#true} assume true; {3936#true} is VALID [2022-04-27 15:13:06,287 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {3936#true} {3937#false} #1222#return; {3937#false} is VALID [2022-04-27 15:13:06,288 INFO L272 TraceCheckUtils]: 0: Hoare triple {3936#true} call ULTIMATE.init(); {3967#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:13:06,288 INFO L290 TraceCheckUtils]: 1: Hoare triple {3967#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {3936#true} is VALID [2022-04-27 15:13:06,289 INFO L290 TraceCheckUtils]: 2: Hoare triple {3936#true} assume true; {3936#true} is VALID [2022-04-27 15:13:06,289 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {3936#true} {3936#true} #1270#return; {3936#true} is VALID [2022-04-27 15:13:06,289 INFO L272 TraceCheckUtils]: 4: Hoare triple {3936#true} call #t~ret213 := main(); {3936#true} is VALID [2022-04-27 15:13:06,289 INFO L290 TraceCheckUtils]: 5: Hoare triple {3936#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {3936#true} is VALID [2022-04-27 15:13:06,290 INFO L272 TraceCheckUtils]: 6: Hoare triple {3936#true} call _BLAST_init(); {3968#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:13:06,290 INFO L290 TraceCheckUtils]: 7: Hoare triple {3968#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {3936#true} is VALID [2022-04-27 15:13:06,290 INFO L290 TraceCheckUtils]: 8: Hoare triple {3936#true} assume true; {3936#true} is VALID [2022-04-27 15:13:06,290 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {3936#true} {3936#true} #1216#return; {3936#true} is VALID [2022-04-27 15:13:06,291 INFO L272 TraceCheckUtils]: 10: Hoare triple {3936#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {3969#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:13:06,291 INFO L290 TraceCheckUtils]: 11: Hoare triple {3969#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {3936#true} is VALID [2022-04-27 15:13:06,291 INFO L272 TraceCheckUtils]: 12: Hoare triple {3936#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {3936#true} is VALID [2022-04-27 15:13:06,291 INFO L290 TraceCheckUtils]: 13: Hoare triple {3936#true} ~cond := #in~cond; {3936#true} is VALID [2022-04-27 15:13:06,291 INFO L290 TraceCheckUtils]: 14: Hoare triple {3936#true} assume !(0 == ~cond); {3936#true} is VALID [2022-04-27 15:13:06,291 INFO L290 TraceCheckUtils]: 15: Hoare triple {3936#true} assume true; {3936#true} is VALID [2022-04-27 15:13:06,291 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {3936#true} {3936#true} #1254#return; {3936#true} is VALID [2022-04-27 15:13:06,291 INFO L290 TraceCheckUtils]: 17: Hoare triple {3936#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {3936#true} is VALID [2022-04-27 15:13:06,291 INFO L290 TraceCheckUtils]: 18: Hoare triple {3936#true} assume true; {3936#true} is VALID [2022-04-27 15:13:06,292 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {3936#true} {3936#true} #1218#return; {3936#true} is VALID [2022-04-27 15:13:06,292 INFO L290 TraceCheckUtils]: 20: Hoare triple {3936#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {3936#true} is VALID [2022-04-27 15:13:06,292 INFO L290 TraceCheckUtils]: 21: Hoare triple {3936#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {3936#true} is VALID [2022-04-27 15:13:06,292 INFO L290 TraceCheckUtils]: 22: Hoare triple {3936#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {3936#true} is VALID [2022-04-27 15:13:06,293 INFO L272 TraceCheckUtils]: 23: Hoare triple {3936#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {3974#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:06,293 INFO L290 TraceCheckUtils]: 24: Hoare triple {3974#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {3936#true} is VALID [2022-04-27 15:13:06,294 INFO L272 TraceCheckUtils]: 25: Hoare triple {3936#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {3974#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:06,294 INFO L290 TraceCheckUtils]: 26: Hoare triple {3974#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {3936#true} is VALID [2022-04-27 15:13:06,294 INFO L290 TraceCheckUtils]: 27: Hoare triple {3936#true} assume 0 == ~__BLAST_NONDET~5; {3936#true} is VALID [2022-04-27 15:13:06,295 INFO L290 TraceCheckUtils]: 28: Hoare triple {3936#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {3982#(and (<= |IoCreateDevice_#res| 0) (<= 0 |IoCreateDevice_#res|))} is VALID [2022-04-27 15:13:06,295 INFO L290 TraceCheckUtils]: 29: Hoare triple {3982#(and (<= |IoCreateDevice_#res| 0) (<= 0 |IoCreateDevice_#res|))} assume true; {3982#(and (<= |IoCreateDevice_#res| 0) (<= 0 |IoCreateDevice_#res|))} is VALID [2022-04-27 15:13:06,296 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {3982#(and (<= |IoCreateDevice_#res| 0) (<= 0 |IoCreateDevice_#res|))} {3936#true} #1176#return; {3980#(= |KbFilter_AddDevice_#t~ret22| 0)} is VALID [2022-04-27 15:13:06,297 INFO L290 TraceCheckUtils]: 31: Hoare triple {3980#(= |KbFilter_AddDevice_#t~ret22| 0)} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {3981#(= KbFilter_AddDevice_~status~0 0)} is VALID [2022-04-27 15:13:06,297 INFO L290 TraceCheckUtils]: 32: Hoare triple {3981#(= KbFilter_AddDevice_~status~0 0)} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {3937#false} is VALID [2022-04-27 15:13:06,297 INFO L290 TraceCheckUtils]: 33: Hoare triple {3937#false} assume true; {3937#false} is VALID [2022-04-27 15:13:06,297 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {3937#false} {3936#true} #1220#return; {3937#false} is VALID [2022-04-27 15:13:06,297 INFO L290 TraceCheckUtils]: 35: Hoare triple {3937#false} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {3937#false} is VALID [2022-04-27 15:13:06,297 INFO L272 TraceCheckUtils]: 36: Hoare triple {3937#false} call stub_driver_init(); {3983#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:13:06,297 INFO L290 TraceCheckUtils]: 37: Hoare triple {3983#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {3936#true} is VALID [2022-04-27 15:13:06,297 INFO L290 TraceCheckUtils]: 38: Hoare triple {3936#true} assume true; {3936#true} is VALID [2022-04-27 15:13:06,298 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {3936#true} {3937#false} #1222#return; {3937#false} is VALID [2022-04-27 15:13:06,298 INFO L290 TraceCheckUtils]: 40: Hoare triple {3937#false} assume !!(~status~5 >= 0); {3937#false} is VALID [2022-04-27 15:13:06,298 INFO L290 TraceCheckUtils]: 41: Hoare triple {3937#false} assume 0 == ~__BLAST_NONDET~0; {3937#false} is VALID [2022-04-27 15:13:06,298 INFO L272 TraceCheckUtils]: 42: Hoare triple {3937#false} call #t~ret171 := KbFilter_CreateClose(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {3937#false} is VALID [2022-04-27 15:13:06,298 INFO L290 TraceCheckUtils]: 43: Hoare triple {3937#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~0.base, ~irpStack~0.offset;havoc ~status~1;havoc ~devExt~1.base, ~devExt~1.offset;havoc ~tmp~0;havoc ~tmp___0~0;havoc ~tmp___1~0;call #t~mem36.base, #t~mem36.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~0.base, ~irpStack~0.offset := #t~mem36.base, #t~mem36.offset;havoc #t~mem36.base, #t~mem36.offset;call #t~mem37.base, #t~mem37.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~1.base, ~devExt~1.offset := #t~mem37.base, #t~mem37.offset;havoc #t~mem37.base, #t~mem37.offset;call #t~mem38 := read~int(~Irp.base, 24 + ~Irp.offset, 4);~status~1 := #t~mem38;havoc #t~mem38;~status~1 := ~myStatus~0;call #t~mem39 := read~int(~irpStack~0.base, ~irpStack~0.offset, 1); {3937#false} is VALID [2022-04-27 15:13:06,298 INFO L290 TraceCheckUtils]: 44: Hoare triple {3937#false} assume 0 == #t~mem39 % 256;havoc #t~mem39; {3937#false} is VALID [2022-04-27 15:13:06,298 INFO L290 TraceCheckUtils]: 45: Hoare triple {3937#false} call #t~mem41.base, #t~mem41.offset := read~$Pointer$(~devExt~1.base, 20 + ~devExt~1.offset, 4); {3937#false} is VALID [2022-04-27 15:13:06,298 INFO L290 TraceCheckUtils]: 46: Hoare triple {3937#false} assume 0 == (#t~mem41.base + #t~mem41.offset) % 4294967296;havoc #t~mem41.base, #t~mem41.offset;~status~1 := -1073741436; {3937#false} is VALID [2022-04-27 15:13:06,298 INFO L290 TraceCheckUtils]: 47: Hoare triple {3937#false} call write~int(~status~1, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~1; {3937#false} is VALID [2022-04-27 15:13:06,298 INFO L272 TraceCheckUtils]: 48: Hoare triple {3937#false} call #t~ret44 := KbFilter_DispatchPassThrough(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset); {3937#false} is VALID [2022-04-27 15:13:06,298 INFO L290 TraceCheckUtils]: 49: Hoare triple {3937#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~1.base, ~irpStack~1.offset;havoc ~tmp~1;call #t~mem45.base, #t~mem45.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~1.base, ~irpStack~1.offset := #t~mem45.base, #t~mem45.offset;havoc #t~mem45.base, #t~mem45.offset; {3937#false} is VALID [2022-04-27 15:13:06,299 INFO L290 TraceCheckUtils]: 50: Hoare triple {3937#false} assume !(~s~0 == ~NP~0); {3937#false} is VALID [2022-04-27 15:13:06,299 INFO L272 TraceCheckUtils]: 51: Hoare triple {3937#false} call errorFn(); {3937#false} is VALID [2022-04-27 15:13:06,299 INFO L290 TraceCheckUtils]: 52: Hoare triple {3937#false} assume !false; {3937#false} is VALID [2022-04-27 15:13:06,299 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:13:06,299 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:13:06,299 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [943284742] [2022-04-27 15:13:06,299 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [943284742] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:13:06,299 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:13:06,299 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2022-04-27 15:13:06,300 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1761604442] [2022-04-27 15:13:06,300 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:13:06,300 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 3.5) internal successors, (35), 4 states have internal predecessors, (35), 2 states have call successors, (11), 7 states have call predecessors, (11), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) Word has length 53 [2022-04-27 15:13:06,300 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:13:06,300 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 10 states, 10 states have (on average 3.5) internal successors, (35), 4 states have internal predecessors, (35), 2 states have call successors, (11), 7 states have call predecessors, (11), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-04-27 15:13:06,344 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 53 edges. 53 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:13:06,345 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2022-04-27 15:13:06,345 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:13:06,345 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2022-04-27 15:13:06,345 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=69, Unknown=0, NotChecked=0, Total=90 [2022-04-27 15:13:06,346 INFO L87 Difference]: Start difference. First operand 299 states and 406 transitions. Second operand has 10 states, 10 states have (on average 3.5) internal successors, (35), 4 states have internal predecessors, (35), 2 states have call successors, (11), 7 states have call predecessors, (11), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-04-27 15:13:08,449 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:13:17,530 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:17,530 INFO L93 Difference]: Finished difference Result 599 states and 829 transitions. [2022-04-27 15:13:17,530 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-04-27 15:13:17,531 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 3.5) internal successors, (35), 4 states have internal predecessors, (35), 2 states have call successors, (11), 7 states have call predecessors, (11), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) Word has length 53 [2022-04-27 15:13:17,531 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:13:17,531 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 3.5) internal successors, (35), 4 states have internal predecessors, (35), 2 states have call successors, (11), 7 states have call predecessors, (11), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-04-27 15:13:17,537 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 12 states to 12 states and 829 transitions. [2022-04-27 15:13:17,538 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 3.5) internal successors, (35), 4 states have internal predecessors, (35), 2 states have call successors, (11), 7 states have call predecessors, (11), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-04-27 15:13:17,543 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 12 states to 12 states and 829 transitions. [2022-04-27 15:13:17,543 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 12 states and 829 transitions. [2022-04-27 15:13:18,301 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 829 edges. 829 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:13:18,320 INFO L225 Difference]: With dead ends: 599 [2022-04-27 15:13:18,320 INFO L226 Difference]: Without dead ends: 348 [2022-04-27 15:13:18,320 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 29 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 27 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=64, Invalid=176, Unknown=0, NotChecked=0, Total=240 [2022-04-27 15:13:18,324 INFO L413 NwaCegarLoop]: 312 mSDtfsCounter, 743 mSDsluCounter, 422 mSDsCounter, 0 mSdLazyCounter, 1537 mSolverCounterSat, 324 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 746 SdHoareTripleChecker+Valid, 734 SdHoareTripleChecker+Invalid, 1862 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 324 IncrementalHoareTripleChecker+Valid, 1537 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.4s IncrementalHoareTripleChecker+Time [2022-04-27 15:13:18,324 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [746 Valid, 734 Invalid, 1862 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [324 Valid, 1537 Invalid, 1 Unknown, 0 Unchecked, 5.4s Time] [2022-04-27 15:13:18,325 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 348 states. [2022-04-27 15:13:18,342 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 348 to 303. [2022-04-27 15:13:18,342 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:13:18,343 INFO L82 GeneralOperation]: Start isEquivalent. First operand 348 states. Second operand has 303 states, 227 states have (on average 1.4361233480176212) internal successors, (326), 243 states have internal predecessors, (326), 49 states have call successors, (49), 27 states have call predecessors, (49), 26 states have return successors, (35), 35 states have call predecessors, (35), 34 states have call successors, (35) [2022-04-27 15:13:18,344 INFO L74 IsIncluded]: Start isIncluded. First operand 348 states. Second operand has 303 states, 227 states have (on average 1.4361233480176212) internal successors, (326), 243 states have internal predecessors, (326), 49 states have call successors, (49), 27 states have call predecessors, (49), 26 states have return successors, (35), 35 states have call predecessors, (35), 34 states have call successors, (35) [2022-04-27 15:13:18,344 INFO L87 Difference]: Start difference. First operand 348 states. Second operand has 303 states, 227 states have (on average 1.4361233480176212) internal successors, (326), 243 states have internal predecessors, (326), 49 states have call successors, (49), 27 states have call predecessors, (49), 26 states have return successors, (35), 35 states have call predecessors, (35), 34 states have call successors, (35) [2022-04-27 15:13:18,352 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:18,353 INFO L93 Difference]: Finished difference Result 348 states and 475 transitions. [2022-04-27 15:13:18,353 INFO L276 IsEmpty]: Start isEmpty. Operand 348 states and 475 transitions. [2022-04-27 15:13:18,354 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:13:18,354 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:13:18,355 INFO L74 IsIncluded]: Start isIncluded. First operand has 303 states, 227 states have (on average 1.4361233480176212) internal successors, (326), 243 states have internal predecessors, (326), 49 states have call successors, (49), 27 states have call predecessors, (49), 26 states have return successors, (35), 35 states have call predecessors, (35), 34 states have call successors, (35) Second operand 348 states. [2022-04-27 15:13:18,355 INFO L87 Difference]: Start difference. First operand has 303 states, 227 states have (on average 1.4361233480176212) internal successors, (326), 243 states have internal predecessors, (326), 49 states have call successors, (49), 27 states have call predecessors, (49), 26 states have return successors, (35), 35 states have call predecessors, (35), 34 states have call successors, (35) Second operand 348 states. [2022-04-27 15:13:18,363 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:18,363 INFO L93 Difference]: Finished difference Result 348 states and 475 transitions. [2022-04-27 15:13:18,363 INFO L276 IsEmpty]: Start isEmpty. Operand 348 states and 475 transitions. [2022-04-27 15:13:18,364 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:13:18,364 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:13:18,364 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:13:18,364 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:13:18,365 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 303 states, 227 states have (on average 1.4361233480176212) internal successors, (326), 243 states have internal predecessors, (326), 49 states have call successors, (49), 27 states have call predecessors, (49), 26 states have return successors, (35), 35 states have call predecessors, (35), 34 states have call successors, (35) [2022-04-27 15:13:18,371 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 303 states to 303 states and 410 transitions. [2022-04-27 15:13:18,371 INFO L78 Accepts]: Start accepts. Automaton has 303 states and 410 transitions. Word has length 53 [2022-04-27 15:13:18,372 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:13:18,373 INFO L495 AbstractCegarLoop]: Abstraction has 303 states and 410 transitions. [2022-04-27 15:13:18,373 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 10 states have (on average 3.5) internal successors, (35), 4 states have internal predecessors, (35), 2 states have call successors, (11), 7 states have call predecessors, (11), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-04-27 15:13:18,373 INFO L276 IsEmpty]: Start isEmpty. Operand 303 states and 410 transitions. [2022-04-27 15:13:18,374 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2022-04-27 15:13:18,374 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:13:18,374 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:13:18,374 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-04-27 15:13:18,374 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:13:18,375 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:13:18,375 INFO L85 PathProgramCache]: Analyzing trace with hash 1078281185, now seen corresponding path program 1 times [2022-04-27 15:13:18,375 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:13:18,375 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1539695064] [2022-04-27 15:13:18,375 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:13:18,375 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:13:18,441 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:18,517 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:13:18,520 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:18,528 INFO L290 TraceCheckUtils]: 0: Hoare triple {5959#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {5927#true} is VALID [2022-04-27 15:13:18,528 INFO L290 TraceCheckUtils]: 1: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,528 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {5927#true} {5927#true} #1270#return; {5927#true} is VALID [2022-04-27 15:13:18,552 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:13:18,554 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:18,561 INFO L290 TraceCheckUtils]: 0: Hoare triple {5960#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {5927#true} is VALID [2022-04-27 15:13:18,561 INFO L290 TraceCheckUtils]: 1: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,561 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {5927#true} {5927#true} #1216#return; {5927#true} is VALID [2022-04-27 15:13:18,568 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:13:18,577 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:18,593 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:13:18,595 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:18,601 INFO L290 TraceCheckUtils]: 0: Hoare triple {5927#true} ~cond := #in~cond; {5927#true} is VALID [2022-04-27 15:13:18,601 INFO L290 TraceCheckUtils]: 1: Hoare triple {5927#true} assume !(0 == ~cond); {5927#true} is VALID [2022-04-27 15:13:18,601 INFO L290 TraceCheckUtils]: 2: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,601 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {5927#true} {5927#true} #1254#return; {5927#true} is VALID [2022-04-27 15:13:18,602 INFO L290 TraceCheckUtils]: 0: Hoare triple {5961#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {5927#true} is VALID [2022-04-27 15:13:18,602 INFO L272 TraceCheckUtils]: 1: Hoare triple {5927#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {5927#true} is VALID [2022-04-27 15:13:18,602 INFO L290 TraceCheckUtils]: 2: Hoare triple {5927#true} ~cond := #in~cond; {5927#true} is VALID [2022-04-27 15:13:18,602 INFO L290 TraceCheckUtils]: 3: Hoare triple {5927#true} assume !(0 == ~cond); {5927#true} is VALID [2022-04-27 15:13:18,602 INFO L290 TraceCheckUtils]: 4: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,602 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {5927#true} {5927#true} #1254#return; {5927#true} is VALID [2022-04-27 15:13:18,602 INFO L290 TraceCheckUtils]: 6: Hoare triple {5927#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {5927#true} is VALID [2022-04-27 15:13:18,602 INFO L290 TraceCheckUtils]: 7: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,602 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {5927#true} {5927#true} #1218#return; {5927#true} is VALID [2022-04-27 15:13:18,611 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:13:18,614 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:18,622 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:13:18,623 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:18,630 INFO L290 TraceCheckUtils]: 0: Hoare triple {5966#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {5927#true} is VALID [2022-04-27 15:13:18,630 INFO L290 TraceCheckUtils]: 1: Hoare triple {5927#true} assume !(0 == ~__BLAST_NONDET~5); {5927#true} is VALID [2022-04-27 15:13:18,630 INFO L290 TraceCheckUtils]: 2: Hoare triple {5927#true} #res := -1073741823; {5927#true} is VALID [2022-04-27 15:13:18,630 INFO L290 TraceCheckUtils]: 3: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,631 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {5927#true} {5927#true} #1176#return; {5927#true} is VALID [2022-04-27 15:13:18,631 INFO L290 TraceCheckUtils]: 0: Hoare triple {5966#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {5927#true} is VALID [2022-04-27 15:13:18,632 INFO L272 TraceCheckUtils]: 1: Hoare triple {5927#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {5966#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:18,632 INFO L290 TraceCheckUtils]: 2: Hoare triple {5966#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {5927#true} is VALID [2022-04-27 15:13:18,632 INFO L290 TraceCheckUtils]: 3: Hoare triple {5927#true} assume !(0 == ~__BLAST_NONDET~5); {5927#true} is VALID [2022-04-27 15:13:18,632 INFO L290 TraceCheckUtils]: 4: Hoare triple {5927#true} #res := -1073741823; {5927#true} is VALID [2022-04-27 15:13:18,632 INFO L290 TraceCheckUtils]: 5: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,632 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {5927#true} {5927#true} #1176#return; {5927#true} is VALID [2022-04-27 15:13:18,632 INFO L290 TraceCheckUtils]: 7: Hoare triple {5927#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {5927#true} is VALID [2022-04-27 15:13:18,632 INFO L290 TraceCheckUtils]: 8: Hoare triple {5927#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {5927#true} is VALID [2022-04-27 15:13:18,633 INFO L290 TraceCheckUtils]: 9: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,633 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {5927#true} {5927#true} #1220#return; {5927#true} is VALID [2022-04-27 15:13:18,645 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:13:18,647 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:18,659 INFO L290 TraceCheckUtils]: 0: Hoare triple {5972#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,659 INFO L290 TraceCheckUtils]: 1: Hoare triple {5958#(= ~s~0 ~NP~0)} assume true; {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,660 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {5958#(= ~s~0 ~NP~0)} {5927#true} #1222#return; {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,661 INFO L272 TraceCheckUtils]: 0: Hoare triple {5927#true} call ULTIMATE.init(); {5959#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:13:18,661 INFO L290 TraceCheckUtils]: 1: Hoare triple {5959#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {5927#true} is VALID [2022-04-27 15:13:18,661 INFO L290 TraceCheckUtils]: 2: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,661 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {5927#true} {5927#true} #1270#return; {5927#true} is VALID [2022-04-27 15:13:18,661 INFO L272 TraceCheckUtils]: 4: Hoare triple {5927#true} call #t~ret213 := main(); {5927#true} is VALID [2022-04-27 15:13:18,661 INFO L290 TraceCheckUtils]: 5: Hoare triple {5927#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {5927#true} is VALID [2022-04-27 15:13:18,662 INFO L272 TraceCheckUtils]: 6: Hoare triple {5927#true} call _BLAST_init(); {5960#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:13:18,662 INFO L290 TraceCheckUtils]: 7: Hoare triple {5960#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {5927#true} is VALID [2022-04-27 15:13:18,663 INFO L290 TraceCheckUtils]: 8: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,663 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {5927#true} {5927#true} #1216#return; {5927#true} is VALID [2022-04-27 15:13:18,663 INFO L272 TraceCheckUtils]: 10: Hoare triple {5927#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {5961#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:13:18,663 INFO L290 TraceCheckUtils]: 11: Hoare triple {5961#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {5927#true} is VALID [2022-04-27 15:13:18,664 INFO L272 TraceCheckUtils]: 12: Hoare triple {5927#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {5927#true} is VALID [2022-04-27 15:13:18,664 INFO L290 TraceCheckUtils]: 13: Hoare triple {5927#true} ~cond := #in~cond; {5927#true} is VALID [2022-04-27 15:13:18,664 INFO L290 TraceCheckUtils]: 14: Hoare triple {5927#true} assume !(0 == ~cond); {5927#true} is VALID [2022-04-27 15:13:18,664 INFO L290 TraceCheckUtils]: 15: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,664 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {5927#true} {5927#true} #1254#return; {5927#true} is VALID [2022-04-27 15:13:18,666 INFO L290 TraceCheckUtils]: 17: Hoare triple {5927#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {5927#true} is VALID [2022-04-27 15:13:18,667 INFO L290 TraceCheckUtils]: 18: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,672 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {5927#true} {5927#true} #1218#return; {5927#true} is VALID [2022-04-27 15:13:18,674 INFO L290 TraceCheckUtils]: 20: Hoare triple {5927#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {5927#true} is VALID [2022-04-27 15:13:18,674 INFO L290 TraceCheckUtils]: 21: Hoare triple {5927#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {5927#true} is VALID [2022-04-27 15:13:18,674 INFO L290 TraceCheckUtils]: 22: Hoare triple {5927#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {5927#true} is VALID [2022-04-27 15:13:18,675 INFO L272 TraceCheckUtils]: 23: Hoare triple {5927#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {5966#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:18,678 INFO L290 TraceCheckUtils]: 24: Hoare triple {5966#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {5927#true} is VALID [2022-04-27 15:13:18,679 INFO L272 TraceCheckUtils]: 25: Hoare triple {5927#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {5966#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:18,679 INFO L290 TraceCheckUtils]: 26: Hoare triple {5966#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {5927#true} is VALID [2022-04-27 15:13:18,679 INFO L290 TraceCheckUtils]: 27: Hoare triple {5927#true} assume !(0 == ~__BLAST_NONDET~5); {5927#true} is VALID [2022-04-27 15:13:18,679 INFO L290 TraceCheckUtils]: 28: Hoare triple {5927#true} #res := -1073741823; {5927#true} is VALID [2022-04-27 15:13:18,679 INFO L290 TraceCheckUtils]: 29: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,681 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {5927#true} {5927#true} #1176#return; {5927#true} is VALID [2022-04-27 15:13:18,681 INFO L290 TraceCheckUtils]: 31: Hoare triple {5927#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {5927#true} is VALID [2022-04-27 15:13:18,682 INFO L290 TraceCheckUtils]: 32: Hoare triple {5927#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {5927#true} is VALID [2022-04-27 15:13:18,682 INFO L290 TraceCheckUtils]: 33: Hoare triple {5927#true} assume true; {5927#true} is VALID [2022-04-27 15:13:18,682 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {5927#true} {5927#true} #1220#return; {5927#true} is VALID [2022-04-27 15:13:18,682 INFO L290 TraceCheckUtils]: 35: Hoare triple {5927#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {5927#true} is VALID [2022-04-27 15:13:18,682 INFO L272 TraceCheckUtils]: 36: Hoare triple {5927#true} call stub_driver_init(); {5972#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:13:18,683 INFO L290 TraceCheckUtils]: 37: Hoare triple {5972#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,683 INFO L290 TraceCheckUtils]: 38: Hoare triple {5958#(= ~s~0 ~NP~0)} assume true; {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,683 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {5958#(= ~s~0 ~NP~0)} {5927#true} #1222#return; {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,683 INFO L290 TraceCheckUtils]: 40: Hoare triple {5958#(= ~s~0 ~NP~0)} assume !!(~status~5 >= 0); {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,684 INFO L290 TraceCheckUtils]: 41: Hoare triple {5958#(= ~s~0 ~NP~0)} assume 0 == ~__BLAST_NONDET~0; {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,684 INFO L272 TraceCheckUtils]: 42: Hoare triple {5958#(= ~s~0 ~NP~0)} call #t~ret171 := KbFilter_CreateClose(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,684 INFO L290 TraceCheckUtils]: 43: Hoare triple {5958#(= ~s~0 ~NP~0)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~0.base, ~irpStack~0.offset;havoc ~status~1;havoc ~devExt~1.base, ~devExt~1.offset;havoc ~tmp~0;havoc ~tmp___0~0;havoc ~tmp___1~0;call #t~mem36.base, #t~mem36.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~0.base, ~irpStack~0.offset := #t~mem36.base, #t~mem36.offset;havoc #t~mem36.base, #t~mem36.offset;call #t~mem37.base, #t~mem37.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~1.base, ~devExt~1.offset := #t~mem37.base, #t~mem37.offset;havoc #t~mem37.base, #t~mem37.offset;call #t~mem38 := read~int(~Irp.base, 24 + ~Irp.offset, 4);~status~1 := #t~mem38;havoc #t~mem38;~status~1 := ~myStatus~0;call #t~mem39 := read~int(~irpStack~0.base, ~irpStack~0.offset, 1); {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,685 INFO L290 TraceCheckUtils]: 44: Hoare triple {5958#(= ~s~0 ~NP~0)} assume 0 == #t~mem39 % 256;havoc #t~mem39; {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,685 INFO L290 TraceCheckUtils]: 45: Hoare triple {5958#(= ~s~0 ~NP~0)} call #t~mem41.base, #t~mem41.offset := read~$Pointer$(~devExt~1.base, 20 + ~devExt~1.offset, 4); {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,685 INFO L290 TraceCheckUtils]: 46: Hoare triple {5958#(= ~s~0 ~NP~0)} assume 0 == (#t~mem41.base + #t~mem41.offset) % 4294967296;havoc #t~mem41.base, #t~mem41.offset;~status~1 := -1073741436; {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,685 INFO L290 TraceCheckUtils]: 47: Hoare triple {5958#(= ~s~0 ~NP~0)} call write~int(~status~1, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~1; {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,686 INFO L272 TraceCheckUtils]: 48: Hoare triple {5958#(= ~s~0 ~NP~0)} call #t~ret44 := KbFilter_DispatchPassThrough(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset); {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,686 INFO L290 TraceCheckUtils]: 49: Hoare triple {5958#(= ~s~0 ~NP~0)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~1.base, ~irpStack~1.offset;havoc ~tmp~1;call #t~mem45.base, #t~mem45.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~1.base, ~irpStack~1.offset := #t~mem45.base, #t~mem45.offset;havoc #t~mem45.base, #t~mem45.offset; {5958#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:13:18,687 INFO L290 TraceCheckUtils]: 50: Hoare triple {5958#(= ~s~0 ~NP~0)} assume !(~s~0 == ~NP~0); {5928#false} is VALID [2022-04-27 15:13:18,687 INFO L272 TraceCheckUtils]: 51: Hoare triple {5928#false} call errorFn(); {5928#false} is VALID [2022-04-27 15:13:18,687 INFO L290 TraceCheckUtils]: 52: Hoare triple {5928#false} assume !false; {5928#false} is VALID [2022-04-27 15:13:18,689 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:13:18,689 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:13:18,689 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1539695064] [2022-04-27 15:13:18,689 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1539695064] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:13:18,689 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:13:18,689 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2022-04-27 15:13:18,689 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1212557587] [2022-04-27 15:13:18,689 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:13:18,690 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 4.375) internal successors, (35), 3 states have internal predecessors, (35), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) Word has length 53 [2022-04-27 15:13:18,690 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:13:18,690 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 8 states, 8 states have (on average 4.375) internal successors, (35), 3 states have internal predecessors, (35), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) [2022-04-27 15:13:18,734 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 53 edges. 53 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:13:18,735 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-04-27 15:13:18,735 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:13:18,735 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-04-27 15:13:18,735 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2022-04-27 15:13:18,736 INFO L87 Difference]: Start difference. First operand 303 states and 410 transitions. Second operand has 8 states, 8 states have (on average 4.375) internal successors, (35), 3 states have internal predecessors, (35), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) [2022-04-27 15:13:20,875 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:13:28,295 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:28,295 INFO L93 Difference]: Finished difference Result 492 states and 667 transitions. [2022-04-27 15:13:28,296 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-04-27 15:13:28,296 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 4.375) internal successors, (35), 3 states have internal predecessors, (35), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) Word has length 53 [2022-04-27 15:13:28,296 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:13:28,296 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8 states, 8 states have (on average 4.375) internal successors, (35), 3 states have internal predecessors, (35), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) [2022-04-27 15:13:28,301 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 12 states to 12 states and 667 transitions. [2022-04-27 15:13:28,301 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8 states, 8 states have (on average 4.375) internal successors, (35), 3 states have internal predecessors, (35), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) [2022-04-27 15:13:28,305 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 12 states to 12 states and 667 transitions. [2022-04-27 15:13:28,305 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 12 states and 667 transitions. [2022-04-27 15:13:29,046 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 667 edges. 667 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:13:29,057 INFO L225 Difference]: With dead ends: 492 [2022-04-27 15:13:29,057 INFO L226 Difference]: Without dead ends: 431 [2022-04-27 15:13:29,057 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 30 GetRequests, 18 SyntacticMatches, 0 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 18 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=63, Invalid=119, Unknown=0, NotChecked=0, Total=182 [2022-04-27 15:13:29,062 INFO L413 NwaCegarLoop]: 365 mSDtfsCounter, 663 mSDsluCounter, 251 mSDsCounter, 0 mSdLazyCounter, 1043 mSolverCounterSat, 224 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 668 SdHoareTripleChecker+Valid, 616 SdHoareTripleChecker+Invalid, 1268 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 224 IncrementalHoareTripleChecker+Valid, 1043 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.3s IncrementalHoareTripleChecker+Time [2022-04-27 15:13:29,063 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [668 Valid, 616 Invalid, 1268 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [224 Valid, 1043 Invalid, 1 Unknown, 0 Unchecked, 4.3s Time] [2022-04-27 15:13:29,064 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 431 states. [2022-04-27 15:13:29,082 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 431 to 374. [2022-04-27 15:13:29,083 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:13:29,084 INFO L82 GeneralOperation]: Start isEquivalent. First operand 431 states. Second operand has 374 states, 288 states have (on average 1.3715277777777777) internal successors, (395), 292 states have internal predecessors, (395), 48 states have call successors, (48), 33 states have call predecessors, (48), 37 states have return successors, (55), 51 states have call predecessors, (55), 39 states have call successors, (55) [2022-04-27 15:13:29,084 INFO L74 IsIncluded]: Start isIncluded. First operand 431 states. Second operand has 374 states, 288 states have (on average 1.3715277777777777) internal successors, (395), 292 states have internal predecessors, (395), 48 states have call successors, (48), 33 states have call predecessors, (48), 37 states have return successors, (55), 51 states have call predecessors, (55), 39 states have call successors, (55) [2022-04-27 15:13:29,085 INFO L87 Difference]: Start difference. First operand 431 states. Second operand has 374 states, 288 states have (on average 1.3715277777777777) internal successors, (395), 292 states have internal predecessors, (395), 48 states have call successors, (48), 33 states have call predecessors, (48), 37 states have return successors, (55), 51 states have call predecessors, (55), 39 states have call successors, (55) [2022-04-27 15:13:29,094 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:29,095 INFO L93 Difference]: Finished difference Result 431 states and 578 transitions. [2022-04-27 15:13:29,095 INFO L276 IsEmpty]: Start isEmpty. Operand 431 states and 578 transitions. [2022-04-27 15:13:29,096 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:13:29,096 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:13:29,096 INFO L74 IsIncluded]: Start isIncluded. First operand has 374 states, 288 states have (on average 1.3715277777777777) internal successors, (395), 292 states have internal predecessors, (395), 48 states have call successors, (48), 33 states have call predecessors, (48), 37 states have return successors, (55), 51 states have call predecessors, (55), 39 states have call successors, (55) Second operand 431 states. [2022-04-27 15:13:29,097 INFO L87 Difference]: Start difference. First operand has 374 states, 288 states have (on average 1.3715277777777777) internal successors, (395), 292 states have internal predecessors, (395), 48 states have call successors, (48), 33 states have call predecessors, (48), 37 states have return successors, (55), 51 states have call predecessors, (55), 39 states have call successors, (55) Second operand 431 states. [2022-04-27 15:13:29,106 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:29,107 INFO L93 Difference]: Finished difference Result 431 states and 578 transitions. [2022-04-27 15:13:29,107 INFO L276 IsEmpty]: Start isEmpty. Operand 431 states and 578 transitions. [2022-04-27 15:13:29,108 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:13:29,108 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:13:29,108 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:13:29,108 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:13:29,109 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 374 states, 288 states have (on average 1.3715277777777777) internal successors, (395), 292 states have internal predecessors, (395), 48 states have call successors, (48), 33 states have call predecessors, (48), 37 states have return successors, (55), 51 states have call predecessors, (55), 39 states have call successors, (55) [2022-04-27 15:13:29,116 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 374 states to 374 states and 498 transitions. [2022-04-27 15:13:29,117 INFO L78 Accepts]: Start accepts. Automaton has 374 states and 498 transitions. Word has length 53 [2022-04-27 15:13:29,117 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:13:29,117 INFO L495 AbstractCegarLoop]: Abstraction has 374 states and 498 transitions. [2022-04-27 15:13:29,117 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 4.375) internal successors, (35), 3 states have internal predecessors, (35), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) [2022-04-27 15:13:29,117 INFO L276 IsEmpty]: Start isEmpty. Operand 374 states and 498 transitions. [2022-04-27 15:13:29,118 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 61 [2022-04-27 15:13:29,118 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:13:29,118 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:13:29,118 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-04-27 15:13:29,118 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:13:29,118 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:13:29,118 INFO L85 PathProgramCache]: Analyzing trace with hash 17478568, now seen corresponding path program 1 times [2022-04-27 15:13:29,119 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:13:29,119 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1847972912] [2022-04-27 15:13:29,119 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:13:29,119 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:13:29,179 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:29,266 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:13:29,268 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:29,275 INFO L290 TraceCheckUtils]: 0: Hoare triple {8063#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {8026#true} is VALID [2022-04-27 15:13:29,275 INFO L290 TraceCheckUtils]: 1: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,275 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {8026#true} {8026#true} #1270#return; {8026#true} is VALID [2022-04-27 15:13:29,297 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:13:29,299 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:29,305 INFO L290 TraceCheckUtils]: 0: Hoare triple {8064#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {8026#true} is VALID [2022-04-27 15:13:29,305 INFO L290 TraceCheckUtils]: 1: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,305 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {8026#true} {8026#true} #1216#return; {8026#true} is VALID [2022-04-27 15:13:29,311 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:13:29,317 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:29,345 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:13:29,345 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:29,351 INFO L290 TraceCheckUtils]: 0: Hoare triple {8026#true} ~cond := #in~cond; {8026#true} is VALID [2022-04-27 15:13:29,351 INFO L290 TraceCheckUtils]: 1: Hoare triple {8026#true} assume !(0 == ~cond); {8026#true} is VALID [2022-04-27 15:13:29,351 INFO L290 TraceCheckUtils]: 2: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,351 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {8026#true} {8026#true} #1254#return; {8026#true} is VALID [2022-04-27 15:13:29,351 INFO L290 TraceCheckUtils]: 0: Hoare triple {8065#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {8026#true} is VALID [2022-04-27 15:13:29,351 INFO L272 TraceCheckUtils]: 1: Hoare triple {8026#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {8026#true} is VALID [2022-04-27 15:13:29,351 INFO L290 TraceCheckUtils]: 2: Hoare triple {8026#true} ~cond := #in~cond; {8026#true} is VALID [2022-04-27 15:13:29,351 INFO L290 TraceCheckUtils]: 3: Hoare triple {8026#true} assume !(0 == ~cond); {8026#true} is VALID [2022-04-27 15:13:29,352 INFO L290 TraceCheckUtils]: 4: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,352 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {8026#true} {8026#true} #1254#return; {8026#true} is VALID [2022-04-27 15:13:29,352 INFO L290 TraceCheckUtils]: 6: Hoare triple {8026#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {8026#true} is VALID [2022-04-27 15:13:29,352 INFO L290 TraceCheckUtils]: 7: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,352 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {8026#true} {8026#true} #1218#return; {8026#true} is VALID [2022-04-27 15:13:29,361 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:13:29,364 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:29,380 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:13:29,382 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:29,388 INFO L290 TraceCheckUtils]: 0: Hoare triple {8070#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {8026#true} is VALID [2022-04-27 15:13:29,388 INFO L290 TraceCheckUtils]: 1: Hoare triple {8026#true} assume !(0 == ~__BLAST_NONDET~5); {8026#true} is VALID [2022-04-27 15:13:29,389 INFO L290 TraceCheckUtils]: 2: Hoare triple {8026#true} #res := -1073741823; {8026#true} is VALID [2022-04-27 15:13:29,389 INFO L290 TraceCheckUtils]: 3: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,389 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {8026#true} {8026#true} #1176#return; {8026#true} is VALID [2022-04-27 15:13:29,389 INFO L290 TraceCheckUtils]: 0: Hoare triple {8070#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {8026#true} is VALID [2022-04-27 15:13:29,391 INFO L272 TraceCheckUtils]: 1: Hoare triple {8026#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {8070#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:29,391 INFO L290 TraceCheckUtils]: 2: Hoare triple {8070#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {8026#true} is VALID [2022-04-27 15:13:29,391 INFO L290 TraceCheckUtils]: 3: Hoare triple {8026#true} assume !(0 == ~__BLAST_NONDET~5); {8026#true} is VALID [2022-04-27 15:13:29,391 INFO L290 TraceCheckUtils]: 4: Hoare triple {8026#true} #res := -1073741823; {8026#true} is VALID [2022-04-27 15:13:29,391 INFO L290 TraceCheckUtils]: 5: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,391 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {8026#true} {8026#true} #1176#return; {8026#true} is VALID [2022-04-27 15:13:29,391 INFO L290 TraceCheckUtils]: 7: Hoare triple {8026#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {8026#true} is VALID [2022-04-27 15:13:29,391 INFO L290 TraceCheckUtils]: 8: Hoare triple {8026#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {8026#true} is VALID [2022-04-27 15:13:29,391 INFO L290 TraceCheckUtils]: 9: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,391 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {8026#true} {8026#true} #1220#return; {8026#true} is VALID [2022-04-27 15:13:29,405 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:13:29,407 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:29,419 INFO L290 TraceCheckUtils]: 0: Hoare triple {8076#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,420 INFO L290 TraceCheckUtils]: 1: Hoare triple {8057#(= ~compRegistered~0 0)} assume true; {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,420 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {8057#(= ~compRegistered~0 0)} {8026#true} #1222#return; {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,420 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 49 [2022-04-27 15:13:29,424 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:29,436 INFO L290 TraceCheckUtils]: 0: Hoare triple {8065#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {8026#true} is VALID [2022-04-27 15:13:29,436 INFO L290 TraceCheckUtils]: 1: Hoare triple {8026#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {8026#true} is VALID [2022-04-27 15:13:29,436 INFO L290 TraceCheckUtils]: 2: Hoare triple {8026#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {8026#true} is VALID [2022-04-27 15:13:29,436 INFO L290 TraceCheckUtils]: 3: Hoare triple {8026#true} assume #res.base == dest.base && #res.offset == dest.offset; {8026#true} is VALID [2022-04-27 15:13:29,437 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {8026#true} {8057#(= ~compRegistered~0 0)} #1186#return; {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,438 INFO L272 TraceCheckUtils]: 0: Hoare triple {8026#true} call ULTIMATE.init(); {8063#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:13:29,438 INFO L290 TraceCheckUtils]: 1: Hoare triple {8063#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {8026#true} is VALID [2022-04-27 15:13:29,438 INFO L290 TraceCheckUtils]: 2: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,438 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {8026#true} {8026#true} #1270#return; {8026#true} is VALID [2022-04-27 15:13:29,438 INFO L272 TraceCheckUtils]: 4: Hoare triple {8026#true} call #t~ret213 := main(); {8026#true} is VALID [2022-04-27 15:13:29,439 INFO L290 TraceCheckUtils]: 5: Hoare triple {8026#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {8026#true} is VALID [2022-04-27 15:13:29,439 INFO L272 TraceCheckUtils]: 6: Hoare triple {8026#true} call _BLAST_init(); {8064#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:13:29,444 INFO L290 TraceCheckUtils]: 7: Hoare triple {8064#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {8026#true} is VALID [2022-04-27 15:13:29,444 INFO L290 TraceCheckUtils]: 8: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,444 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {8026#true} {8026#true} #1216#return; {8026#true} is VALID [2022-04-27 15:13:29,445 INFO L272 TraceCheckUtils]: 10: Hoare triple {8026#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {8065#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:13:29,445 INFO L290 TraceCheckUtils]: 11: Hoare triple {8065#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {8026#true} is VALID [2022-04-27 15:13:29,445 INFO L272 TraceCheckUtils]: 12: Hoare triple {8026#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {8026#true} is VALID [2022-04-27 15:13:29,445 INFO L290 TraceCheckUtils]: 13: Hoare triple {8026#true} ~cond := #in~cond; {8026#true} is VALID [2022-04-27 15:13:29,445 INFO L290 TraceCheckUtils]: 14: Hoare triple {8026#true} assume !(0 == ~cond); {8026#true} is VALID [2022-04-27 15:13:29,445 INFO L290 TraceCheckUtils]: 15: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,445 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {8026#true} {8026#true} #1254#return; {8026#true} is VALID [2022-04-27 15:13:29,445 INFO L290 TraceCheckUtils]: 17: Hoare triple {8026#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {8026#true} is VALID [2022-04-27 15:13:29,445 INFO L290 TraceCheckUtils]: 18: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,445 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {8026#true} {8026#true} #1218#return; {8026#true} is VALID [2022-04-27 15:13:29,446 INFO L290 TraceCheckUtils]: 20: Hoare triple {8026#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {8026#true} is VALID [2022-04-27 15:13:29,446 INFO L290 TraceCheckUtils]: 21: Hoare triple {8026#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {8026#true} is VALID [2022-04-27 15:13:29,446 INFO L290 TraceCheckUtils]: 22: Hoare triple {8026#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {8026#true} is VALID [2022-04-27 15:13:29,446 INFO L272 TraceCheckUtils]: 23: Hoare triple {8026#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {8070#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:29,447 INFO L290 TraceCheckUtils]: 24: Hoare triple {8070#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {8026#true} is VALID [2022-04-27 15:13:29,448 INFO L272 TraceCheckUtils]: 25: Hoare triple {8026#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {8070#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:29,448 INFO L290 TraceCheckUtils]: 26: Hoare triple {8070#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {8026#true} is VALID [2022-04-27 15:13:29,448 INFO L290 TraceCheckUtils]: 27: Hoare triple {8026#true} assume !(0 == ~__BLAST_NONDET~5); {8026#true} is VALID [2022-04-27 15:13:29,448 INFO L290 TraceCheckUtils]: 28: Hoare triple {8026#true} #res := -1073741823; {8026#true} is VALID [2022-04-27 15:13:29,448 INFO L290 TraceCheckUtils]: 29: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,448 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {8026#true} {8026#true} #1176#return; {8026#true} is VALID [2022-04-27 15:13:29,448 INFO L290 TraceCheckUtils]: 31: Hoare triple {8026#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {8026#true} is VALID [2022-04-27 15:13:29,448 INFO L290 TraceCheckUtils]: 32: Hoare triple {8026#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {8026#true} is VALID [2022-04-27 15:13:29,448 INFO L290 TraceCheckUtils]: 33: Hoare triple {8026#true} assume true; {8026#true} is VALID [2022-04-27 15:13:29,448 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {8026#true} {8026#true} #1220#return; {8026#true} is VALID [2022-04-27 15:13:29,448 INFO L290 TraceCheckUtils]: 35: Hoare triple {8026#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {8026#true} is VALID [2022-04-27 15:13:29,449 INFO L272 TraceCheckUtils]: 36: Hoare triple {8026#true} call stub_driver_init(); {8076#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:13:29,449 INFO L290 TraceCheckUtils]: 37: Hoare triple {8076#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,449 INFO L290 TraceCheckUtils]: 38: Hoare triple {8057#(= ~compRegistered~0 0)} assume true; {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,450 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {8057#(= ~compRegistered~0 0)} {8026#true} #1222#return; {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,450 INFO L290 TraceCheckUtils]: 40: Hoare triple {8057#(= ~compRegistered~0 0)} assume !!(~status~5 >= 0); {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,450 INFO L290 TraceCheckUtils]: 41: Hoare triple {8057#(= ~compRegistered~0 0)} assume !(0 == ~__BLAST_NONDET~0); {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,450 INFO L290 TraceCheckUtils]: 42: Hoare triple {8057#(= ~compRegistered~0 0)} assume !(1 == ~__BLAST_NONDET~0); {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,451 INFO L290 TraceCheckUtils]: 43: Hoare triple {8057#(= ~compRegistered~0 0)} assume !(2 == ~__BLAST_NONDET~0); {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,451 INFO L290 TraceCheckUtils]: 44: Hoare triple {8057#(= ~compRegistered~0 0)} assume 3 == ~__BLAST_NONDET~0; {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,452 INFO L272 TraceCheckUtils]: 45: Hoare triple {8057#(= ~compRegistered~0 0)} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,452 INFO L290 TraceCheckUtils]: 46: Hoare triple {8057#(= ~compRegistered~0 0)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,452 INFO L290 TraceCheckUtils]: 47: Hoare triple {8057#(= ~compRegistered~0 0)} assume 0 == #t~mem81 % 256;havoc #t~mem81; {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,453 INFO L290 TraceCheckUtils]: 48: Hoare triple {8057#(= ~compRegistered~0 0)} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,454 INFO L272 TraceCheckUtils]: 49: Hoare triple {8057#(= ~compRegistered~0 0)} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {8065#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:13:29,454 INFO L290 TraceCheckUtils]: 50: Hoare triple {8065#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {8026#true} is VALID [2022-04-27 15:13:29,454 INFO L290 TraceCheckUtils]: 51: Hoare triple {8026#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {8026#true} is VALID [2022-04-27 15:13:29,454 INFO L290 TraceCheckUtils]: 52: Hoare triple {8026#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {8026#true} is VALID [2022-04-27 15:13:29,454 INFO L290 TraceCheckUtils]: 53: Hoare triple {8026#true} assume #res.base == dest.base && #res.offset == dest.offset; {8026#true} is VALID [2022-04-27 15:13:29,455 INFO L284 TraceCheckUtils]: 54: Hoare quadruple {8026#true} {8057#(= ~compRegistered~0 0)} #1186#return; {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,455 INFO L290 TraceCheckUtils]: 55: Hoare triple {8057#(= ~compRegistered~0 0)} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,455 INFO L290 TraceCheckUtils]: 56: Hoare triple {8057#(= ~compRegistered~0 0)} assume !(~s~0 != ~NP~0); {8057#(= ~compRegistered~0 0)} is VALID [2022-04-27 15:13:29,456 INFO L290 TraceCheckUtils]: 57: Hoare triple {8057#(= ~compRegistered~0 0)} assume 0 != ~compRegistered~0; {8027#false} is VALID [2022-04-27 15:13:29,456 INFO L272 TraceCheckUtils]: 58: Hoare triple {8027#false} call errorFn(); {8027#false} is VALID [2022-04-27 15:13:29,456 INFO L290 TraceCheckUtils]: 59: Hoare triple {8027#false} assume !false; {8027#false} is VALID [2022-04-27 15:13:29,456 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:13:29,456 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:13:29,456 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1847972912] [2022-04-27 15:13:29,457 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1847972912] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:13:29,457 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:13:29,457 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2022-04-27 15:13:29,457 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1068314084] [2022-04-27 15:13:29,457 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:13:29,458 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 5.125) internal successors, (41), 3 states have internal predecessors, (41), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) Word has length 60 [2022-04-27 15:13:29,459 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:13:29,459 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 8 states, 8 states have (on average 5.125) internal successors, (41), 3 states have internal predecessors, (41), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2022-04-27 15:13:29,503 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 60 edges. 60 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:13:29,504 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-04-27 15:13:29,504 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:13:29,505 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-04-27 15:13:29,505 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2022-04-27 15:13:29,505 INFO L87 Difference]: Start difference. First operand 374 states and 498 transitions. Second operand has 8 states, 8 states have (on average 5.125) internal successors, (41), 3 states have internal predecessors, (41), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2022-04-27 15:13:31,655 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:13:37,063 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:37,063 INFO L93 Difference]: Finished difference Result 569 states and 751 transitions. [2022-04-27 15:13:37,063 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2022-04-27 15:13:37,063 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 5.125) internal successors, (41), 3 states have internal predecessors, (41), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) Word has length 60 [2022-04-27 15:13:37,064 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:13:37,064 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8 states, 8 states have (on average 5.125) internal successors, (41), 3 states have internal predecessors, (41), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2022-04-27 15:13:37,068 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 11 states to 11 states and 618 transitions. [2022-04-27 15:13:37,068 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8 states, 8 states have (on average 5.125) internal successors, (41), 3 states have internal predecessors, (41), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2022-04-27 15:13:37,071 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 11 states to 11 states and 618 transitions. [2022-04-27 15:13:37,071 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 11 states and 618 transitions. [2022-04-27 15:13:37,695 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 618 edges. 618 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:13:37,705 INFO L225 Difference]: With dead ends: 569 [2022-04-27 15:13:37,705 INFO L226 Difference]: Without dead ends: 450 [2022-04-27 15:13:37,706 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 31 GetRequests, 18 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 25 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=70, Invalid=140, Unknown=0, NotChecked=0, Total=210 [2022-04-27 15:13:37,706 INFO L413 NwaCegarLoop]: 321 mSDtfsCounter, 655 mSDsluCounter, 234 mSDsCounter, 0 mSdLazyCounter, 954 mSolverCounterSat, 202 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 667 SdHoareTripleChecker+Valid, 555 SdHoareTripleChecker+Invalid, 1157 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 202 IncrementalHoareTripleChecker+Valid, 954 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.5s IncrementalHoareTripleChecker+Time [2022-04-27 15:13:37,706 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [667 Valid, 555 Invalid, 1157 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [202 Valid, 954 Invalid, 1 Unknown, 0 Unchecked, 4.5s Time] [2022-04-27 15:13:37,707 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 450 states. [2022-04-27 15:13:37,725 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 450 to 410. [2022-04-27 15:13:37,725 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:13:37,726 INFO L82 GeneralOperation]: Start isEquivalent. First operand 450 states. Second operand has 410 states, 325 states have (on average 1.3723076923076922) internal successors, (446), 327 states have internal predecessors, (446), 44 states have call successors, (44), 33 states have call predecessors, (44), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:13:37,726 INFO L74 IsIncluded]: Start isIncluded. First operand 450 states. Second operand has 410 states, 325 states have (on average 1.3723076923076922) internal successors, (446), 327 states have internal predecessors, (446), 44 states have call successors, (44), 33 states have call predecessors, (44), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:13:37,727 INFO L87 Difference]: Start difference. First operand 450 states. Second operand has 410 states, 325 states have (on average 1.3723076923076922) internal successors, (446), 327 states have internal predecessors, (446), 44 states have call successors, (44), 33 states have call predecessors, (44), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:13:37,736 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:37,736 INFO L93 Difference]: Finished difference Result 450 states and 596 transitions. [2022-04-27 15:13:37,736 INFO L276 IsEmpty]: Start isEmpty. Operand 450 states and 596 transitions. [2022-04-27 15:13:37,737 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:13:37,737 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:13:37,737 INFO L74 IsIncluded]: Start isIncluded. First operand has 410 states, 325 states have (on average 1.3723076923076922) internal successors, (446), 327 states have internal predecessors, (446), 44 states have call successors, (44), 33 states have call predecessors, (44), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) Second operand 450 states. [2022-04-27 15:13:37,738 INFO L87 Difference]: Start difference. First operand has 410 states, 325 states have (on average 1.3723076923076922) internal successors, (446), 327 states have internal predecessors, (446), 44 states have call successors, (44), 33 states have call predecessors, (44), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) Second operand 450 states. [2022-04-27 15:13:37,747 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:37,747 INFO L93 Difference]: Finished difference Result 450 states and 596 transitions. [2022-04-27 15:13:37,748 INFO L276 IsEmpty]: Start isEmpty. Operand 450 states and 596 transitions. [2022-04-27 15:13:37,748 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:13:37,748 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:13:37,748 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:13:37,748 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:13:37,749 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 410 states, 325 states have (on average 1.3723076923076922) internal successors, (446), 327 states have internal predecessors, (446), 44 states have call successors, (44), 33 states have call predecessors, (44), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:13:37,757 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 410 states to 410 states and 545 transitions. [2022-04-27 15:13:37,758 INFO L78 Accepts]: Start accepts. Automaton has 410 states and 545 transitions. Word has length 60 [2022-04-27 15:13:37,758 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:13:37,758 INFO L495 AbstractCegarLoop]: Abstraction has 410 states and 545 transitions. [2022-04-27 15:13:37,758 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 5.125) internal successors, (41), 3 states have internal predecessors, (41), 3 states have call successors, (11), 8 states have call predecessors, (11), 2 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2022-04-27 15:13:37,758 INFO L276 IsEmpty]: Start isEmpty. Operand 410 states and 545 transitions. [2022-04-27 15:13:37,759 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 61 [2022-04-27 15:13:37,759 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:13:37,759 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:13:37,759 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-04-27 15:13:37,759 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:13:37,759 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:13:37,759 INFO L85 PathProgramCache]: Analyzing trace with hash -110356200, now seen corresponding path program 1 times [2022-04-27 15:13:37,759 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:13:37,759 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [510061170] [2022-04-27 15:13:37,760 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:13:37,760 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:13:37,804 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:37,905 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:13:37,907 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:37,917 INFO L290 TraceCheckUtils]: 0: Hoare triple {10332#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {10295#true} is VALID [2022-04-27 15:13:37,917 INFO L290 TraceCheckUtils]: 1: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:37,917 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {10295#true} {10295#true} #1270#return; {10295#true} is VALID [2022-04-27 15:13:37,937 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:13:37,940 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:37,955 INFO L290 TraceCheckUtils]: 0: Hoare triple {10333#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {10334#(and (= (+ (- 1) ~NP~0) 0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:13:37,956 INFO L290 TraceCheckUtils]: 1: Hoare triple {10334#(and (= (+ (- 1) ~NP~0) 0) (<= 4 ~SKIP2~0))} assume true; {10334#(and (= (+ (- 1) ~NP~0) 0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:13:37,956 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {10334#(and (= (+ (- 1) ~NP~0) 0) (<= 4 ~SKIP2~0))} {10295#true} #1216#return; {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:37,963 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:13:37,982 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:37,994 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:13:37,995 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:38,001 INFO L290 TraceCheckUtils]: 0: Hoare triple {10295#true} ~cond := #in~cond; {10295#true} is VALID [2022-04-27 15:13:38,001 INFO L290 TraceCheckUtils]: 1: Hoare triple {10295#true} assume !(0 == ~cond); {10295#true} is VALID [2022-04-27 15:13:38,001 INFO L290 TraceCheckUtils]: 2: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,001 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {10295#true} {10295#true} #1254#return; {10295#true} is VALID [2022-04-27 15:13:38,001 INFO L290 TraceCheckUtils]: 0: Hoare triple {10335#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {10295#true} is VALID [2022-04-27 15:13:38,001 INFO L272 TraceCheckUtils]: 1: Hoare triple {10295#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {10295#true} is VALID [2022-04-27 15:13:38,001 INFO L290 TraceCheckUtils]: 2: Hoare triple {10295#true} ~cond := #in~cond; {10295#true} is VALID [2022-04-27 15:13:38,001 INFO L290 TraceCheckUtils]: 3: Hoare triple {10295#true} assume !(0 == ~cond); {10295#true} is VALID [2022-04-27 15:13:38,001 INFO L290 TraceCheckUtils]: 4: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,002 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {10295#true} {10295#true} #1254#return; {10295#true} is VALID [2022-04-27 15:13:38,002 INFO L290 TraceCheckUtils]: 6: Hoare triple {10295#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {10295#true} is VALID [2022-04-27 15:13:38,002 INFO L290 TraceCheckUtils]: 7: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,002 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {10295#true} {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} #1218#return; {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:38,012 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:13:38,017 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:38,023 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:13:38,025 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:38,030 INFO L290 TraceCheckUtils]: 0: Hoare triple {10340#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {10295#true} is VALID [2022-04-27 15:13:38,031 INFO L290 TraceCheckUtils]: 1: Hoare triple {10295#true} assume !(0 == ~__BLAST_NONDET~5); {10295#true} is VALID [2022-04-27 15:13:38,031 INFO L290 TraceCheckUtils]: 2: Hoare triple {10295#true} #res := -1073741823; {10295#true} is VALID [2022-04-27 15:13:38,031 INFO L290 TraceCheckUtils]: 3: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,031 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {10295#true} {10295#true} #1176#return; {10295#true} is VALID [2022-04-27 15:13:38,031 INFO L290 TraceCheckUtils]: 0: Hoare triple {10340#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {10295#true} is VALID [2022-04-27 15:13:38,032 INFO L272 TraceCheckUtils]: 1: Hoare triple {10295#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {10340#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:38,032 INFO L290 TraceCheckUtils]: 2: Hoare triple {10340#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {10295#true} is VALID [2022-04-27 15:13:38,032 INFO L290 TraceCheckUtils]: 3: Hoare triple {10295#true} assume !(0 == ~__BLAST_NONDET~5); {10295#true} is VALID [2022-04-27 15:13:38,032 INFO L290 TraceCheckUtils]: 4: Hoare triple {10295#true} #res := -1073741823; {10295#true} is VALID [2022-04-27 15:13:38,032 INFO L290 TraceCheckUtils]: 5: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,032 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {10295#true} {10295#true} #1176#return; {10295#true} is VALID [2022-04-27 15:13:38,032 INFO L290 TraceCheckUtils]: 7: Hoare triple {10295#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {10295#true} is VALID [2022-04-27 15:13:38,032 INFO L290 TraceCheckUtils]: 8: Hoare triple {10295#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {10295#true} is VALID [2022-04-27 15:13:38,033 INFO L290 TraceCheckUtils]: 9: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,033 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {10295#true} {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} #1220#return; {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:38,047 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:13:38,049 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:38,089 INFO L290 TraceCheckUtils]: 0: Hoare triple {10346#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {10347#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} is VALID [2022-04-27 15:13:38,089 INFO L290 TraceCheckUtils]: 1: Hoare triple {10347#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} assume true; {10347#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} is VALID [2022-04-27 15:13:38,090 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {10347#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} #1222#return; {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,090 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 44 [2022-04-27 15:13:38,093 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:38,100 INFO L290 TraceCheckUtils]: 0: Hoare triple {10295#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647; {10295#true} is VALID [2022-04-27 15:13:38,100 INFO L290 TraceCheckUtils]: 1: Hoare triple {10295#true} assume 0 != #t~nondet17;havoc #t~nondet17;#res := 0; {10295#true} is VALID [2022-04-27 15:13:38,100 INFO L290 TraceCheckUtils]: 2: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,101 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {10295#true} {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} #1228#return; {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,103 INFO L272 TraceCheckUtils]: 0: Hoare triple {10295#true} call ULTIMATE.init(); {10332#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:13:38,103 INFO L290 TraceCheckUtils]: 1: Hoare triple {10332#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {10295#true} is VALID [2022-04-27 15:13:38,103 INFO L290 TraceCheckUtils]: 2: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,103 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {10295#true} {10295#true} #1270#return; {10295#true} is VALID [2022-04-27 15:13:38,103 INFO L272 TraceCheckUtils]: 4: Hoare triple {10295#true} call #t~ret213 := main(); {10295#true} is VALID [2022-04-27 15:13:38,103 INFO L290 TraceCheckUtils]: 5: Hoare triple {10295#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {10295#true} is VALID [2022-04-27 15:13:38,104 INFO L272 TraceCheckUtils]: 6: Hoare triple {10295#true} call _BLAST_init(); {10333#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:13:38,105 INFO L290 TraceCheckUtils]: 7: Hoare triple {10333#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {10334#(and (= (+ (- 1) ~NP~0) 0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:13:38,105 INFO L290 TraceCheckUtils]: 8: Hoare triple {10334#(and (= (+ (- 1) ~NP~0) 0) (<= 4 ~SKIP2~0))} assume true; {10334#(and (= (+ (- 1) ~NP~0) 0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:13:38,106 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {10334#(and (= (+ (- 1) ~NP~0) 0) (<= 4 ~SKIP2~0))} {10295#true} #1216#return; {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:38,107 INFO L272 TraceCheckUtils]: 10: Hoare triple {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {10335#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:13:38,107 INFO L290 TraceCheckUtils]: 11: Hoare triple {10335#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {10295#true} is VALID [2022-04-27 15:13:38,107 INFO L272 TraceCheckUtils]: 12: Hoare triple {10295#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {10295#true} is VALID [2022-04-27 15:13:38,107 INFO L290 TraceCheckUtils]: 13: Hoare triple {10295#true} ~cond := #in~cond; {10295#true} is VALID [2022-04-27 15:13:38,107 INFO L290 TraceCheckUtils]: 14: Hoare triple {10295#true} assume !(0 == ~cond); {10295#true} is VALID [2022-04-27 15:13:38,107 INFO L290 TraceCheckUtils]: 15: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,107 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {10295#true} {10295#true} #1254#return; {10295#true} is VALID [2022-04-27 15:13:38,107 INFO L290 TraceCheckUtils]: 17: Hoare triple {10295#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {10295#true} is VALID [2022-04-27 15:13:38,107 INFO L290 TraceCheckUtils]: 18: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,108 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {10295#true} {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} #1218#return; {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:38,108 INFO L290 TraceCheckUtils]: 20: Hoare triple {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:38,109 INFO L290 TraceCheckUtils]: 21: Hoare triple {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:38,109 INFO L290 TraceCheckUtils]: 22: Hoare triple {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:38,110 INFO L272 TraceCheckUtils]: 23: Hoare triple {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {10340#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:38,110 INFO L290 TraceCheckUtils]: 24: Hoare triple {10340#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {10295#true} is VALID [2022-04-27 15:13:38,111 INFO L272 TraceCheckUtils]: 25: Hoare triple {10295#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {10340#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:38,111 INFO L290 TraceCheckUtils]: 26: Hoare triple {10340#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {10295#true} is VALID [2022-04-27 15:13:38,112 INFO L290 TraceCheckUtils]: 27: Hoare triple {10295#true} assume !(0 == ~__BLAST_NONDET~5); {10295#true} is VALID [2022-04-27 15:13:38,112 INFO L290 TraceCheckUtils]: 28: Hoare triple {10295#true} #res := -1073741823; {10295#true} is VALID [2022-04-27 15:13:38,112 INFO L290 TraceCheckUtils]: 29: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,112 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {10295#true} {10295#true} #1176#return; {10295#true} is VALID [2022-04-27 15:13:38,112 INFO L290 TraceCheckUtils]: 31: Hoare triple {10295#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {10295#true} is VALID [2022-04-27 15:13:38,112 INFO L290 TraceCheckUtils]: 32: Hoare triple {10295#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {10295#true} is VALID [2022-04-27 15:13:38,112 INFO L290 TraceCheckUtils]: 33: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,113 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {10295#true} {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} #1220#return; {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:38,113 INFO L290 TraceCheckUtils]: 35: Hoare triple {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:38,114 INFO L272 TraceCheckUtils]: 36: Hoare triple {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} call stub_driver_init(); {10346#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:13:38,114 INFO L290 TraceCheckUtils]: 37: Hoare triple {10346#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {10347#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} is VALID [2022-04-27 15:13:38,114 INFO L290 TraceCheckUtils]: 38: Hoare triple {10347#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} assume true; {10347#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} is VALID [2022-04-27 15:13:38,115 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {10347#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} {10303#(and (not (= ~SKIP2~0 1)) (= ~NP~0 1))} #1222#return; {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,115 INFO L290 TraceCheckUtils]: 40: Hoare triple {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} assume !!(~status~5 >= 0); {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,116 INFO L290 TraceCheckUtils]: 41: Hoare triple {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} assume !(0 == ~__BLAST_NONDET~0); {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,116 INFO L290 TraceCheckUtils]: 42: Hoare triple {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} assume !(1 == ~__BLAST_NONDET~0); {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,116 INFO L290 TraceCheckUtils]: 43: Hoare triple {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} assume 2 == ~__BLAST_NONDET~0; {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,116 INFO L272 TraceCheckUtils]: 44: Hoare triple {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} call #t~ret173 := KbFilter_IoCtl(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {10295#true} is VALID [2022-04-27 15:13:38,116 INFO L290 TraceCheckUtils]: 45: Hoare triple {10295#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647; {10295#true} is VALID [2022-04-27 15:13:38,116 INFO L290 TraceCheckUtils]: 46: Hoare triple {10295#true} assume 0 != #t~nondet17;havoc #t~nondet17;#res := 0; {10295#true} is VALID [2022-04-27 15:13:38,116 INFO L290 TraceCheckUtils]: 47: Hoare triple {10295#true} assume true; {10295#true} is VALID [2022-04-27 15:13:38,117 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {10295#true} {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} #1228#return; {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,117 INFO L290 TraceCheckUtils]: 49: Hoare triple {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} assume -2147483648 <= #t~ret173 && #t~ret173 <= 2147483647;~status~5 := #t~ret173;havoc #t~ret173; {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,118 INFO L290 TraceCheckUtils]: 50: Hoare triple {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} assume 0 != ~we_should_unload~0; {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,118 INFO L290 TraceCheckUtils]: 51: Hoare triple {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} assume !(1 == ~pended~0); {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,118 INFO L290 TraceCheckUtils]: 52: Hoare triple {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} assume !(1 == ~pended~0); {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,119 INFO L290 TraceCheckUtils]: 53: Hoare triple {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} assume !(~s~0 == ~UNLOADED~0); {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,119 INFO L290 TraceCheckUtils]: 54: Hoare triple {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} assume !(-1 == ~status~5); {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} is VALID [2022-04-27 15:13:38,119 INFO L290 TraceCheckUtils]: 55: Hoare triple {10327#(and (= ~s~0 1) (not (= ~SKIP2~0 1)))} assume !(~s~0 != ~SKIP2~0); {10296#false} is VALID [2022-04-27 15:13:38,119 INFO L290 TraceCheckUtils]: 56: Hoare triple {10296#false} assume 1 == ~pended~0; {10296#false} is VALID [2022-04-27 15:13:38,120 INFO L290 TraceCheckUtils]: 57: Hoare triple {10296#false} assume 259 != ~status~5; {10296#false} is VALID [2022-04-27 15:13:38,120 INFO L272 TraceCheckUtils]: 58: Hoare triple {10296#false} call errorFn(); {10296#false} is VALID [2022-04-27 15:13:38,120 INFO L290 TraceCheckUtils]: 59: Hoare triple {10296#false} assume !false; {10296#false} is VALID [2022-04-27 15:13:38,120 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:13:38,120 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:13:38,121 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [510061170] [2022-04-27 15:13:38,121 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [510061170] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:13:38,121 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:13:38,121 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [11] imperfect sequences [] total 11 [2022-04-27 15:13:38,121 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1864774363] [2022-04-27 15:13:38,121 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:13:38,122 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 11 states have (on average 3.8181818181818183) internal successors, (42), 6 states have internal predecessors, (42), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) Word has length 60 [2022-04-27 15:13:38,122 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:13:38,122 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 11 states, 11 states have (on average 3.8181818181818183) internal successors, (42), 6 states have internal predecessors, (42), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:13:38,172 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 60 edges. 60 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:13:38,173 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2022-04-27 15:13:38,173 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:13:38,173 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2022-04-27 15:13:38,173 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=25, Invalid=85, Unknown=0, NotChecked=0, Total=110 [2022-04-27 15:13:38,173 INFO L87 Difference]: Start difference. First operand 410 states and 545 transitions. Second operand has 11 states, 11 states have (on average 3.8181818181818183) internal successors, (42), 6 states have internal predecessors, (42), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:13:40,356 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:13:46,662 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:46,663 INFO L93 Difference]: Finished difference Result 450 states and 594 transitions. [2022-04-27 15:13:46,663 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2022-04-27 15:13:46,663 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 11 states have (on average 3.8181818181818183) internal successors, (42), 6 states have internal predecessors, (42), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) Word has length 60 [2022-04-27 15:13:46,663 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:13:46,663 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11 states, 11 states have (on average 3.8181818181818183) internal successors, (42), 6 states have internal predecessors, (42), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:13:46,667 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 17 states to 17 states and 542 transitions. [2022-04-27 15:13:46,667 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11 states, 11 states have (on average 3.8181818181818183) internal successors, (42), 6 states have internal predecessors, (42), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:13:46,670 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 17 states to 17 states and 542 transitions. [2022-04-27 15:13:46,670 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 17 states and 542 transitions. [2022-04-27 15:13:47,293 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 542 edges. 542 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:13:47,311 INFO L225 Difference]: With dead ends: 450 [2022-04-27 15:13:47,311 INFO L226 Difference]: Without dead ends: 442 [2022-04-27 15:13:47,312 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 37 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 81 ImplicationChecksByTransitivity, 0.6s TimeCoverageRelationStatistics Valid=156, Invalid=396, Unknown=0, NotChecked=0, Total=552 [2022-04-27 15:13:47,313 INFO L413 NwaCegarLoop]: 331 mSDtfsCounter, 982 mSDsluCounter, 272 mSDsCounter, 0 mSdLazyCounter, 1096 mSolverCounterSat, 325 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 991 SdHoareTripleChecker+Valid, 603 SdHoareTripleChecker+Invalid, 1422 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 325 IncrementalHoareTripleChecker+Valid, 1096 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.5s IncrementalHoareTripleChecker+Time [2022-04-27 15:13:47,313 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [991 Valid, 603 Invalid, 1422 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [325 Valid, 1096 Invalid, 1 Unknown, 0 Unchecked, 4.5s Time] [2022-04-27 15:13:47,314 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 442 states. [2022-04-27 15:13:47,419 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 442 to 415. [2022-04-27 15:13:47,419 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:13:47,420 INFO L82 GeneralOperation]: Start isEquivalent. First operand 442 states. Second operand has 415 states, 330 states have (on average 1.3696969696969696) internal successors, (452), 332 states have internal predecessors, (452), 44 states have call successors, (44), 33 states have call predecessors, (44), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:13:47,426 INFO L74 IsIncluded]: Start isIncluded. First operand 442 states. Second operand has 415 states, 330 states have (on average 1.3696969696969696) internal successors, (452), 332 states have internal predecessors, (452), 44 states have call successors, (44), 33 states have call predecessors, (44), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:13:47,426 INFO L87 Difference]: Start difference. First operand 442 states. Second operand has 415 states, 330 states have (on average 1.3696969696969696) internal successors, (452), 332 states have internal predecessors, (452), 44 states have call successors, (44), 33 states have call predecessors, (44), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:13:47,435 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:47,435 INFO L93 Difference]: Finished difference Result 442 states and 585 transitions. [2022-04-27 15:13:47,435 INFO L276 IsEmpty]: Start isEmpty. Operand 442 states and 585 transitions. [2022-04-27 15:13:47,436 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:13:47,436 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:13:47,437 INFO L74 IsIncluded]: Start isIncluded. First operand has 415 states, 330 states have (on average 1.3696969696969696) internal successors, (452), 332 states have internal predecessors, (452), 44 states have call successors, (44), 33 states have call predecessors, (44), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) Second operand 442 states. [2022-04-27 15:13:47,438 INFO L87 Difference]: Start difference. First operand has 415 states, 330 states have (on average 1.3696969696969696) internal successors, (452), 332 states have internal predecessors, (452), 44 states have call successors, (44), 33 states have call predecessors, (44), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) Second operand 442 states. [2022-04-27 15:13:47,448 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:47,448 INFO L93 Difference]: Finished difference Result 442 states and 585 transitions. [2022-04-27 15:13:47,448 INFO L276 IsEmpty]: Start isEmpty. Operand 442 states and 585 transitions. [2022-04-27 15:13:47,450 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:13:47,451 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:13:47,451 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:13:47,451 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:13:47,452 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 415 states, 330 states have (on average 1.3696969696969696) internal successors, (452), 332 states have internal predecessors, (452), 44 states have call successors, (44), 33 states have call predecessors, (44), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:13:47,461 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 415 states to 415 states and 551 transitions. [2022-04-27 15:13:47,461 INFO L78 Accepts]: Start accepts. Automaton has 415 states and 551 transitions. Word has length 60 [2022-04-27 15:13:47,462 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:13:47,462 INFO L495 AbstractCegarLoop]: Abstraction has 415 states and 551 transitions. [2022-04-27 15:13:47,462 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 11 states have (on average 3.8181818181818183) internal successors, (42), 6 states have internal predecessors, (42), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:13:47,462 INFO L276 IsEmpty]: Start isEmpty. Operand 415 states and 551 transitions. [2022-04-27 15:13:47,463 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 63 [2022-04-27 15:13:47,463 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:13:47,463 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:13:47,463 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-04-27 15:13:47,463 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:13:47,463 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:13:47,463 INFO L85 PathProgramCache]: Analyzing trace with hash 400358010, now seen corresponding path program 1 times [2022-04-27 15:13:47,464 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:13:47,464 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2025998964] [2022-04-27 15:13:47,464 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:13:47,464 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:13:47,518 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:47,583 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:13:47,586 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:47,596 INFO L290 TraceCheckUtils]: 0: Hoare triple {12453#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {12421#true} is VALID [2022-04-27 15:13:47,596 INFO L290 TraceCheckUtils]: 1: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,596 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {12421#true} {12421#true} #1270#return; {12421#true} is VALID [2022-04-27 15:13:47,613 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:13:47,614 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:47,619 INFO L290 TraceCheckUtils]: 0: Hoare triple {12454#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {12421#true} is VALID [2022-04-27 15:13:47,619 INFO L290 TraceCheckUtils]: 1: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,619 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {12421#true} {12421#true} #1216#return; {12421#true} is VALID [2022-04-27 15:13:47,625 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:13:47,632 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:47,640 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:13:47,641 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:47,651 INFO L290 TraceCheckUtils]: 0: Hoare triple {12421#true} ~cond := #in~cond; {12421#true} is VALID [2022-04-27 15:13:47,651 INFO L290 TraceCheckUtils]: 1: Hoare triple {12421#true} assume !(0 == ~cond); {12421#true} is VALID [2022-04-27 15:13:47,651 INFO L290 TraceCheckUtils]: 2: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,651 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {12421#true} {12421#true} #1254#return; {12421#true} is VALID [2022-04-27 15:13:47,651 INFO L290 TraceCheckUtils]: 0: Hoare triple {12455#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {12421#true} is VALID [2022-04-27 15:13:47,651 INFO L272 TraceCheckUtils]: 1: Hoare triple {12421#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {12421#true} is VALID [2022-04-27 15:13:47,652 INFO L290 TraceCheckUtils]: 2: Hoare triple {12421#true} ~cond := #in~cond; {12421#true} is VALID [2022-04-27 15:13:47,652 INFO L290 TraceCheckUtils]: 3: Hoare triple {12421#true} assume !(0 == ~cond); {12421#true} is VALID [2022-04-27 15:13:47,652 INFO L290 TraceCheckUtils]: 4: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,652 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {12421#true} {12421#true} #1254#return; {12421#true} is VALID [2022-04-27 15:13:47,652 INFO L290 TraceCheckUtils]: 6: Hoare triple {12421#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {12421#true} is VALID [2022-04-27 15:13:47,652 INFO L290 TraceCheckUtils]: 7: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,652 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {12421#true} {12421#true} #1218#return; {12421#true} is VALID [2022-04-27 15:13:47,660 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:13:47,663 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:47,670 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:13:47,671 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:47,677 INFO L290 TraceCheckUtils]: 0: Hoare triple {12460#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {12421#true} is VALID [2022-04-27 15:13:47,677 INFO L290 TraceCheckUtils]: 1: Hoare triple {12421#true} assume !(0 == ~__BLAST_NONDET~5); {12421#true} is VALID [2022-04-27 15:13:47,677 INFO L290 TraceCheckUtils]: 2: Hoare triple {12421#true} #res := -1073741823; {12421#true} is VALID [2022-04-27 15:13:47,677 INFO L290 TraceCheckUtils]: 3: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,677 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {12421#true} {12421#true} #1176#return; {12421#true} is VALID [2022-04-27 15:13:47,677 INFO L290 TraceCheckUtils]: 0: Hoare triple {12460#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {12421#true} is VALID [2022-04-27 15:13:47,678 INFO L272 TraceCheckUtils]: 1: Hoare triple {12421#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {12460#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:47,678 INFO L290 TraceCheckUtils]: 2: Hoare triple {12460#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {12421#true} is VALID [2022-04-27 15:13:47,678 INFO L290 TraceCheckUtils]: 3: Hoare triple {12421#true} assume !(0 == ~__BLAST_NONDET~5); {12421#true} is VALID [2022-04-27 15:13:47,678 INFO L290 TraceCheckUtils]: 4: Hoare triple {12421#true} #res := -1073741823; {12421#true} is VALID [2022-04-27 15:13:47,678 INFO L290 TraceCheckUtils]: 5: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,678 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {12421#true} {12421#true} #1176#return; {12421#true} is VALID [2022-04-27 15:13:47,678 INFO L290 TraceCheckUtils]: 7: Hoare triple {12421#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {12421#true} is VALID [2022-04-27 15:13:47,678 INFO L290 TraceCheckUtils]: 8: Hoare triple {12421#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {12421#true} is VALID [2022-04-27 15:13:47,679 INFO L290 TraceCheckUtils]: 9: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,679 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {12421#true} {12421#true} #1220#return; {12421#true} is VALID [2022-04-27 15:13:47,689 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:13:47,692 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:47,697 INFO L290 TraceCheckUtils]: 0: Hoare triple {12466#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {12421#true} is VALID [2022-04-27 15:13:47,697 INFO L290 TraceCheckUtils]: 1: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,697 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {12421#true} {12421#true} #1222#return; {12421#true} is VALID [2022-04-27 15:13:47,698 INFO L272 TraceCheckUtils]: 0: Hoare triple {12421#true} call ULTIMATE.init(); {12453#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:13:47,698 INFO L290 TraceCheckUtils]: 1: Hoare triple {12453#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {12421#true} is VALID [2022-04-27 15:13:47,698 INFO L290 TraceCheckUtils]: 2: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,698 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {12421#true} {12421#true} #1270#return; {12421#true} is VALID [2022-04-27 15:13:47,698 INFO L272 TraceCheckUtils]: 4: Hoare triple {12421#true} call #t~ret213 := main(); {12421#true} is VALID [2022-04-27 15:13:47,699 INFO L290 TraceCheckUtils]: 5: Hoare triple {12421#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {12421#true} is VALID [2022-04-27 15:13:47,699 INFO L272 TraceCheckUtils]: 6: Hoare triple {12421#true} call _BLAST_init(); {12454#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:13:47,699 INFO L290 TraceCheckUtils]: 7: Hoare triple {12454#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {12421#true} is VALID [2022-04-27 15:13:47,699 INFO L290 TraceCheckUtils]: 8: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,699 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {12421#true} {12421#true} #1216#return; {12421#true} is VALID [2022-04-27 15:13:47,700 INFO L272 TraceCheckUtils]: 10: Hoare triple {12421#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {12455#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:13:47,700 INFO L290 TraceCheckUtils]: 11: Hoare triple {12455#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {12421#true} is VALID [2022-04-27 15:13:47,700 INFO L272 TraceCheckUtils]: 12: Hoare triple {12421#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {12421#true} is VALID [2022-04-27 15:13:47,701 INFO L290 TraceCheckUtils]: 13: Hoare triple {12421#true} ~cond := #in~cond; {12421#true} is VALID [2022-04-27 15:13:47,701 INFO L290 TraceCheckUtils]: 14: Hoare triple {12421#true} assume !(0 == ~cond); {12421#true} is VALID [2022-04-27 15:13:47,701 INFO L290 TraceCheckUtils]: 15: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,701 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {12421#true} {12421#true} #1254#return; {12421#true} is VALID [2022-04-27 15:13:47,701 INFO L290 TraceCheckUtils]: 17: Hoare triple {12421#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {12421#true} is VALID [2022-04-27 15:13:47,701 INFO L290 TraceCheckUtils]: 18: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,702 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {12421#true} {12421#true} #1218#return; {12421#true} is VALID [2022-04-27 15:13:47,702 INFO L290 TraceCheckUtils]: 20: Hoare triple {12421#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {12421#true} is VALID [2022-04-27 15:13:47,702 INFO L290 TraceCheckUtils]: 21: Hoare triple {12421#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {12421#true} is VALID [2022-04-27 15:13:47,702 INFO L290 TraceCheckUtils]: 22: Hoare triple {12421#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {12421#true} is VALID [2022-04-27 15:13:47,702 INFO L272 TraceCheckUtils]: 23: Hoare triple {12421#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {12460#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:47,702 INFO L290 TraceCheckUtils]: 24: Hoare triple {12460#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {12421#true} is VALID [2022-04-27 15:13:47,703 INFO L272 TraceCheckUtils]: 25: Hoare triple {12421#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {12460#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:47,703 INFO L290 TraceCheckUtils]: 26: Hoare triple {12460#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {12421#true} is VALID [2022-04-27 15:13:47,703 INFO L290 TraceCheckUtils]: 27: Hoare triple {12421#true} assume !(0 == ~__BLAST_NONDET~5); {12421#true} is VALID [2022-04-27 15:13:47,703 INFO L290 TraceCheckUtils]: 28: Hoare triple {12421#true} #res := -1073741823; {12421#true} is VALID [2022-04-27 15:13:47,703 INFO L290 TraceCheckUtils]: 29: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,704 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {12421#true} {12421#true} #1176#return; {12421#true} is VALID [2022-04-27 15:13:47,704 INFO L290 TraceCheckUtils]: 31: Hoare triple {12421#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {12421#true} is VALID [2022-04-27 15:13:47,704 INFO L290 TraceCheckUtils]: 32: Hoare triple {12421#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {12421#true} is VALID [2022-04-27 15:13:47,704 INFO L290 TraceCheckUtils]: 33: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,704 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {12421#true} {12421#true} #1220#return; {12421#true} is VALID [2022-04-27 15:13:47,704 INFO L290 TraceCheckUtils]: 35: Hoare triple {12421#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {12421#true} is VALID [2022-04-27 15:13:47,704 INFO L272 TraceCheckUtils]: 36: Hoare triple {12421#true} call stub_driver_init(); {12466#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:13:47,704 INFO L290 TraceCheckUtils]: 37: Hoare triple {12466#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {12421#true} is VALID [2022-04-27 15:13:47,704 INFO L290 TraceCheckUtils]: 38: Hoare triple {12421#true} assume true; {12421#true} is VALID [2022-04-27 15:13:47,705 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {12421#true} {12421#true} #1222#return; {12421#true} is VALID [2022-04-27 15:13:47,705 INFO L290 TraceCheckUtils]: 40: Hoare triple {12421#true} assume !!(~status~5 >= 0); {12421#true} is VALID [2022-04-27 15:13:47,705 INFO L290 TraceCheckUtils]: 41: Hoare triple {12421#true} assume 0 == ~__BLAST_NONDET~0; {12421#true} is VALID [2022-04-27 15:13:47,705 INFO L272 TraceCheckUtils]: 42: Hoare triple {12421#true} call #t~ret171 := KbFilter_CreateClose(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {12421#true} is VALID [2022-04-27 15:13:47,705 INFO L290 TraceCheckUtils]: 43: Hoare triple {12421#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~0.base, ~irpStack~0.offset;havoc ~status~1;havoc ~devExt~1.base, ~devExt~1.offset;havoc ~tmp~0;havoc ~tmp___0~0;havoc ~tmp___1~0;call #t~mem36.base, #t~mem36.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~0.base, ~irpStack~0.offset := #t~mem36.base, #t~mem36.offset;havoc #t~mem36.base, #t~mem36.offset;call #t~mem37.base, #t~mem37.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~1.base, ~devExt~1.offset := #t~mem37.base, #t~mem37.offset;havoc #t~mem37.base, #t~mem37.offset;call #t~mem38 := read~int(~Irp.base, 24 + ~Irp.offset, 4);~status~1 := #t~mem38;havoc #t~mem38;~status~1 := ~myStatus~0;call #t~mem39 := read~int(~irpStack~0.base, ~irpStack~0.offset, 1); {12421#true} is VALID [2022-04-27 15:13:47,705 INFO L290 TraceCheckUtils]: 44: Hoare triple {12421#true} assume 0 == #t~mem39 % 256;havoc #t~mem39; {12421#true} is VALID [2022-04-27 15:13:47,705 INFO L290 TraceCheckUtils]: 45: Hoare triple {12421#true} call #t~mem41.base, #t~mem41.offset := read~$Pointer$(~devExt~1.base, 20 + ~devExt~1.offset, 4); {12421#true} is VALID [2022-04-27 15:13:47,705 INFO L290 TraceCheckUtils]: 46: Hoare triple {12421#true} assume 0 == (#t~mem41.base + #t~mem41.offset) % 4294967296;havoc #t~mem41.base, #t~mem41.offset;~status~1 := -1073741436; {12421#true} is VALID [2022-04-27 15:13:47,705 INFO L290 TraceCheckUtils]: 47: Hoare triple {12421#true} call write~int(~status~1, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~1; {12421#true} is VALID [2022-04-27 15:13:47,705 INFO L272 TraceCheckUtils]: 48: Hoare triple {12421#true} call #t~ret44 := KbFilter_DispatchPassThrough(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset); {12421#true} is VALID [2022-04-27 15:13:47,705 INFO L290 TraceCheckUtils]: 49: Hoare triple {12421#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~1.base, ~irpStack~1.offset;havoc ~tmp~1;call #t~mem45.base, #t~mem45.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~1.base, ~irpStack~1.offset := #t~mem45.base, #t~mem45.offset;havoc #t~mem45.base, #t~mem45.offset; {12421#true} is VALID [2022-04-27 15:13:47,705 INFO L290 TraceCheckUtils]: 50: Hoare triple {12421#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {12452#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:13:47,706 INFO L290 TraceCheckUtils]: 51: Hoare triple {12452#(= ~SKIP1~0 ~s~0)} call #t~mem46 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem46) % 256 <= 127 then (1 + #t~mem46) % 256 else (1 + #t~mem46) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem46;call #t~mem47.base, #t~mem47.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem47.base, 36 + #t~mem47.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem47.base, #t~mem47.offset;call #t~mem48.base, #t~mem48.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);call #t~mem49.base, #t~mem49.offset := read~$Pointer$(#t~mem48.base, 8 + #t~mem48.offset, 4); {12452#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:13:47,707 INFO L272 TraceCheckUtils]: 52: Hoare triple {12452#(= ~SKIP1~0 ~s~0)} call #t~ret50 := IofCallDriver(#t~mem49.base, #t~mem49.offset, ~Irp.base, ~Irp.offset); {12452#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:13:47,707 INFO L290 TraceCheckUtils]: 53: Hoare triple {12452#(= ~SKIP1~0 ~s~0)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {12452#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:13:47,707 INFO L290 TraceCheckUtils]: 54: Hoare triple {12452#(= ~SKIP1~0 ~s~0)} assume !(0 != ~compRegistered~0); {12452#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:13:47,708 INFO L290 TraceCheckUtils]: 55: Hoare triple {12452#(= ~SKIP1~0 ~s~0)} assume 0 == ~__BLAST_NONDET~11; {12452#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:13:47,708 INFO L290 TraceCheckUtils]: 56: Hoare triple {12452#(= ~SKIP1~0 ~s~0)} ~returnVal2~0 := 0; {12452#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:13:47,708 INFO L290 TraceCheckUtils]: 57: Hoare triple {12452#(= ~SKIP1~0 ~s~0)} assume !(~s~0 == ~NP~0); {12452#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:13:47,708 INFO L290 TraceCheckUtils]: 58: Hoare triple {12452#(= ~SKIP1~0 ~s~0)} assume !(~s~0 == ~MPR1~0); {12452#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:13:47,709 INFO L290 TraceCheckUtils]: 59: Hoare triple {12452#(= ~SKIP1~0 ~s~0)} assume !(~s~0 == ~SKIP1~0); {12422#false} is VALID [2022-04-27 15:13:47,709 INFO L272 TraceCheckUtils]: 60: Hoare triple {12422#false} call errorFn(); {12422#false} is VALID [2022-04-27 15:13:47,709 INFO L290 TraceCheckUtils]: 61: Hoare triple {12422#false} assume !false; {12422#false} is VALID [2022-04-27 15:13:47,709 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:13:47,709 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:13:47,709 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2025998964] [2022-04-27 15:13:47,709 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2025998964] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:13:47,709 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:13:47,709 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2022-04-27 15:13:47,709 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1143319013] [2022-04-27 15:13:47,709 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:13:47,710 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 5.375) internal successors, (43), 3 states have internal predecessors, (43), 3 states have call successors, (12), 8 states have call predecessors, (12), 1 states have return successors, (7), 1 states have call predecessors, (7), 1 states have call successors, (7) Word has length 62 [2022-04-27 15:13:47,710 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:13:47,710 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 8 states, 8 states have (on average 5.375) internal successors, (43), 3 states have internal predecessors, (43), 3 states have call successors, (12), 8 states have call predecessors, (12), 1 states have return successors, (7), 1 states have call predecessors, (7), 1 states have call successors, (7) [2022-04-27 15:13:47,757 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 62 edges. 62 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:13:47,758 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-04-27 15:13:47,758 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:13:47,758 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-04-27 15:13:47,758 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2022-04-27 15:13:47,758 INFO L87 Difference]: Start difference. First operand 415 states and 551 transitions. Second operand has 8 states, 8 states have (on average 5.375) internal successors, (43), 3 states have internal predecessors, (43), 3 states have call successors, (12), 8 states have call predecessors, (12), 1 states have return successors, (7), 1 states have call predecessors, (7), 1 states have call successors, (7) [2022-04-27 15:13:49,898 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:13:56,606 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:56,606 INFO L93 Difference]: Finished difference Result 433 states and 574 transitions. [2022-04-27 15:13:56,606 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2022-04-27 15:13:56,606 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 5.375) internal successors, (43), 3 states have internal predecessors, (43), 3 states have call successors, (12), 8 states have call predecessors, (12), 1 states have return successors, (7), 1 states have call predecessors, (7), 1 states have call successors, (7) Word has length 62 [2022-04-27 15:13:56,607 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:13:56,607 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8 states, 8 states have (on average 5.375) internal successors, (43), 3 states have internal predecessors, (43), 3 states have call successors, (12), 8 states have call predecessors, (12), 1 states have return successors, (7), 1 states have call predecessors, (7), 1 states have call successors, (7) [2022-04-27 15:13:56,609 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 11 states to 11 states and 440 transitions. [2022-04-27 15:13:56,609 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8 states, 8 states have (on average 5.375) internal successors, (43), 3 states have internal predecessors, (43), 3 states have call successors, (12), 8 states have call predecessors, (12), 1 states have return successors, (7), 1 states have call predecessors, (7), 1 states have call successors, (7) [2022-04-27 15:13:56,612 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 11 states to 11 states and 440 transitions. [2022-04-27 15:13:56,612 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 11 states and 440 transitions. [2022-04-27 15:13:57,084 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 440 edges. 440 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:13:57,094 INFO L225 Difference]: With dead ends: 433 [2022-04-27 15:13:57,094 INFO L226 Difference]: Without dead ends: 429 [2022-04-27 15:13:57,094 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 27 GetRequests, 16 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 13 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=53, Invalid=103, Unknown=0, NotChecked=0, Total=156 [2022-04-27 15:13:57,095 INFO L413 NwaCegarLoop]: 300 mSDtfsCounter, 603 mSDsluCounter, 235 mSDsCounter, 0 mSdLazyCounter, 803 mSolverCounterSat, 198 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 607 SdHoareTripleChecker+Valid, 535 SdHoareTripleChecker+Invalid, 1002 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 198 IncrementalHoareTripleChecker+Valid, 803 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.7s IncrementalHoareTripleChecker+Time [2022-04-27 15:13:57,095 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [607 Valid, 535 Invalid, 1002 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [198 Valid, 803 Invalid, 1 Unknown, 0 Unchecked, 4.7s Time] [2022-04-27 15:13:57,096 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 429 states. [2022-04-27 15:13:57,198 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 429 to 414. [2022-04-27 15:13:57,198 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:13:57,199 INFO L82 GeneralOperation]: Start isEquivalent. First operand 429 states. Second operand has 414 states, 330 states have (on average 1.3636363636363635) internal successors, (450), 331 states have internal predecessors, (450), 43 states have call successors, (43), 33 states have call predecessors, (43), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:13:57,199 INFO L74 IsIncluded]: Start isIncluded. First operand 429 states. Second operand has 414 states, 330 states have (on average 1.3636363636363635) internal successors, (450), 331 states have internal predecessors, (450), 43 states have call successors, (43), 33 states have call predecessors, (43), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:13:57,200 INFO L87 Difference]: Start difference. First operand 429 states. Second operand has 414 states, 330 states have (on average 1.3636363636363635) internal successors, (450), 331 states have internal predecessors, (450), 43 states have call successors, (43), 33 states have call predecessors, (43), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:13:57,208 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:57,208 INFO L93 Difference]: Finished difference Result 429 states and 569 transitions. [2022-04-27 15:13:57,208 INFO L276 IsEmpty]: Start isEmpty. Operand 429 states and 569 transitions. [2022-04-27 15:13:57,209 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:13:57,209 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:13:57,210 INFO L74 IsIncluded]: Start isIncluded. First operand has 414 states, 330 states have (on average 1.3636363636363635) internal successors, (450), 331 states have internal predecessors, (450), 43 states have call successors, (43), 33 states have call predecessors, (43), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) Second operand 429 states. [2022-04-27 15:13:57,210 INFO L87 Difference]: Start difference. First operand has 414 states, 330 states have (on average 1.3636363636363635) internal successors, (450), 331 states have internal predecessors, (450), 43 states have call successors, (43), 33 states have call predecessors, (43), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) Second operand 429 states. [2022-04-27 15:13:57,219 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:13:57,219 INFO L93 Difference]: Finished difference Result 429 states and 569 transitions. [2022-04-27 15:13:57,219 INFO L276 IsEmpty]: Start isEmpty. Operand 429 states and 569 transitions. [2022-04-27 15:13:57,220 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:13:57,220 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:13:57,220 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:13:57,220 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:13:57,220 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 414 states, 330 states have (on average 1.3636363636363635) internal successors, (450), 331 states have internal predecessors, (450), 43 states have call successors, (43), 33 states have call predecessors, (43), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:13:57,229 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 414 states to 414 states and 548 transitions. [2022-04-27 15:13:57,229 INFO L78 Accepts]: Start accepts. Automaton has 414 states and 548 transitions. Word has length 62 [2022-04-27 15:13:57,229 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:13:57,230 INFO L495 AbstractCegarLoop]: Abstraction has 414 states and 548 transitions. [2022-04-27 15:13:57,230 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 5.375) internal successors, (43), 3 states have internal predecessors, (43), 3 states have call successors, (12), 8 states have call predecessors, (12), 1 states have return successors, (7), 1 states have call predecessors, (7), 1 states have call successors, (7) [2022-04-27 15:13:57,230 INFO L276 IsEmpty]: Start isEmpty. Operand 414 states and 548 transitions. [2022-04-27 15:13:57,230 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 62 [2022-04-27 15:13:57,230 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:13:57,230 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:13:57,230 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-04-27 15:13:57,231 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:13:57,231 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:13:57,231 INFO L85 PathProgramCache]: Analyzing trace with hash 466089939, now seen corresponding path program 1 times [2022-04-27 15:13:57,231 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:13:57,231 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1472748691] [2022-04-27 15:13:57,231 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:13:57,231 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:13:57,276 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:57,368 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:13:57,370 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:57,375 INFO L290 TraceCheckUtils]: 0: Hoare triple {14508#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {14471#true} is VALID [2022-04-27 15:13:57,375 INFO L290 TraceCheckUtils]: 1: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,375 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {14471#true} {14471#true} #1270#return; {14471#true} is VALID [2022-04-27 15:13:57,399 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:13:57,401 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:57,416 INFO L290 TraceCheckUtils]: 0: Hoare triple {14509#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {14510#(and (<= 7 ~IPC~0) (= (+ (- 1) ~NP~0) 0))} is VALID [2022-04-27 15:13:57,416 INFO L290 TraceCheckUtils]: 1: Hoare triple {14510#(and (<= 7 ~IPC~0) (= (+ (- 1) ~NP~0) 0))} assume true; {14510#(and (<= 7 ~IPC~0) (= (+ (- 1) ~NP~0) 0))} is VALID [2022-04-27 15:13:57,417 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {14510#(and (<= 7 ~IPC~0) (= (+ (- 1) ~NP~0) 0))} {14471#true} #1216#return; {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:57,425 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:13:57,435 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:57,443 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:13:57,444 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:57,449 INFO L290 TraceCheckUtils]: 0: Hoare triple {14471#true} ~cond := #in~cond; {14471#true} is VALID [2022-04-27 15:13:57,449 INFO L290 TraceCheckUtils]: 1: Hoare triple {14471#true} assume !(0 == ~cond); {14471#true} is VALID [2022-04-27 15:13:57,449 INFO L290 TraceCheckUtils]: 2: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,449 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {14471#true} {14471#true} #1254#return; {14471#true} is VALID [2022-04-27 15:13:57,449 INFO L290 TraceCheckUtils]: 0: Hoare triple {14511#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {14471#true} is VALID [2022-04-27 15:13:57,449 INFO L272 TraceCheckUtils]: 1: Hoare triple {14471#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {14471#true} is VALID [2022-04-27 15:13:57,449 INFO L290 TraceCheckUtils]: 2: Hoare triple {14471#true} ~cond := #in~cond; {14471#true} is VALID [2022-04-27 15:13:57,449 INFO L290 TraceCheckUtils]: 3: Hoare triple {14471#true} assume !(0 == ~cond); {14471#true} is VALID [2022-04-27 15:13:57,450 INFO L290 TraceCheckUtils]: 4: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,450 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {14471#true} {14471#true} #1254#return; {14471#true} is VALID [2022-04-27 15:13:57,450 INFO L290 TraceCheckUtils]: 6: Hoare triple {14471#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {14471#true} is VALID [2022-04-27 15:13:57,450 INFO L290 TraceCheckUtils]: 7: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,450 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {14471#true} {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} #1218#return; {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:57,460 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:13:57,465 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:57,471 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:13:57,473 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:57,478 INFO L290 TraceCheckUtils]: 0: Hoare triple {14516#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {14471#true} is VALID [2022-04-27 15:13:57,478 INFO L290 TraceCheckUtils]: 1: Hoare triple {14471#true} assume !(0 == ~__BLAST_NONDET~5); {14471#true} is VALID [2022-04-27 15:13:57,478 INFO L290 TraceCheckUtils]: 2: Hoare triple {14471#true} #res := -1073741823; {14471#true} is VALID [2022-04-27 15:13:57,478 INFO L290 TraceCheckUtils]: 3: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,478 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {14471#true} {14471#true} #1176#return; {14471#true} is VALID [2022-04-27 15:13:57,478 INFO L290 TraceCheckUtils]: 0: Hoare triple {14516#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {14471#true} is VALID [2022-04-27 15:13:57,479 INFO L272 TraceCheckUtils]: 1: Hoare triple {14471#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {14516#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:57,480 INFO L290 TraceCheckUtils]: 2: Hoare triple {14516#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {14471#true} is VALID [2022-04-27 15:13:57,480 INFO L290 TraceCheckUtils]: 3: Hoare triple {14471#true} assume !(0 == ~__BLAST_NONDET~5); {14471#true} is VALID [2022-04-27 15:13:57,480 INFO L290 TraceCheckUtils]: 4: Hoare triple {14471#true} #res := -1073741823; {14471#true} is VALID [2022-04-27 15:13:57,480 INFO L290 TraceCheckUtils]: 5: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,480 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {14471#true} {14471#true} #1176#return; {14471#true} is VALID [2022-04-27 15:13:57,480 INFO L290 TraceCheckUtils]: 7: Hoare triple {14471#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {14471#true} is VALID [2022-04-27 15:13:57,480 INFO L290 TraceCheckUtils]: 8: Hoare triple {14471#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {14471#true} is VALID [2022-04-27 15:13:57,480 INFO L290 TraceCheckUtils]: 9: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,481 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {14471#true} {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} #1220#return; {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:57,494 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:13:57,496 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:57,524 INFO L290 TraceCheckUtils]: 0: Hoare triple {14522#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {14523#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} is VALID [2022-04-27 15:13:57,525 INFO L290 TraceCheckUtils]: 1: Hoare triple {14523#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} assume true; {14523#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} is VALID [2022-04-27 15:13:57,525 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {14523#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} #1222#return; {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,525 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 44 [2022-04-27 15:13:57,527 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:13:57,533 INFO L290 TraceCheckUtils]: 0: Hoare triple {14471#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647; {14471#true} is VALID [2022-04-27 15:13:57,533 INFO L290 TraceCheckUtils]: 1: Hoare triple {14471#true} assume 0 != #t~nondet17;havoc #t~nondet17;#res := 0; {14471#true} is VALID [2022-04-27 15:13:57,533 INFO L290 TraceCheckUtils]: 2: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,534 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {14471#true} {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} #1228#return; {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,535 INFO L272 TraceCheckUtils]: 0: Hoare triple {14471#true} call ULTIMATE.init(); {14508#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:13:57,535 INFO L290 TraceCheckUtils]: 1: Hoare triple {14508#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {14471#true} is VALID [2022-04-27 15:13:57,535 INFO L290 TraceCheckUtils]: 2: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,535 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {14471#true} {14471#true} #1270#return; {14471#true} is VALID [2022-04-27 15:13:57,535 INFO L272 TraceCheckUtils]: 4: Hoare triple {14471#true} call #t~ret213 := main(); {14471#true} is VALID [2022-04-27 15:13:57,535 INFO L290 TraceCheckUtils]: 5: Hoare triple {14471#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {14471#true} is VALID [2022-04-27 15:13:57,536 INFO L272 TraceCheckUtils]: 6: Hoare triple {14471#true} call _BLAST_init(); {14509#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:13:57,536 INFO L290 TraceCheckUtils]: 7: Hoare triple {14509#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {14510#(and (<= 7 ~IPC~0) (= (+ (- 1) ~NP~0) 0))} is VALID [2022-04-27 15:13:57,537 INFO L290 TraceCheckUtils]: 8: Hoare triple {14510#(and (<= 7 ~IPC~0) (= (+ (- 1) ~NP~0) 0))} assume true; {14510#(and (<= 7 ~IPC~0) (= (+ (- 1) ~NP~0) 0))} is VALID [2022-04-27 15:13:57,537 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {14510#(and (<= 7 ~IPC~0) (= (+ (- 1) ~NP~0) 0))} {14471#true} #1216#return; {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:57,538 INFO L272 TraceCheckUtils]: 10: Hoare triple {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {14511#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:13:57,538 INFO L290 TraceCheckUtils]: 11: Hoare triple {14511#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {14471#true} is VALID [2022-04-27 15:13:57,538 INFO L272 TraceCheckUtils]: 12: Hoare triple {14471#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {14471#true} is VALID [2022-04-27 15:13:57,538 INFO L290 TraceCheckUtils]: 13: Hoare triple {14471#true} ~cond := #in~cond; {14471#true} is VALID [2022-04-27 15:13:57,538 INFO L290 TraceCheckUtils]: 14: Hoare triple {14471#true} assume !(0 == ~cond); {14471#true} is VALID [2022-04-27 15:13:57,538 INFO L290 TraceCheckUtils]: 15: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,538 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {14471#true} {14471#true} #1254#return; {14471#true} is VALID [2022-04-27 15:13:57,538 INFO L290 TraceCheckUtils]: 17: Hoare triple {14471#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {14471#true} is VALID [2022-04-27 15:13:57,538 INFO L290 TraceCheckUtils]: 18: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,539 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {14471#true} {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} #1218#return; {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:57,539 INFO L290 TraceCheckUtils]: 20: Hoare triple {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:57,540 INFO L290 TraceCheckUtils]: 21: Hoare triple {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:57,540 INFO L290 TraceCheckUtils]: 22: Hoare triple {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:57,541 INFO L272 TraceCheckUtils]: 23: Hoare triple {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {14516#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:57,541 INFO L290 TraceCheckUtils]: 24: Hoare triple {14516#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {14471#true} is VALID [2022-04-27 15:13:57,542 INFO L272 TraceCheckUtils]: 25: Hoare triple {14471#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {14516#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:13:57,542 INFO L290 TraceCheckUtils]: 26: Hoare triple {14516#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {14471#true} is VALID [2022-04-27 15:13:57,542 INFO L290 TraceCheckUtils]: 27: Hoare triple {14471#true} assume !(0 == ~__BLAST_NONDET~5); {14471#true} is VALID [2022-04-27 15:13:57,543 INFO L290 TraceCheckUtils]: 28: Hoare triple {14471#true} #res := -1073741823; {14471#true} is VALID [2022-04-27 15:13:57,543 INFO L290 TraceCheckUtils]: 29: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,543 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {14471#true} {14471#true} #1176#return; {14471#true} is VALID [2022-04-27 15:13:57,543 INFO L290 TraceCheckUtils]: 31: Hoare triple {14471#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {14471#true} is VALID [2022-04-27 15:13:57,543 INFO L290 TraceCheckUtils]: 32: Hoare triple {14471#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {14471#true} is VALID [2022-04-27 15:13:57,543 INFO L290 TraceCheckUtils]: 33: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,543 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {14471#true} {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} #1220#return; {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:57,544 INFO L290 TraceCheckUtils]: 35: Hoare triple {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} is VALID [2022-04-27 15:13:57,544 INFO L272 TraceCheckUtils]: 36: Hoare triple {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} call stub_driver_init(); {14522#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:13:57,545 INFO L290 TraceCheckUtils]: 37: Hoare triple {14522#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {14523#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} is VALID [2022-04-27 15:13:57,545 INFO L290 TraceCheckUtils]: 38: Hoare triple {14523#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} assume true; {14523#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} is VALID [2022-04-27 15:13:57,546 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {14523#(and (or (not (<= ~s~0 0)) (<= ~NP~0 ~s~0)) (or (<= ~s~0 ~NP~0) (<= ~s~0 1)))} {14479#(and (not (= ~IPC~0 1)) (= ~NP~0 1))} #1222#return; {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,546 INFO L290 TraceCheckUtils]: 40: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} assume !!(~status~5 >= 0); {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,546 INFO L290 TraceCheckUtils]: 41: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} assume !(0 == ~__BLAST_NONDET~0); {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,547 INFO L290 TraceCheckUtils]: 42: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} assume !(1 == ~__BLAST_NONDET~0); {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,547 INFO L290 TraceCheckUtils]: 43: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} assume 2 == ~__BLAST_NONDET~0; {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,547 INFO L272 TraceCheckUtils]: 44: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} call #t~ret173 := KbFilter_IoCtl(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {14471#true} is VALID [2022-04-27 15:13:57,547 INFO L290 TraceCheckUtils]: 45: Hoare triple {14471#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647; {14471#true} is VALID [2022-04-27 15:13:57,547 INFO L290 TraceCheckUtils]: 46: Hoare triple {14471#true} assume 0 != #t~nondet17;havoc #t~nondet17;#res := 0; {14471#true} is VALID [2022-04-27 15:13:57,547 INFO L290 TraceCheckUtils]: 47: Hoare triple {14471#true} assume true; {14471#true} is VALID [2022-04-27 15:13:57,548 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {14471#true} {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} #1228#return; {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,548 INFO L290 TraceCheckUtils]: 49: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} assume -2147483648 <= #t~ret173 && #t~ret173 <= 2147483647;~status~5 := #t~ret173;havoc #t~ret173; {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,548 INFO L290 TraceCheckUtils]: 50: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} assume 0 != ~we_should_unload~0; {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,549 INFO L290 TraceCheckUtils]: 51: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} assume !(1 == ~pended~0); {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,549 INFO L290 TraceCheckUtils]: 52: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} assume !(1 == ~pended~0); {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,549 INFO L290 TraceCheckUtils]: 53: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} assume !(~s~0 == ~UNLOADED~0); {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,550 INFO L290 TraceCheckUtils]: 54: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} assume !(-1 == ~status~5); {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,550 INFO L290 TraceCheckUtils]: 55: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} assume ~s~0 != ~SKIP2~0; {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} is VALID [2022-04-27 15:13:57,550 INFO L290 TraceCheckUtils]: 56: Hoare triple {14503#(and (= ~s~0 1) (not (= ~IPC~0 1)))} assume !(~s~0 != ~IPC~0); {14472#false} is VALID [2022-04-27 15:13:57,550 INFO L290 TraceCheckUtils]: 57: Hoare triple {14472#false} assume 1 == ~pended~0; {14472#false} is VALID [2022-04-27 15:13:57,550 INFO L290 TraceCheckUtils]: 58: Hoare triple {14472#false} assume 259 != ~status~5; {14472#false} is VALID [2022-04-27 15:13:57,550 INFO L272 TraceCheckUtils]: 59: Hoare triple {14472#false} call errorFn(); {14472#false} is VALID [2022-04-27 15:13:57,550 INFO L290 TraceCheckUtils]: 60: Hoare triple {14472#false} assume !false; {14472#false} is VALID [2022-04-27 15:13:57,551 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:13:57,551 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:13:57,551 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1472748691] [2022-04-27 15:13:57,551 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1472748691] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:13:57,551 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:13:57,551 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [11] imperfect sequences [] total 11 [2022-04-27 15:13:57,551 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [610310271] [2022-04-27 15:13:57,551 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:13:57,552 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 11 states have (on average 3.909090909090909) internal successors, (43), 6 states have internal predecessors, (43), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) Word has length 61 [2022-04-27 15:13:57,552 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:13:57,552 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 11 states, 11 states have (on average 3.909090909090909) internal successors, (43), 6 states have internal predecessors, (43), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:13:57,600 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 61 edges. 61 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:13:57,600 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2022-04-27 15:13:57,601 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:13:57,601 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2022-04-27 15:13:57,601 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=25, Invalid=85, Unknown=0, NotChecked=0, Total=110 [2022-04-27 15:13:57,601 INFO L87 Difference]: Start difference. First operand 414 states and 548 transitions. Second operand has 11 states, 11 states have (on average 3.909090909090909) internal successors, (43), 6 states have internal predecessors, (43), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:13:59,785 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:14:07,265 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:14:07,266 INFO L93 Difference]: Finished difference Result 448 states and 589 transitions. [2022-04-27 15:14:07,266 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2022-04-27 15:14:07,266 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 11 states have (on average 3.909090909090909) internal successors, (43), 6 states have internal predecessors, (43), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) Word has length 61 [2022-04-27 15:14:07,266 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:14:07,266 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11 states, 11 states have (on average 3.909090909090909) internal successors, (43), 6 states have internal predecessors, (43), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:14:07,269 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 17 states to 17 states and 537 transitions. [2022-04-27 15:14:07,269 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11 states, 11 states have (on average 3.909090909090909) internal successors, (43), 6 states have internal predecessors, (43), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:14:07,272 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 17 states to 17 states and 537 transitions. [2022-04-27 15:14:07,272 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 17 states and 537 transitions. [2022-04-27 15:14:07,879 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 537 edges. 537 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:14:07,888 INFO L225 Difference]: With dead ends: 448 [2022-04-27 15:14:07,888 INFO L226 Difference]: Without dead ends: 440 [2022-04-27 15:14:07,889 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 37 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 81 ImplicationChecksByTransitivity, 0.7s TimeCoverageRelationStatistics Valid=156, Invalid=396, Unknown=0, NotChecked=0, Total=552 [2022-04-27 15:14:07,889 INFO L413 NwaCegarLoop]: 335 mSDtfsCounter, 1163 mSDsluCounter, 307 mSDsCounter, 0 mSdLazyCounter, 1064 mSolverCounterSat, 378 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1172 SdHoareTripleChecker+Valid, 642 SdHoareTripleChecker+Invalid, 1443 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 378 IncrementalHoareTripleChecker+Valid, 1064 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.1s IncrementalHoareTripleChecker+Time [2022-04-27 15:14:07,889 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1172 Valid, 642 Invalid, 1443 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [378 Valid, 1064 Invalid, 1 Unknown, 0 Unchecked, 5.1s Time] [2022-04-27 15:14:07,890 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 440 states. [2022-04-27 15:14:08,038 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 440 to 415. [2022-04-27 15:14:08,038 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:14:08,039 INFO L82 GeneralOperation]: Start isEquivalent. First operand 440 states. Second operand has 415 states, 331 states have (on average 1.3625377643504533) internal successors, (451), 332 states have internal predecessors, (451), 43 states have call successors, (43), 33 states have call predecessors, (43), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:14:08,039 INFO L74 IsIncluded]: Start isIncluded. First operand 440 states. Second operand has 415 states, 331 states have (on average 1.3625377643504533) internal successors, (451), 332 states have internal predecessors, (451), 43 states have call successors, (43), 33 states have call predecessors, (43), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:14:08,040 INFO L87 Difference]: Start difference. First operand 440 states. Second operand has 415 states, 331 states have (on average 1.3625377643504533) internal successors, (451), 332 states have internal predecessors, (451), 43 states have call successors, (43), 33 states have call predecessors, (43), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:14:08,048 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:14:08,048 INFO L93 Difference]: Finished difference Result 440 states and 580 transitions. [2022-04-27 15:14:08,048 INFO L276 IsEmpty]: Start isEmpty. Operand 440 states and 580 transitions. [2022-04-27 15:14:08,049 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:14:08,049 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:14:08,050 INFO L74 IsIncluded]: Start isIncluded. First operand has 415 states, 331 states have (on average 1.3625377643504533) internal successors, (451), 332 states have internal predecessors, (451), 43 states have call successors, (43), 33 states have call predecessors, (43), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) Second operand 440 states. [2022-04-27 15:14:08,051 INFO L87 Difference]: Start difference. First operand has 415 states, 331 states have (on average 1.3625377643504533) internal successors, (451), 332 states have internal predecessors, (451), 43 states have call successors, (43), 33 states have call predecessors, (43), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) Second operand 440 states. [2022-04-27 15:14:08,059 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:14:08,059 INFO L93 Difference]: Finished difference Result 440 states and 580 transitions. [2022-04-27 15:14:08,059 INFO L276 IsEmpty]: Start isEmpty. Operand 440 states and 580 transitions. [2022-04-27 15:14:08,060 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:14:08,060 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:14:08,060 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:14:08,060 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:14:08,061 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 415 states, 331 states have (on average 1.3625377643504533) internal successors, (451), 332 states have internal predecessors, (451), 43 states have call successors, (43), 33 states have call predecessors, (43), 40 states have return successors, (55), 50 states have call predecessors, (55), 37 states have call successors, (55) [2022-04-27 15:14:08,069 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 415 states to 415 states and 549 transitions. [2022-04-27 15:14:08,070 INFO L78 Accepts]: Start accepts. Automaton has 415 states and 549 transitions. Word has length 61 [2022-04-27 15:14:08,070 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:14:08,070 INFO L495 AbstractCegarLoop]: Abstraction has 415 states and 549 transitions. [2022-04-27 15:14:08,070 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 11 states have (on average 3.909090909090909) internal successors, (43), 6 states have internal predecessors, (43), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:14:08,070 INFO L276 IsEmpty]: Start isEmpty. Operand 415 states and 549 transitions. [2022-04-27 15:14:08,071 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 63 [2022-04-27 15:14:08,071 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:14:08,071 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:14:08,071 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2022-04-27 15:14:08,071 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:14:08,072 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:14:08,072 INFO L85 PathProgramCache]: Analyzing trace with hash 1325055407, now seen corresponding path program 1 times [2022-04-27 15:14:08,072 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:14:08,072 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1037273526] [2022-04-27 15:14:08,072 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:14:08,072 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:14:08,134 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:08,205 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:14:08,208 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:08,213 INFO L290 TraceCheckUtils]: 0: Hoare triple {16625#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {16588#true} is VALID [2022-04-27 15:14:08,213 INFO L290 TraceCheckUtils]: 1: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,214 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {16588#true} {16588#true} #1270#return; {16588#true} is VALID [2022-04-27 15:14:08,237 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:14:08,240 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:08,248 INFO L290 TraceCheckUtils]: 0: Hoare triple {16626#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,249 INFO L290 TraceCheckUtils]: 1: Hoare triple {16596#(not (= ~DC~0 ~NP~0))} assume true; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,249 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {16596#(not (= ~DC~0 ~NP~0))} {16588#true} #1216#return; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,256 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:14:08,266 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:08,275 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:14:08,275 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:08,281 INFO L290 TraceCheckUtils]: 0: Hoare triple {16588#true} ~cond := #in~cond; {16588#true} is VALID [2022-04-27 15:14:08,281 INFO L290 TraceCheckUtils]: 1: Hoare triple {16588#true} assume !(0 == ~cond); {16588#true} is VALID [2022-04-27 15:14:08,281 INFO L290 TraceCheckUtils]: 2: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,281 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {16588#true} {16588#true} #1254#return; {16588#true} is VALID [2022-04-27 15:14:08,282 INFO L290 TraceCheckUtils]: 0: Hoare triple {16627#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {16588#true} is VALID [2022-04-27 15:14:08,282 INFO L272 TraceCheckUtils]: 1: Hoare triple {16588#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {16588#true} is VALID [2022-04-27 15:14:08,282 INFO L290 TraceCheckUtils]: 2: Hoare triple {16588#true} ~cond := #in~cond; {16588#true} is VALID [2022-04-27 15:14:08,282 INFO L290 TraceCheckUtils]: 3: Hoare triple {16588#true} assume !(0 == ~cond); {16588#true} is VALID [2022-04-27 15:14:08,282 INFO L290 TraceCheckUtils]: 4: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,282 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {16588#true} {16588#true} #1254#return; {16588#true} is VALID [2022-04-27 15:14:08,282 INFO L290 TraceCheckUtils]: 6: Hoare triple {16588#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {16588#true} is VALID [2022-04-27 15:14:08,282 INFO L290 TraceCheckUtils]: 7: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,283 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {16588#true} {16596#(not (= ~DC~0 ~NP~0))} #1218#return; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,292 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:14:08,297 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:08,303 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:14:08,304 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:08,309 INFO L290 TraceCheckUtils]: 0: Hoare triple {16632#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {16588#true} is VALID [2022-04-27 15:14:08,309 INFO L290 TraceCheckUtils]: 1: Hoare triple {16588#true} assume !(0 == ~__BLAST_NONDET~5); {16588#true} is VALID [2022-04-27 15:14:08,310 INFO L290 TraceCheckUtils]: 2: Hoare triple {16588#true} #res := -1073741823; {16588#true} is VALID [2022-04-27 15:14:08,310 INFO L290 TraceCheckUtils]: 3: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,310 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {16588#true} {16588#true} #1176#return; {16588#true} is VALID [2022-04-27 15:14:08,319 INFO L290 TraceCheckUtils]: 0: Hoare triple {16632#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {16588#true} is VALID [2022-04-27 15:14:08,320 INFO L272 TraceCheckUtils]: 1: Hoare triple {16588#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {16632#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:14:08,320 INFO L290 TraceCheckUtils]: 2: Hoare triple {16632#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {16588#true} is VALID [2022-04-27 15:14:08,321 INFO L290 TraceCheckUtils]: 3: Hoare triple {16588#true} assume !(0 == ~__BLAST_NONDET~5); {16588#true} is VALID [2022-04-27 15:14:08,321 INFO L290 TraceCheckUtils]: 4: Hoare triple {16588#true} #res := -1073741823; {16588#true} is VALID [2022-04-27 15:14:08,321 INFO L290 TraceCheckUtils]: 5: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,321 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {16588#true} {16588#true} #1176#return; {16588#true} is VALID [2022-04-27 15:14:08,321 INFO L290 TraceCheckUtils]: 7: Hoare triple {16588#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {16588#true} is VALID [2022-04-27 15:14:08,321 INFO L290 TraceCheckUtils]: 8: Hoare triple {16588#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {16588#true} is VALID [2022-04-27 15:14:08,321 INFO L290 TraceCheckUtils]: 9: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,322 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {16588#true} {16596#(not (= ~DC~0 ~NP~0))} #1220#return; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,336 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:14:08,338 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:08,351 INFO L290 TraceCheckUtils]: 0: Hoare triple {16638#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {16639#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:14:08,351 INFO L290 TraceCheckUtils]: 1: Hoare triple {16639#(= ~s~0 ~NP~0)} assume true; {16639#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:14:08,352 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {16639#(= ~s~0 ~NP~0)} {16596#(not (= ~DC~0 ~NP~0))} #1222#return; {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,352 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 44 [2022-04-27 15:14:08,354 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:08,359 INFO L290 TraceCheckUtils]: 0: Hoare triple {16588#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647; {16588#true} is VALID [2022-04-27 15:14:08,359 INFO L290 TraceCheckUtils]: 1: Hoare triple {16588#true} assume 0 != #t~nondet17;havoc #t~nondet17;#res := 0; {16588#true} is VALID [2022-04-27 15:14:08,359 INFO L290 TraceCheckUtils]: 2: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,360 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {16588#true} {16620#(not (= ~s~0 ~DC~0))} #1228#return; {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,361 INFO L272 TraceCheckUtils]: 0: Hoare triple {16588#true} call ULTIMATE.init(); {16625#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:14:08,361 INFO L290 TraceCheckUtils]: 1: Hoare triple {16625#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {16588#true} is VALID [2022-04-27 15:14:08,361 INFO L290 TraceCheckUtils]: 2: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,362 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {16588#true} {16588#true} #1270#return; {16588#true} is VALID [2022-04-27 15:14:08,362 INFO L272 TraceCheckUtils]: 4: Hoare triple {16588#true} call #t~ret213 := main(); {16588#true} is VALID [2022-04-27 15:14:08,362 INFO L290 TraceCheckUtils]: 5: Hoare triple {16588#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {16588#true} is VALID [2022-04-27 15:14:08,363 INFO L272 TraceCheckUtils]: 6: Hoare triple {16588#true} call _BLAST_init(); {16626#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:14:08,363 INFO L290 TraceCheckUtils]: 7: Hoare triple {16626#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,363 INFO L290 TraceCheckUtils]: 8: Hoare triple {16596#(not (= ~DC~0 ~NP~0))} assume true; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,364 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {16596#(not (= ~DC~0 ~NP~0))} {16588#true} #1216#return; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,364 INFO L272 TraceCheckUtils]: 10: Hoare triple {16596#(not (= ~DC~0 ~NP~0))} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {16627#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:14:08,364 INFO L290 TraceCheckUtils]: 11: Hoare triple {16627#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {16588#true} is VALID [2022-04-27 15:14:08,365 INFO L272 TraceCheckUtils]: 12: Hoare triple {16588#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {16588#true} is VALID [2022-04-27 15:14:08,365 INFO L290 TraceCheckUtils]: 13: Hoare triple {16588#true} ~cond := #in~cond; {16588#true} is VALID [2022-04-27 15:14:08,365 INFO L290 TraceCheckUtils]: 14: Hoare triple {16588#true} assume !(0 == ~cond); {16588#true} is VALID [2022-04-27 15:14:08,365 INFO L290 TraceCheckUtils]: 15: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,365 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {16588#true} {16588#true} #1254#return; {16588#true} is VALID [2022-04-27 15:14:08,365 INFO L290 TraceCheckUtils]: 17: Hoare triple {16588#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {16588#true} is VALID [2022-04-27 15:14:08,365 INFO L290 TraceCheckUtils]: 18: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,366 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {16588#true} {16596#(not (= ~DC~0 ~NP~0))} #1218#return; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,366 INFO L290 TraceCheckUtils]: 20: Hoare triple {16596#(not (= ~DC~0 ~NP~0))} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,366 INFO L290 TraceCheckUtils]: 21: Hoare triple {16596#(not (= ~DC~0 ~NP~0))} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,366 INFO L290 TraceCheckUtils]: 22: Hoare triple {16596#(not (= ~DC~0 ~NP~0))} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,367 INFO L272 TraceCheckUtils]: 23: Hoare triple {16596#(not (= ~DC~0 ~NP~0))} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {16632#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:14:08,367 INFO L290 TraceCheckUtils]: 24: Hoare triple {16632#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {16588#true} is VALID [2022-04-27 15:14:08,368 INFO L272 TraceCheckUtils]: 25: Hoare triple {16588#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {16632#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:14:08,368 INFO L290 TraceCheckUtils]: 26: Hoare triple {16632#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {16588#true} is VALID [2022-04-27 15:14:08,368 INFO L290 TraceCheckUtils]: 27: Hoare triple {16588#true} assume !(0 == ~__BLAST_NONDET~5); {16588#true} is VALID [2022-04-27 15:14:08,368 INFO L290 TraceCheckUtils]: 28: Hoare triple {16588#true} #res := -1073741823; {16588#true} is VALID [2022-04-27 15:14:08,369 INFO L290 TraceCheckUtils]: 29: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,369 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {16588#true} {16588#true} #1176#return; {16588#true} is VALID [2022-04-27 15:14:08,369 INFO L290 TraceCheckUtils]: 31: Hoare triple {16588#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {16588#true} is VALID [2022-04-27 15:14:08,369 INFO L290 TraceCheckUtils]: 32: Hoare triple {16588#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {16588#true} is VALID [2022-04-27 15:14:08,369 INFO L290 TraceCheckUtils]: 33: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,369 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {16588#true} {16596#(not (= ~DC~0 ~NP~0))} #1220#return; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,370 INFO L290 TraceCheckUtils]: 35: Hoare triple {16596#(not (= ~DC~0 ~NP~0))} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {16596#(not (= ~DC~0 ~NP~0))} is VALID [2022-04-27 15:14:08,370 INFO L272 TraceCheckUtils]: 36: Hoare triple {16596#(not (= ~DC~0 ~NP~0))} call stub_driver_init(); {16638#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:14:08,371 INFO L290 TraceCheckUtils]: 37: Hoare triple {16638#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {16639#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:14:08,371 INFO L290 TraceCheckUtils]: 38: Hoare triple {16639#(= ~s~0 ~NP~0)} assume true; {16639#(= ~s~0 ~NP~0)} is VALID [2022-04-27 15:14:08,371 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {16639#(= ~s~0 ~NP~0)} {16596#(not (= ~DC~0 ~NP~0))} #1222#return; {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,371 INFO L290 TraceCheckUtils]: 40: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume !!(~status~5 >= 0); {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,372 INFO L290 TraceCheckUtils]: 41: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume !(0 == ~__BLAST_NONDET~0); {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,372 INFO L290 TraceCheckUtils]: 42: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume !(1 == ~__BLAST_NONDET~0); {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,372 INFO L290 TraceCheckUtils]: 43: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume 2 == ~__BLAST_NONDET~0; {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,372 INFO L272 TraceCheckUtils]: 44: Hoare triple {16620#(not (= ~s~0 ~DC~0))} call #t~ret173 := KbFilter_IoCtl(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {16588#true} is VALID [2022-04-27 15:14:08,372 INFO L290 TraceCheckUtils]: 45: Hoare triple {16588#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647; {16588#true} is VALID [2022-04-27 15:14:08,372 INFO L290 TraceCheckUtils]: 46: Hoare triple {16588#true} assume 0 != #t~nondet17;havoc #t~nondet17;#res := 0; {16588#true} is VALID [2022-04-27 15:14:08,372 INFO L290 TraceCheckUtils]: 47: Hoare triple {16588#true} assume true; {16588#true} is VALID [2022-04-27 15:14:08,373 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {16588#true} {16620#(not (= ~s~0 ~DC~0))} #1228#return; {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,373 INFO L290 TraceCheckUtils]: 49: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume -2147483648 <= #t~ret173 && #t~ret173 <= 2147483647;~status~5 := #t~ret173;havoc #t~ret173; {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,373 INFO L290 TraceCheckUtils]: 50: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume 0 != ~we_should_unload~0; {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,374 INFO L290 TraceCheckUtils]: 51: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume !(1 == ~pended~0); {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,374 INFO L290 TraceCheckUtils]: 52: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume !(1 == ~pended~0); {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,374 INFO L290 TraceCheckUtils]: 53: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume !(~s~0 == ~UNLOADED~0); {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,374 INFO L290 TraceCheckUtils]: 54: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume !(-1 == ~status~5); {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,375 INFO L290 TraceCheckUtils]: 55: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume ~s~0 != ~SKIP2~0; {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,375 INFO L290 TraceCheckUtils]: 56: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume ~s~0 != ~IPC~0; {16620#(not (= ~s~0 ~DC~0))} is VALID [2022-04-27 15:14:08,375 INFO L290 TraceCheckUtils]: 57: Hoare triple {16620#(not (= ~s~0 ~DC~0))} assume !(~s~0 != ~DC~0); {16589#false} is VALID [2022-04-27 15:14:08,381 INFO L290 TraceCheckUtils]: 58: Hoare triple {16589#false} assume 1 == ~pended~0; {16589#false} is VALID [2022-04-27 15:14:08,381 INFO L290 TraceCheckUtils]: 59: Hoare triple {16589#false} assume 259 != ~status~5; {16589#false} is VALID [2022-04-27 15:14:08,381 INFO L272 TraceCheckUtils]: 60: Hoare triple {16589#false} call errorFn(); {16589#false} is VALID [2022-04-27 15:14:08,381 INFO L290 TraceCheckUtils]: 61: Hoare triple {16589#false} assume !false; {16589#false} is VALID [2022-04-27 15:14:08,381 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:14:08,381 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:14:08,382 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1037273526] [2022-04-27 15:14:08,382 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1037273526] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:14:08,382 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:14:08,382 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2022-04-27 15:14:08,382 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2054714854] [2022-04-27 15:14:08,382 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:14:08,383 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 4.4) internal successors, (44), 5 states have internal predecessors, (44), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) Word has length 62 [2022-04-27 15:14:08,383 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:14:08,383 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 10 states, 10 states have (on average 4.4) internal successors, (44), 5 states have internal predecessors, (44), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:14:08,432 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 62 edges. 62 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:14:08,432 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2022-04-27 15:14:08,432 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:14:08,433 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2022-04-27 15:14:08,433 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=69, Unknown=0, NotChecked=0, Total=90 [2022-04-27 15:14:08,433 INFO L87 Difference]: Start difference. First operand 415 states and 549 transitions. Second operand has 10 states, 10 states have (on average 4.4) internal successors, (44), 5 states have internal predecessors, (44), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:14:10,594 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:14:18,291 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:14:18,291 INFO L93 Difference]: Finished difference Result 442 states and 581 transitions. [2022-04-27 15:14:18,291 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 20 states. [2022-04-27 15:14:18,292 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 4.4) internal successors, (44), 5 states have internal predecessors, (44), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) Word has length 62 [2022-04-27 15:14:18,292 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:14:18,292 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 4.4) internal successors, (44), 5 states have internal predecessors, (44), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:14:18,295 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 20 states to 20 states and 529 transitions. [2022-04-27 15:14:18,295 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 4.4) internal successors, (44), 5 states have internal predecessors, (44), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:14:18,298 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 20 states to 20 states and 529 transitions. [2022-04-27 15:14:18,298 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 20 states and 529 transitions. [2022-04-27 15:14:18,892 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 529 edges. 529 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:14:18,900 INFO L225 Difference]: With dead ends: 442 [2022-04-27 15:14:18,900 INFO L226 Difference]: Without dead ends: 389 [2022-04-27 15:14:18,900 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 40 GetRequests, 16 SyntacticMatches, 0 SemanticMatches, 24 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 113 ImplicationChecksByTransitivity, 0.7s TimeCoverageRelationStatistics Valid=181, Invalid=469, Unknown=0, NotChecked=0, Total=650 [2022-04-27 15:14:18,901 INFO L413 NwaCegarLoop]: 335 mSDtfsCounter, 1193 mSDsluCounter, 305 mSDsCounter, 0 mSdLazyCounter, 1234 mSolverCounterSat, 387 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1201 SdHoareTripleChecker+Valid, 640 SdHoareTripleChecker+Invalid, 1622 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 387 IncrementalHoareTripleChecker+Valid, 1234 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.9s IncrementalHoareTripleChecker+Time [2022-04-27 15:14:18,901 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1201 Valid, 640 Invalid, 1622 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [387 Valid, 1234 Invalid, 1 Unknown, 0 Unchecked, 4.9s Time] [2022-04-27 15:14:18,902 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 389 states. [2022-04-27 15:14:19,027 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 389 to 371. [2022-04-27 15:14:19,028 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:14:19,028 INFO L82 GeneralOperation]: Start isEquivalent. First operand 389 states. Second operand has 371 states, 296 states have (on average 1.3817567567567568) internal successors, (409), 302 states have internal predecessors, (409), 42 states have call successors, (42), 32 states have call predecessors, (42), 32 states have return successors, (42), 37 states have call predecessors, (42), 36 states have call successors, (42) [2022-04-27 15:14:19,029 INFO L74 IsIncluded]: Start isIncluded. First operand 389 states. Second operand has 371 states, 296 states have (on average 1.3817567567567568) internal successors, (409), 302 states have internal predecessors, (409), 42 states have call successors, (42), 32 states have call predecessors, (42), 32 states have return successors, (42), 37 states have call predecessors, (42), 36 states have call successors, (42) [2022-04-27 15:14:19,029 INFO L87 Difference]: Start difference. First operand 389 states. Second operand has 371 states, 296 states have (on average 1.3817567567567568) internal successors, (409), 302 states have internal predecessors, (409), 42 states have call successors, (42), 32 states have call predecessors, (42), 32 states have return successors, (42), 37 states have call predecessors, (42), 36 states have call successors, (42) [2022-04-27 15:14:19,036 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:14:19,036 INFO L93 Difference]: Finished difference Result 389 states and 516 transitions. [2022-04-27 15:14:19,036 INFO L276 IsEmpty]: Start isEmpty. Operand 389 states and 516 transitions. [2022-04-27 15:14:19,037 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:14:19,037 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:14:19,038 INFO L74 IsIncluded]: Start isIncluded. First operand has 371 states, 296 states have (on average 1.3817567567567568) internal successors, (409), 302 states have internal predecessors, (409), 42 states have call successors, (42), 32 states have call predecessors, (42), 32 states have return successors, (42), 37 states have call predecessors, (42), 36 states have call successors, (42) Second operand 389 states. [2022-04-27 15:14:19,038 INFO L87 Difference]: Start difference. First operand has 371 states, 296 states have (on average 1.3817567567567568) internal successors, (409), 302 states have internal predecessors, (409), 42 states have call successors, (42), 32 states have call predecessors, (42), 32 states have return successors, (42), 37 states have call predecessors, (42), 36 states have call successors, (42) Second operand 389 states. [2022-04-27 15:14:19,045 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:14:19,045 INFO L93 Difference]: Finished difference Result 389 states and 516 transitions. [2022-04-27 15:14:19,045 INFO L276 IsEmpty]: Start isEmpty. Operand 389 states and 516 transitions. [2022-04-27 15:14:19,046 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:14:19,046 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:14:19,046 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:14:19,046 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:14:19,047 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 371 states, 296 states have (on average 1.3817567567567568) internal successors, (409), 302 states have internal predecessors, (409), 42 states have call successors, (42), 32 states have call predecessors, (42), 32 states have return successors, (42), 37 states have call predecessors, (42), 36 states have call successors, (42) [2022-04-27 15:14:19,053 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 371 states to 371 states and 493 transitions. [2022-04-27 15:14:19,054 INFO L78 Accepts]: Start accepts. Automaton has 371 states and 493 transitions. Word has length 62 [2022-04-27 15:14:19,054 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:14:19,054 INFO L495 AbstractCegarLoop]: Abstraction has 371 states and 493 transitions. [2022-04-27 15:14:19,054 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 10 states have (on average 4.4) internal successors, (44), 5 states have internal predecessors, (44), 4 states have call successors, (10), 7 states have call predecessors, (10), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-04-27 15:14:19,054 INFO L276 IsEmpty]: Start isEmpty. Operand 371 states and 493 transitions. [2022-04-27 15:14:19,055 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 73 [2022-04-27 15:14:19,055 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:14:19,055 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:14:19,055 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2022-04-27 15:14:19,055 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:14:19,055 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:14:19,056 INFO L85 PathProgramCache]: Analyzing trace with hash 1052170321, now seen corresponding path program 1 times [2022-04-27 15:14:19,056 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:14:19,056 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1809417847] [2022-04-27 15:14:19,056 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:14:19,056 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:14:19,103 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:19,205 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:14:19,207 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:19,212 INFO L290 TraceCheckUtils]: 0: Hoare triple {18595#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {18549#true} is VALID [2022-04-27 15:14:19,212 INFO L290 TraceCheckUtils]: 1: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,212 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {18549#true} {18549#true} #1270#return; {18549#true} is VALID [2022-04-27 15:14:19,232 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:14:19,235 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:19,258 INFO L290 TraceCheckUtils]: 0: Hoare triple {18596#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {18597#(and (= (+ (- 2) ~DC~0) 0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:14:19,259 INFO L290 TraceCheckUtils]: 1: Hoare triple {18597#(and (= (+ (- 2) ~DC~0) 0) (<= 4 ~SKIP2~0))} assume true; {18597#(and (= (+ (- 2) ~DC~0) 0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:14:19,259 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {18597#(and (= (+ (- 2) ~DC~0) 0) (<= 4 ~SKIP2~0))} {18549#true} #1216#return; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,266 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:14:19,274 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:19,282 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:14:19,282 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:19,287 INFO L290 TraceCheckUtils]: 0: Hoare triple {18549#true} ~cond := #in~cond; {18549#true} is VALID [2022-04-27 15:14:19,287 INFO L290 TraceCheckUtils]: 1: Hoare triple {18549#true} assume !(0 == ~cond); {18549#true} is VALID [2022-04-27 15:14:19,287 INFO L290 TraceCheckUtils]: 2: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,287 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {18549#true} {18549#true} #1254#return; {18549#true} is VALID [2022-04-27 15:14:19,287 INFO L290 TraceCheckUtils]: 0: Hoare triple {18598#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {18549#true} is VALID [2022-04-27 15:14:19,287 INFO L272 TraceCheckUtils]: 1: Hoare triple {18549#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {18549#true} is VALID [2022-04-27 15:14:19,288 INFO L290 TraceCheckUtils]: 2: Hoare triple {18549#true} ~cond := #in~cond; {18549#true} is VALID [2022-04-27 15:14:19,288 INFO L290 TraceCheckUtils]: 3: Hoare triple {18549#true} assume !(0 == ~cond); {18549#true} is VALID [2022-04-27 15:14:19,288 INFO L290 TraceCheckUtils]: 4: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,288 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {18549#true} {18549#true} #1254#return; {18549#true} is VALID [2022-04-27 15:14:19,288 INFO L290 TraceCheckUtils]: 6: Hoare triple {18549#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {18549#true} is VALID [2022-04-27 15:14:19,288 INFO L290 TraceCheckUtils]: 7: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,288 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {18549#true} {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} #1218#return; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,297 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:14:19,302 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:19,311 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:14:19,313 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:19,318 INFO L290 TraceCheckUtils]: 0: Hoare triple {18603#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {18549#true} is VALID [2022-04-27 15:14:19,318 INFO L290 TraceCheckUtils]: 1: Hoare triple {18549#true} assume !(0 == ~__BLAST_NONDET~5); {18549#true} is VALID [2022-04-27 15:14:19,318 INFO L290 TraceCheckUtils]: 2: Hoare triple {18549#true} #res := -1073741823; {18549#true} is VALID [2022-04-27 15:14:19,319 INFO L290 TraceCheckUtils]: 3: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,319 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {18549#true} {18549#true} #1176#return; {18549#true} is VALID [2022-04-27 15:14:19,319 INFO L290 TraceCheckUtils]: 0: Hoare triple {18603#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {18549#true} is VALID [2022-04-27 15:14:19,320 INFO L272 TraceCheckUtils]: 1: Hoare triple {18549#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {18603#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:14:19,320 INFO L290 TraceCheckUtils]: 2: Hoare triple {18603#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {18549#true} is VALID [2022-04-27 15:14:19,320 INFO L290 TraceCheckUtils]: 3: Hoare triple {18549#true} assume !(0 == ~__BLAST_NONDET~5); {18549#true} is VALID [2022-04-27 15:14:19,320 INFO L290 TraceCheckUtils]: 4: Hoare triple {18549#true} #res := -1073741823; {18549#true} is VALID [2022-04-27 15:14:19,320 INFO L290 TraceCheckUtils]: 5: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,320 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {18549#true} {18549#true} #1176#return; {18549#true} is VALID [2022-04-27 15:14:19,320 INFO L290 TraceCheckUtils]: 7: Hoare triple {18549#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {18549#true} is VALID [2022-04-27 15:14:19,320 INFO L290 TraceCheckUtils]: 8: Hoare triple {18549#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {18549#true} is VALID [2022-04-27 15:14:19,320 INFO L290 TraceCheckUtils]: 9: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,321 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {18549#true} {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} #1220#return; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,333 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:14:19,335 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:19,342 INFO L290 TraceCheckUtils]: 0: Hoare triple {18609#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {18549#true} is VALID [2022-04-27 15:14:19,342 INFO L290 TraceCheckUtils]: 1: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,343 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {18549#true} {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} #1222#return; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,355 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 47 [2022-04-27 15:14:19,360 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:19,406 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2022-04-27 15:14:19,409 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:19,427 INFO L290 TraceCheckUtils]: 0: Hoare triple {18616#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {18549#true} is VALID [2022-04-27 15:14:19,427 INFO L290 TraceCheckUtils]: 1: Hoare triple {18549#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {18617#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} is VALID [2022-04-27 15:14:19,428 INFO L290 TraceCheckUtils]: 2: Hoare triple {18617#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} assume true; {18617#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} is VALID [2022-04-27 15:14:19,428 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {18617#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} {18549#true} #1248#return; {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:19,429 INFO L290 TraceCheckUtils]: 0: Hoare triple {18610#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~2.base, ~irpStack~2.offset;havoc ~devExt~2.base, ~devExt~2.offset;havoc ~hookKeyboard~0.base, ~hookKeyboard~0.offset;havoc ~connectData~0.base, ~connectData~0.offset;havoc ~status~2;havoc ~tmp~2;~status~2 := 0;call #t~mem51.base, #t~mem51.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~2.base, ~devExt~2.offset := #t~mem51.base, #t~mem51.offset;havoc #t~mem51.base, #t~mem51.offset;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4);call #t~mem52.base, #t~mem52.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~2.base, ~irpStack~2.offset := #t~mem52.base, #t~mem52.offset;havoc #t~mem52.base, #t~mem52.offset;call #t~mem53 := read~int(~irpStack~2.base, 12 + ~irpStack~2.offset, 4); {18549#true} is VALID [2022-04-27 15:14:19,429 INFO L290 TraceCheckUtils]: 1: Hoare triple {18549#true} assume #t~mem53 % 4294967296 == ~bitwiseOr(~bitwiseOr(720896, 512), 3) % 4294967296;havoc #t~mem53; {18549#true} is VALID [2022-04-27 15:14:19,433 INFO L290 TraceCheckUtils]: 2: Hoare triple {18549#true} call #t~mem62.base, #t~mem62.offset := read~$Pointer$(~devExt~2.base, 20 + ~devExt~2.offset, 4); {18549#true} is VALID [2022-04-27 15:14:19,433 INFO L290 TraceCheckUtils]: 3: Hoare triple {18549#true} assume 0 != (#t~mem62.base + #t~mem62.offset) % 4294967296;havoc #t~mem62.base, #t~mem62.offset;~status~2 := -1073741757; {18549#true} is VALID [2022-04-27 15:14:19,433 INFO L290 TraceCheckUtils]: 4: Hoare triple {18549#true} assume !(~status~2 >= 0);call write~int(~status~2, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~2; {18549#true} is VALID [2022-04-27 15:14:19,434 INFO L272 TraceCheckUtils]: 5: Hoare triple {18549#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {18616#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:14:19,434 INFO L290 TraceCheckUtils]: 6: Hoare triple {18616#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {18549#true} is VALID [2022-04-27 15:14:19,434 INFO L290 TraceCheckUtils]: 7: Hoare triple {18549#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {18617#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} is VALID [2022-04-27 15:14:19,434 INFO L290 TraceCheckUtils]: 8: Hoare triple {18617#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} assume true; {18617#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} is VALID [2022-04-27 15:14:19,435 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {18617#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} {18549#true} #1248#return; {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:19,435 INFO L290 TraceCheckUtils]: 10: Hoare triple {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} #res := ~status~2; {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:19,436 INFO L290 TraceCheckUtils]: 11: Hoare triple {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} assume true; {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:19,436 INFO L284 TraceCheckUtils]: 12: Hoare quadruple {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} #1234#return; {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} is VALID [2022-04-27 15:14:19,437 INFO L272 TraceCheckUtils]: 0: Hoare triple {18549#true} call ULTIMATE.init(); {18595#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:14:19,437 INFO L290 TraceCheckUtils]: 1: Hoare triple {18595#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {18549#true} is VALID [2022-04-27 15:14:19,437 INFO L290 TraceCheckUtils]: 2: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,437 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {18549#true} {18549#true} #1270#return; {18549#true} is VALID [2022-04-27 15:14:19,438 INFO L272 TraceCheckUtils]: 4: Hoare triple {18549#true} call #t~ret213 := main(); {18549#true} is VALID [2022-04-27 15:14:19,438 INFO L290 TraceCheckUtils]: 5: Hoare triple {18549#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {18549#true} is VALID [2022-04-27 15:14:19,438 INFO L272 TraceCheckUtils]: 6: Hoare triple {18549#true} call _BLAST_init(); {18596#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:14:19,439 INFO L290 TraceCheckUtils]: 7: Hoare triple {18596#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {18597#(and (= (+ (- 2) ~DC~0) 0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:14:19,439 INFO L290 TraceCheckUtils]: 8: Hoare triple {18597#(and (= (+ (- 2) ~DC~0) 0) (<= 4 ~SKIP2~0))} assume true; {18597#(and (= (+ (- 2) ~DC~0) 0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:14:19,439 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {18597#(and (= (+ (- 2) ~DC~0) 0) (<= 4 ~SKIP2~0))} {18549#true} #1216#return; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,440 INFO L272 TraceCheckUtils]: 10: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {18598#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:14:19,440 INFO L290 TraceCheckUtils]: 11: Hoare triple {18598#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {18549#true} is VALID [2022-04-27 15:14:19,440 INFO L272 TraceCheckUtils]: 12: Hoare triple {18549#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {18549#true} is VALID [2022-04-27 15:14:19,440 INFO L290 TraceCheckUtils]: 13: Hoare triple {18549#true} ~cond := #in~cond; {18549#true} is VALID [2022-04-27 15:14:19,440 INFO L290 TraceCheckUtils]: 14: Hoare triple {18549#true} assume !(0 == ~cond); {18549#true} is VALID [2022-04-27 15:14:19,440 INFO L290 TraceCheckUtils]: 15: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,440 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {18549#true} {18549#true} #1254#return; {18549#true} is VALID [2022-04-27 15:14:19,441 INFO L290 TraceCheckUtils]: 17: Hoare triple {18549#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {18549#true} is VALID [2022-04-27 15:14:19,441 INFO L290 TraceCheckUtils]: 18: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,441 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {18549#true} {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} #1218#return; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,441 INFO L290 TraceCheckUtils]: 20: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,442 INFO L290 TraceCheckUtils]: 21: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,442 INFO L290 TraceCheckUtils]: 22: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,443 INFO L272 TraceCheckUtils]: 23: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {18603#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:14:19,443 INFO L290 TraceCheckUtils]: 24: Hoare triple {18603#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {18549#true} is VALID [2022-04-27 15:14:19,444 INFO L272 TraceCheckUtils]: 25: Hoare triple {18549#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {18603#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:14:19,444 INFO L290 TraceCheckUtils]: 26: Hoare triple {18603#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {18549#true} is VALID [2022-04-27 15:14:19,444 INFO L290 TraceCheckUtils]: 27: Hoare triple {18549#true} assume !(0 == ~__BLAST_NONDET~5); {18549#true} is VALID [2022-04-27 15:14:19,444 INFO L290 TraceCheckUtils]: 28: Hoare triple {18549#true} #res := -1073741823; {18549#true} is VALID [2022-04-27 15:14:19,444 INFO L290 TraceCheckUtils]: 29: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,444 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {18549#true} {18549#true} #1176#return; {18549#true} is VALID [2022-04-27 15:14:19,444 INFO L290 TraceCheckUtils]: 31: Hoare triple {18549#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {18549#true} is VALID [2022-04-27 15:14:19,444 INFO L290 TraceCheckUtils]: 32: Hoare triple {18549#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {18549#true} is VALID [2022-04-27 15:14:19,444 INFO L290 TraceCheckUtils]: 33: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,445 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {18549#true} {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} #1220#return; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,445 INFO L290 TraceCheckUtils]: 35: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,446 INFO L272 TraceCheckUtils]: 36: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} call stub_driver_init(); {18609#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:14:19,446 INFO L290 TraceCheckUtils]: 37: Hoare triple {18609#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {18549#true} is VALID [2022-04-27 15:14:19,446 INFO L290 TraceCheckUtils]: 38: Hoare triple {18549#true} assume true; {18549#true} is VALID [2022-04-27 15:14:19,446 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {18549#true} {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} #1222#return; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,446 INFO L290 TraceCheckUtils]: 40: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} assume !!(~status~5 >= 0); {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,447 INFO L290 TraceCheckUtils]: 41: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} assume !(0 == ~__BLAST_NONDET~0); {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,447 INFO L290 TraceCheckUtils]: 42: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} assume !(1 == ~__BLAST_NONDET~0); {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,447 INFO L290 TraceCheckUtils]: 43: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} assume !(2 == ~__BLAST_NONDET~0); {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,448 INFO L290 TraceCheckUtils]: 44: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} assume !(3 == ~__BLAST_NONDET~0); {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,448 INFO L290 TraceCheckUtils]: 45: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} assume !(4 == ~__BLAST_NONDET~0); {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,448 INFO L290 TraceCheckUtils]: 46: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} assume 8 == ~__BLAST_NONDET~0; {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} is VALID [2022-04-27 15:14:19,449 INFO L272 TraceCheckUtils]: 47: Hoare triple {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} call #t~ret176 := KbFilter_InternIoCtl(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {18610#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:14:19,449 INFO L290 TraceCheckUtils]: 48: Hoare triple {18610#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~2.base, ~irpStack~2.offset;havoc ~devExt~2.base, ~devExt~2.offset;havoc ~hookKeyboard~0.base, ~hookKeyboard~0.offset;havoc ~connectData~0.base, ~connectData~0.offset;havoc ~status~2;havoc ~tmp~2;~status~2 := 0;call #t~mem51.base, #t~mem51.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~2.base, ~devExt~2.offset := #t~mem51.base, #t~mem51.offset;havoc #t~mem51.base, #t~mem51.offset;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4);call #t~mem52.base, #t~mem52.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~2.base, ~irpStack~2.offset := #t~mem52.base, #t~mem52.offset;havoc #t~mem52.base, #t~mem52.offset;call #t~mem53 := read~int(~irpStack~2.base, 12 + ~irpStack~2.offset, 4); {18549#true} is VALID [2022-04-27 15:14:19,449 INFO L290 TraceCheckUtils]: 49: Hoare triple {18549#true} assume #t~mem53 % 4294967296 == ~bitwiseOr(~bitwiseOr(720896, 512), 3) % 4294967296;havoc #t~mem53; {18549#true} is VALID [2022-04-27 15:14:19,449 INFO L290 TraceCheckUtils]: 50: Hoare triple {18549#true} call #t~mem62.base, #t~mem62.offset := read~$Pointer$(~devExt~2.base, 20 + ~devExt~2.offset, 4); {18549#true} is VALID [2022-04-27 15:14:19,449 INFO L290 TraceCheckUtils]: 51: Hoare triple {18549#true} assume 0 != (#t~mem62.base + #t~mem62.offset) % 4294967296;havoc #t~mem62.base, #t~mem62.offset;~status~2 := -1073741757; {18549#true} is VALID [2022-04-27 15:14:19,449 INFO L290 TraceCheckUtils]: 52: Hoare triple {18549#true} assume !(~status~2 >= 0);call write~int(~status~2, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~2; {18549#true} is VALID [2022-04-27 15:14:19,450 INFO L272 TraceCheckUtils]: 53: Hoare triple {18549#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {18616#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:14:19,450 INFO L290 TraceCheckUtils]: 54: Hoare triple {18616#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {18549#true} is VALID [2022-04-27 15:14:19,450 INFO L290 TraceCheckUtils]: 55: Hoare triple {18549#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {18617#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} is VALID [2022-04-27 15:14:19,450 INFO L290 TraceCheckUtils]: 56: Hoare triple {18617#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} assume true; {18617#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} is VALID [2022-04-27 15:14:19,451 INFO L284 TraceCheckUtils]: 57: Hoare quadruple {18617#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} {18549#true} #1248#return; {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:19,451 INFO L290 TraceCheckUtils]: 58: Hoare triple {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} #res := ~status~2; {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:19,452 INFO L290 TraceCheckUtils]: 59: Hoare triple {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} assume true; {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:19,452 INFO L284 TraceCheckUtils]: 60: Hoare quadruple {18615#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} {18557#(and (not (= ~SKIP2~0 2)) (= 2 ~DC~0))} #1234#return; {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} is VALID [2022-04-27 15:14:19,453 INFO L290 TraceCheckUtils]: 61: Hoare triple {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} assume -2147483648 <= #t~ret176 && #t~ret176 <= 2147483647;~status~5 := #t~ret176;havoc #t~ret176; {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} is VALID [2022-04-27 15:14:19,453 INFO L290 TraceCheckUtils]: 62: Hoare triple {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} assume 0 != ~we_should_unload~0; {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} is VALID [2022-04-27 15:14:19,453 INFO L290 TraceCheckUtils]: 63: Hoare triple {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} assume !(1 == ~pended~0); {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} is VALID [2022-04-27 15:14:19,454 INFO L290 TraceCheckUtils]: 64: Hoare triple {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} assume !(1 == ~pended~0); {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} is VALID [2022-04-27 15:14:19,454 INFO L290 TraceCheckUtils]: 65: Hoare triple {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} assume !(~s~0 == ~UNLOADED~0); {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} is VALID [2022-04-27 15:14:19,454 INFO L290 TraceCheckUtils]: 66: Hoare triple {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} assume !(-1 == ~status~5); {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} is VALID [2022-04-27 15:14:19,454 INFO L290 TraceCheckUtils]: 67: Hoare triple {18594#(and (not (= ~SKIP2~0 2)) (= 2 ~s~0))} assume !(~s~0 != ~SKIP2~0); {18550#false} is VALID [2022-04-27 15:14:19,455 INFO L290 TraceCheckUtils]: 68: Hoare triple {18550#false} assume 1 == ~pended~0; {18550#false} is VALID [2022-04-27 15:14:19,455 INFO L290 TraceCheckUtils]: 69: Hoare triple {18550#false} assume 259 != ~status~5; {18550#false} is VALID [2022-04-27 15:14:19,455 INFO L272 TraceCheckUtils]: 70: Hoare triple {18550#false} call errorFn(); {18550#false} is VALID [2022-04-27 15:14:19,455 INFO L290 TraceCheckUtils]: 71: Hoare triple {18550#false} assume !false; {18550#false} is VALID [2022-04-27 15:14:19,455 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:14:19,455 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:14:19,455 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1809417847] [2022-04-27 15:14:19,455 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1809417847] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:14:19,455 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:14:19,455 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [14] imperfect sequences [] total 14 [2022-04-27 15:14:19,456 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [157065775] [2022-04-27 15:14:19,456 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:14:19,456 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 3.7142857142857144) internal successors, (52), 7 states have internal predecessors, (52), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) Word has length 72 [2022-04-27 15:14:19,456 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:14:19,456 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 14 states, 14 states have (on average 3.7142857142857144) internal successors, (52), 7 states have internal predecessors, (52), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:14:19,516 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 72 edges. 72 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:14:19,516 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-04-27 15:14:19,516 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:14:19,517 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-04-27 15:14:19,517 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=37, Invalid=145, Unknown=0, NotChecked=0, Total=182 [2022-04-27 15:14:19,517 INFO L87 Difference]: Start difference. First operand 371 states and 493 transitions. Second operand has 14 states, 14 states have (on average 3.7142857142857144) internal successors, (52), 7 states have internal predecessors, (52), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:14:23,236 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.51s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:14:25,241 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:14:29,243 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.93s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:14:34,122 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:14:38,145 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.99s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:14:40,150 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:14:48,814 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:14:48,814 INFO L93 Difference]: Finished difference Result 417 states and 550 transitions. [2022-04-27 15:14:48,814 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2022-04-27 15:14:48,814 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 3.7142857142857144) internal successors, (52), 7 states have internal predecessors, (52), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) Word has length 72 [2022-04-27 15:14:48,815 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:14:48,815 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 3.7142857142857144) internal successors, (52), 7 states have internal predecessors, (52), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:14:48,817 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 19 states to 19 states and 457 transitions. [2022-04-27 15:14:48,817 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 3.7142857142857144) internal successors, (52), 7 states have internal predecessors, (52), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:14:48,820 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 19 states to 19 states and 457 transitions. [2022-04-27 15:14:48,820 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 19 states and 457 transitions. [2022-04-27 15:14:49,346 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 457 edges. 457 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:14:49,355 INFO L225 Difference]: With dead ends: 417 [2022-04-27 15:14:49,355 INFO L226 Difference]: Without dead ends: 409 [2022-04-27 15:14:49,355 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 45 GetRequests, 18 SyntacticMatches, 0 SemanticMatches, 27 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 142 ImplicationChecksByTransitivity, 0.6s TimeCoverageRelationStatistics Valid=199, Invalid=613, Unknown=0, NotChecked=0, Total=812 [2022-04-27 15:14:49,356 INFO L413 NwaCegarLoop]: 276 mSDtfsCounter, 1561 mSDsluCounter, 297 mSDsCounter, 0 mSdLazyCounter, 1352 mSolverCounterSat, 527 mSolverCounterUnsat, 3 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 16.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1573 SdHoareTripleChecker+Valid, 573 SdHoareTripleChecker+Invalid, 1882 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 527 IncrementalHoareTripleChecker+Valid, 1352 IncrementalHoareTripleChecker+Invalid, 3 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 16.2s IncrementalHoareTripleChecker+Time [2022-04-27 15:14:49,356 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1573 Valid, 573 Invalid, 1882 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [527 Valid, 1352 Invalid, 3 Unknown, 0 Unchecked, 16.2s Time] [2022-04-27 15:14:49,361 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 409 states. [2022-04-27 15:14:49,494 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 409 to 386. [2022-04-27 15:14:49,494 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:14:49,495 INFO L82 GeneralOperation]: Start isEquivalent. First operand 409 states. Second operand has 386 states, 309 states have (on average 1.3754045307443366) internal successors, (425), 314 states have internal predecessors, (425), 42 states have call successors, (42), 32 states have call predecessors, (42), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) [2022-04-27 15:14:49,496 INFO L74 IsIncluded]: Start isIncluded. First operand 409 states. Second operand has 386 states, 309 states have (on average 1.3754045307443366) internal successors, (425), 314 states have internal predecessors, (425), 42 states have call successors, (42), 32 states have call predecessors, (42), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) [2022-04-27 15:14:49,496 INFO L87 Difference]: Start difference. First operand 409 states. Second operand has 386 states, 309 states have (on average 1.3754045307443366) internal successors, (425), 314 states have internal predecessors, (425), 42 states have call successors, (42), 32 states have call predecessors, (42), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) [2022-04-27 15:14:49,503 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:14:49,503 INFO L93 Difference]: Finished difference Result 409 states and 541 transitions. [2022-04-27 15:14:49,503 INFO L276 IsEmpty]: Start isEmpty. Operand 409 states and 541 transitions. [2022-04-27 15:14:49,504 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:14:49,504 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:14:49,505 INFO L74 IsIncluded]: Start isIncluded. First operand has 386 states, 309 states have (on average 1.3754045307443366) internal successors, (425), 314 states have internal predecessors, (425), 42 states have call successors, (42), 32 states have call predecessors, (42), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) Second operand 409 states. [2022-04-27 15:14:49,505 INFO L87 Difference]: Start difference. First operand has 386 states, 309 states have (on average 1.3754045307443366) internal successors, (425), 314 states have internal predecessors, (425), 42 states have call successors, (42), 32 states have call predecessors, (42), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) Second operand 409 states. [2022-04-27 15:14:49,512 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:14:49,512 INFO L93 Difference]: Finished difference Result 409 states and 541 transitions. [2022-04-27 15:14:49,512 INFO L276 IsEmpty]: Start isEmpty. Operand 409 states and 541 transitions. [2022-04-27 15:14:49,513 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:14:49,513 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:14:49,513 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:14:49,513 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:14:49,514 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 386 states, 309 states have (on average 1.3754045307443366) internal successors, (425), 314 states have internal predecessors, (425), 42 states have call successors, (42), 32 states have call predecessors, (42), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) [2022-04-27 15:14:49,521 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 386 states to 386 states and 511 transitions. [2022-04-27 15:14:49,521 INFO L78 Accepts]: Start accepts. Automaton has 386 states and 511 transitions. Word has length 72 [2022-04-27 15:14:49,521 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:14:49,522 INFO L495 AbstractCegarLoop]: Abstraction has 386 states and 511 transitions. [2022-04-27 15:14:49,522 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 14 states have (on average 3.7142857142857144) internal successors, (52), 7 states have internal predecessors, (52), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:14:49,522 INFO L276 IsEmpty]: Start isEmpty. Operand 386 states and 511 transitions. [2022-04-27 15:14:49,523 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 74 [2022-04-27 15:14:49,523 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:14:49,523 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:14:49,523 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2022-04-27 15:14:49,523 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:14:49,523 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:14:49,523 INFO L85 PathProgramCache]: Analyzing trace with hash 2144673722, now seen corresponding path program 1 times [2022-04-27 15:14:49,523 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:14:49,523 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [30227210] [2022-04-27 15:14:49,523 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:14:49,523 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:14:49,574 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:49,670 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:14:49,671 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:49,677 INFO L290 TraceCheckUtils]: 0: Hoare triple {20606#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {20560#true} is VALID [2022-04-27 15:14:49,677 INFO L290 TraceCheckUtils]: 1: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,677 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {20560#true} {20560#true} #1270#return; {20560#true} is VALID [2022-04-27 15:14:49,697 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:14:49,700 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:49,714 INFO L290 TraceCheckUtils]: 0: Hoare triple {20607#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {20608#(and (<= 7 ~IPC~0) (= (+ (- 2) ~DC~0) 0))} is VALID [2022-04-27 15:14:49,715 INFO L290 TraceCheckUtils]: 1: Hoare triple {20608#(and (<= 7 ~IPC~0) (= (+ (- 2) ~DC~0) 0))} assume true; {20608#(and (<= 7 ~IPC~0) (= (+ (- 2) ~DC~0) 0))} is VALID [2022-04-27 15:14:49,715 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {20608#(and (<= 7 ~IPC~0) (= (+ (- 2) ~DC~0) 0))} {20560#true} #1216#return; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,722 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:14:49,733 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:49,744 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:14:49,745 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:49,749 INFO L290 TraceCheckUtils]: 0: Hoare triple {20560#true} ~cond := #in~cond; {20560#true} is VALID [2022-04-27 15:14:49,749 INFO L290 TraceCheckUtils]: 1: Hoare triple {20560#true} assume !(0 == ~cond); {20560#true} is VALID [2022-04-27 15:14:49,750 INFO L290 TraceCheckUtils]: 2: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,750 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {20560#true} {20560#true} #1254#return; {20560#true} is VALID [2022-04-27 15:14:49,750 INFO L290 TraceCheckUtils]: 0: Hoare triple {20609#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {20560#true} is VALID [2022-04-27 15:14:49,750 INFO L272 TraceCheckUtils]: 1: Hoare triple {20560#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {20560#true} is VALID [2022-04-27 15:14:49,750 INFO L290 TraceCheckUtils]: 2: Hoare triple {20560#true} ~cond := #in~cond; {20560#true} is VALID [2022-04-27 15:14:49,750 INFO L290 TraceCheckUtils]: 3: Hoare triple {20560#true} assume !(0 == ~cond); {20560#true} is VALID [2022-04-27 15:14:49,750 INFO L290 TraceCheckUtils]: 4: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,750 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {20560#true} {20560#true} #1254#return; {20560#true} is VALID [2022-04-27 15:14:49,750 INFO L290 TraceCheckUtils]: 6: Hoare triple {20560#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {20560#true} is VALID [2022-04-27 15:14:49,750 INFO L290 TraceCheckUtils]: 7: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,751 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {20560#true} {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} #1218#return; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,760 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:14:49,765 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:49,771 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:14:49,772 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:49,778 INFO L290 TraceCheckUtils]: 0: Hoare triple {20614#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {20560#true} is VALID [2022-04-27 15:14:49,778 INFO L290 TraceCheckUtils]: 1: Hoare triple {20560#true} assume !(0 == ~__BLAST_NONDET~5); {20560#true} is VALID [2022-04-27 15:14:49,778 INFO L290 TraceCheckUtils]: 2: Hoare triple {20560#true} #res := -1073741823; {20560#true} is VALID [2022-04-27 15:14:49,778 INFO L290 TraceCheckUtils]: 3: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,778 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {20560#true} {20560#true} #1176#return; {20560#true} is VALID [2022-04-27 15:14:49,778 INFO L290 TraceCheckUtils]: 0: Hoare triple {20614#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {20560#true} is VALID [2022-04-27 15:14:49,779 INFO L272 TraceCheckUtils]: 1: Hoare triple {20560#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {20614#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:14:49,780 INFO L290 TraceCheckUtils]: 2: Hoare triple {20614#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {20560#true} is VALID [2022-04-27 15:14:49,780 INFO L290 TraceCheckUtils]: 3: Hoare triple {20560#true} assume !(0 == ~__BLAST_NONDET~5); {20560#true} is VALID [2022-04-27 15:14:49,780 INFO L290 TraceCheckUtils]: 4: Hoare triple {20560#true} #res := -1073741823; {20560#true} is VALID [2022-04-27 15:14:49,780 INFO L290 TraceCheckUtils]: 5: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,780 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {20560#true} {20560#true} #1176#return; {20560#true} is VALID [2022-04-27 15:14:49,780 INFO L290 TraceCheckUtils]: 7: Hoare triple {20560#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {20560#true} is VALID [2022-04-27 15:14:49,780 INFO L290 TraceCheckUtils]: 8: Hoare triple {20560#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {20560#true} is VALID [2022-04-27 15:14:49,780 INFO L290 TraceCheckUtils]: 9: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,781 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {20560#true} {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} #1220#return; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,794 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:14:49,795 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:49,802 INFO L290 TraceCheckUtils]: 0: Hoare triple {20620#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {20560#true} is VALID [2022-04-27 15:14:49,802 INFO L290 TraceCheckUtils]: 1: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,802 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {20560#true} {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} #1222#return; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,815 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 47 [2022-04-27 15:14:49,821 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:49,865 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2022-04-27 15:14:49,866 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:49,895 INFO L290 TraceCheckUtils]: 0: Hoare triple {20627#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {20560#true} is VALID [2022-04-27 15:14:49,895 INFO L290 TraceCheckUtils]: 1: Hoare triple {20560#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {20628#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} is VALID [2022-04-27 15:14:49,895 INFO L290 TraceCheckUtils]: 2: Hoare triple {20628#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} assume true; {20628#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} is VALID [2022-04-27 15:14:49,896 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {20628#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} {20560#true} #1248#return; {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:49,896 INFO L290 TraceCheckUtils]: 0: Hoare triple {20621#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~2.base, ~irpStack~2.offset;havoc ~devExt~2.base, ~devExt~2.offset;havoc ~hookKeyboard~0.base, ~hookKeyboard~0.offset;havoc ~connectData~0.base, ~connectData~0.offset;havoc ~status~2;havoc ~tmp~2;~status~2 := 0;call #t~mem51.base, #t~mem51.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~2.base, ~devExt~2.offset := #t~mem51.base, #t~mem51.offset;havoc #t~mem51.base, #t~mem51.offset;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4);call #t~mem52.base, #t~mem52.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~2.base, ~irpStack~2.offset := #t~mem52.base, #t~mem52.offset;havoc #t~mem52.base, #t~mem52.offset;call #t~mem53 := read~int(~irpStack~2.base, 12 + ~irpStack~2.offset, 4); {20560#true} is VALID [2022-04-27 15:14:49,896 INFO L290 TraceCheckUtils]: 1: Hoare triple {20560#true} assume #t~mem53 % 4294967296 == ~bitwiseOr(~bitwiseOr(720896, 512), 3) % 4294967296;havoc #t~mem53; {20560#true} is VALID [2022-04-27 15:14:49,896 INFO L290 TraceCheckUtils]: 2: Hoare triple {20560#true} call #t~mem62.base, #t~mem62.offset := read~$Pointer$(~devExt~2.base, 20 + ~devExt~2.offset, 4); {20560#true} is VALID [2022-04-27 15:14:49,896 INFO L290 TraceCheckUtils]: 3: Hoare triple {20560#true} assume 0 != (#t~mem62.base + #t~mem62.offset) % 4294967296;havoc #t~mem62.base, #t~mem62.offset;~status~2 := -1073741757; {20560#true} is VALID [2022-04-27 15:14:49,896 INFO L290 TraceCheckUtils]: 4: Hoare triple {20560#true} assume !(~status~2 >= 0);call write~int(~status~2, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~2; {20560#true} is VALID [2022-04-27 15:14:49,897 INFO L272 TraceCheckUtils]: 5: Hoare triple {20560#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {20627#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:14:49,897 INFO L290 TraceCheckUtils]: 6: Hoare triple {20627#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {20560#true} is VALID [2022-04-27 15:14:49,897 INFO L290 TraceCheckUtils]: 7: Hoare triple {20560#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {20628#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} is VALID [2022-04-27 15:14:49,897 INFO L290 TraceCheckUtils]: 8: Hoare triple {20628#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} assume true; {20628#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} is VALID [2022-04-27 15:14:49,898 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {20628#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} {20560#true} #1248#return; {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:49,898 INFO L290 TraceCheckUtils]: 10: Hoare triple {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} #res := ~status~2; {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:49,899 INFO L290 TraceCheckUtils]: 11: Hoare triple {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} assume true; {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:49,900 INFO L284 TraceCheckUtils]: 12: Hoare quadruple {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} #1234#return; {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,901 INFO L272 TraceCheckUtils]: 0: Hoare triple {20560#true} call ULTIMATE.init(); {20606#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:14:49,901 INFO L290 TraceCheckUtils]: 1: Hoare triple {20606#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {20560#true} is VALID [2022-04-27 15:14:49,901 INFO L290 TraceCheckUtils]: 2: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,901 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {20560#true} {20560#true} #1270#return; {20560#true} is VALID [2022-04-27 15:14:49,901 INFO L272 TraceCheckUtils]: 4: Hoare triple {20560#true} call #t~ret213 := main(); {20560#true} is VALID [2022-04-27 15:14:49,901 INFO L290 TraceCheckUtils]: 5: Hoare triple {20560#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {20560#true} is VALID [2022-04-27 15:14:49,902 INFO L272 TraceCheckUtils]: 6: Hoare triple {20560#true} call _BLAST_init(); {20607#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:14:49,902 INFO L290 TraceCheckUtils]: 7: Hoare triple {20607#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {20608#(and (<= 7 ~IPC~0) (= (+ (- 2) ~DC~0) 0))} is VALID [2022-04-27 15:14:49,902 INFO L290 TraceCheckUtils]: 8: Hoare triple {20608#(and (<= 7 ~IPC~0) (= (+ (- 2) ~DC~0) 0))} assume true; {20608#(and (<= 7 ~IPC~0) (= (+ (- 2) ~DC~0) 0))} is VALID [2022-04-27 15:14:49,903 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {20608#(and (<= 7 ~IPC~0) (= (+ (- 2) ~DC~0) 0))} {20560#true} #1216#return; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,903 INFO L272 TraceCheckUtils]: 10: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {20609#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:14:49,904 INFO L290 TraceCheckUtils]: 11: Hoare triple {20609#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {20560#true} is VALID [2022-04-27 15:14:49,904 INFO L272 TraceCheckUtils]: 12: Hoare triple {20560#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {20560#true} is VALID [2022-04-27 15:14:49,904 INFO L290 TraceCheckUtils]: 13: Hoare triple {20560#true} ~cond := #in~cond; {20560#true} is VALID [2022-04-27 15:14:49,904 INFO L290 TraceCheckUtils]: 14: Hoare triple {20560#true} assume !(0 == ~cond); {20560#true} is VALID [2022-04-27 15:14:49,904 INFO L290 TraceCheckUtils]: 15: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,904 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {20560#true} {20560#true} #1254#return; {20560#true} is VALID [2022-04-27 15:14:49,904 INFO L290 TraceCheckUtils]: 17: Hoare triple {20560#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {20560#true} is VALID [2022-04-27 15:14:49,904 INFO L290 TraceCheckUtils]: 18: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,904 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {20560#true} {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} #1218#return; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,905 INFO L290 TraceCheckUtils]: 20: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,905 INFO L290 TraceCheckUtils]: 21: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,906 INFO L290 TraceCheckUtils]: 22: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,906 INFO L272 TraceCheckUtils]: 23: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {20614#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:14:49,906 INFO L290 TraceCheckUtils]: 24: Hoare triple {20614#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {20560#true} is VALID [2022-04-27 15:14:49,907 INFO L272 TraceCheckUtils]: 25: Hoare triple {20560#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {20614#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:14:49,907 INFO L290 TraceCheckUtils]: 26: Hoare triple {20614#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {20560#true} is VALID [2022-04-27 15:14:49,907 INFO L290 TraceCheckUtils]: 27: Hoare triple {20560#true} assume !(0 == ~__BLAST_NONDET~5); {20560#true} is VALID [2022-04-27 15:14:49,907 INFO L290 TraceCheckUtils]: 28: Hoare triple {20560#true} #res := -1073741823; {20560#true} is VALID [2022-04-27 15:14:49,907 INFO L290 TraceCheckUtils]: 29: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,908 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {20560#true} {20560#true} #1176#return; {20560#true} is VALID [2022-04-27 15:14:49,908 INFO L290 TraceCheckUtils]: 31: Hoare triple {20560#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {20560#true} is VALID [2022-04-27 15:14:49,908 INFO L290 TraceCheckUtils]: 32: Hoare triple {20560#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {20560#true} is VALID [2022-04-27 15:14:49,908 INFO L290 TraceCheckUtils]: 33: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,908 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {20560#true} {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} #1220#return; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,908 INFO L290 TraceCheckUtils]: 35: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,909 INFO L272 TraceCheckUtils]: 36: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} call stub_driver_init(); {20620#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:14:49,909 INFO L290 TraceCheckUtils]: 37: Hoare triple {20620#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {20560#true} is VALID [2022-04-27 15:14:49,909 INFO L290 TraceCheckUtils]: 38: Hoare triple {20560#true} assume true; {20560#true} is VALID [2022-04-27 15:14:49,909 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {20560#true} {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} #1222#return; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,910 INFO L290 TraceCheckUtils]: 40: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} assume !!(~status~5 >= 0); {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,910 INFO L290 TraceCheckUtils]: 41: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} assume !(0 == ~__BLAST_NONDET~0); {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,910 INFO L290 TraceCheckUtils]: 42: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} assume !(1 == ~__BLAST_NONDET~0); {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,911 INFO L290 TraceCheckUtils]: 43: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} assume !(2 == ~__BLAST_NONDET~0); {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,911 INFO L290 TraceCheckUtils]: 44: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} assume !(3 == ~__BLAST_NONDET~0); {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,911 INFO L290 TraceCheckUtils]: 45: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} assume !(4 == ~__BLAST_NONDET~0); {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,911 INFO L290 TraceCheckUtils]: 46: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} assume 8 == ~__BLAST_NONDET~0; {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,912 INFO L272 TraceCheckUtils]: 47: Hoare triple {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} call #t~ret176 := KbFilter_InternIoCtl(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {20621#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:14:49,912 INFO L290 TraceCheckUtils]: 48: Hoare triple {20621#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~2.base, ~irpStack~2.offset;havoc ~devExt~2.base, ~devExt~2.offset;havoc ~hookKeyboard~0.base, ~hookKeyboard~0.offset;havoc ~connectData~0.base, ~connectData~0.offset;havoc ~status~2;havoc ~tmp~2;~status~2 := 0;call #t~mem51.base, #t~mem51.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~2.base, ~devExt~2.offset := #t~mem51.base, #t~mem51.offset;havoc #t~mem51.base, #t~mem51.offset;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4);call #t~mem52.base, #t~mem52.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~2.base, ~irpStack~2.offset := #t~mem52.base, #t~mem52.offset;havoc #t~mem52.base, #t~mem52.offset;call #t~mem53 := read~int(~irpStack~2.base, 12 + ~irpStack~2.offset, 4); {20560#true} is VALID [2022-04-27 15:14:49,912 INFO L290 TraceCheckUtils]: 49: Hoare triple {20560#true} assume #t~mem53 % 4294967296 == ~bitwiseOr(~bitwiseOr(720896, 512), 3) % 4294967296;havoc #t~mem53; {20560#true} is VALID [2022-04-27 15:14:49,912 INFO L290 TraceCheckUtils]: 50: Hoare triple {20560#true} call #t~mem62.base, #t~mem62.offset := read~$Pointer$(~devExt~2.base, 20 + ~devExt~2.offset, 4); {20560#true} is VALID [2022-04-27 15:14:49,912 INFO L290 TraceCheckUtils]: 51: Hoare triple {20560#true} assume 0 != (#t~mem62.base + #t~mem62.offset) % 4294967296;havoc #t~mem62.base, #t~mem62.offset;~status~2 := -1073741757; {20560#true} is VALID [2022-04-27 15:14:49,912 INFO L290 TraceCheckUtils]: 52: Hoare triple {20560#true} assume !(~status~2 >= 0);call write~int(~status~2, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~2; {20560#true} is VALID [2022-04-27 15:14:49,913 INFO L272 TraceCheckUtils]: 53: Hoare triple {20560#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {20627#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:14:49,913 INFO L290 TraceCheckUtils]: 54: Hoare triple {20627#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {20560#true} is VALID [2022-04-27 15:14:49,913 INFO L290 TraceCheckUtils]: 55: Hoare triple {20560#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {20628#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} is VALID [2022-04-27 15:14:49,914 INFO L290 TraceCheckUtils]: 56: Hoare triple {20628#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} assume true; {20628#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} is VALID [2022-04-27 15:14:49,914 INFO L284 TraceCheckUtils]: 57: Hoare quadruple {20628#(and (<= ~s~0 ~DC~0) (<= ~DC~0 ~s~0))} {20560#true} #1248#return; {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:49,914 INFO L290 TraceCheckUtils]: 58: Hoare triple {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} #res := ~status~2; {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:49,915 INFO L290 TraceCheckUtils]: 59: Hoare triple {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} assume true; {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} is VALID [2022-04-27 15:14:49,916 INFO L284 TraceCheckUtils]: 60: Hoare quadruple {20626#(and (or (not (<= ~s~0 1)) (<= ~DC~0 ~s~0)) (or (<= ~s~0 ~DC~0) (<= ~s~0 2)))} {20568#(and (= 2 ~DC~0) (not (= ~IPC~0 2)))} #1234#return; {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,916 INFO L290 TraceCheckUtils]: 61: Hoare triple {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} assume -2147483648 <= #t~ret176 && #t~ret176 <= 2147483647;~status~5 := #t~ret176;havoc #t~ret176; {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,916 INFO L290 TraceCheckUtils]: 62: Hoare triple {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} assume 0 != ~we_should_unload~0; {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,917 INFO L290 TraceCheckUtils]: 63: Hoare triple {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} assume !(1 == ~pended~0); {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,917 INFO L290 TraceCheckUtils]: 64: Hoare triple {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} assume !(1 == ~pended~0); {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,917 INFO L290 TraceCheckUtils]: 65: Hoare triple {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} assume !(~s~0 == ~UNLOADED~0); {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,917 INFO L290 TraceCheckUtils]: 66: Hoare triple {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} assume !(-1 == ~status~5); {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,918 INFO L290 TraceCheckUtils]: 67: Hoare triple {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} assume ~s~0 != ~SKIP2~0; {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} is VALID [2022-04-27 15:14:49,918 INFO L290 TraceCheckUtils]: 68: Hoare triple {20605#(and (= 2 ~s~0) (not (= ~IPC~0 2)))} assume !(~s~0 != ~IPC~0); {20561#false} is VALID [2022-04-27 15:14:49,918 INFO L290 TraceCheckUtils]: 69: Hoare triple {20561#false} assume 1 == ~pended~0; {20561#false} is VALID [2022-04-27 15:14:49,918 INFO L290 TraceCheckUtils]: 70: Hoare triple {20561#false} assume 259 != ~status~5; {20561#false} is VALID [2022-04-27 15:14:49,918 INFO L272 TraceCheckUtils]: 71: Hoare triple {20561#false} call errorFn(); {20561#false} is VALID [2022-04-27 15:14:49,918 INFO L290 TraceCheckUtils]: 72: Hoare triple {20561#false} assume !false; {20561#false} is VALID [2022-04-27 15:14:49,919 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:14:49,919 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:14:49,919 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [30227210] [2022-04-27 15:14:49,919 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [30227210] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:14:49,919 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:14:49,919 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [14] imperfect sequences [] total 14 [2022-04-27 15:14:49,919 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1556505522] [2022-04-27 15:14:49,919 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:14:49,920 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 3.7857142857142856) internal successors, (53), 7 states have internal predecessors, (53), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) Word has length 73 [2022-04-27 15:14:49,920 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:14:49,920 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 14 states, 14 states have (on average 3.7857142857142856) internal successors, (53), 7 states have internal predecessors, (53), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:14:49,983 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 73 edges. 73 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:14:49,983 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-04-27 15:14:49,983 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:14:49,983 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-04-27 15:14:49,983 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=37, Invalid=145, Unknown=0, NotChecked=0, Total=182 [2022-04-27 15:14:49,984 INFO L87 Difference]: Start difference. First operand 386 states and 511 transitions. Second operand has 14 states, 14 states have (on average 3.7857142857142856) internal successors, (53), 7 states have internal predecessors, (53), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:14:52,181 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:14:58,845 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:14:58,846 INFO L93 Difference]: Finished difference Result 417 states and 549 transitions. [2022-04-27 15:14:58,846 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2022-04-27 15:14:58,846 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 3.7857142857142856) internal successors, (53), 7 states have internal predecessors, (53), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) Word has length 73 [2022-04-27 15:14:58,846 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:14:58,846 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 3.7857142857142856) internal successors, (53), 7 states have internal predecessors, (53), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:14:58,849 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18 states to 18 states and 456 transitions. [2022-04-27 15:14:58,849 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 3.7857142857142856) internal successors, (53), 7 states have internal predecessors, (53), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:14:58,851 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18 states to 18 states and 456 transitions. [2022-04-27 15:14:58,851 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 18 states and 456 transitions. [2022-04-27 15:14:59,378 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 456 edges. 456 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:14:59,386 INFO L225 Difference]: With dead ends: 417 [2022-04-27 15:14:59,387 INFO L226 Difference]: Without dead ends: 409 [2022-04-27 15:14:59,387 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 43 GetRequests, 17 SyntacticMatches, 0 SemanticMatches, 26 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 125 ImplicationChecksByTransitivity, 0.6s TimeCoverageRelationStatistics Valid=190, Invalid=566, Unknown=0, NotChecked=0, Total=756 [2022-04-27 15:14:59,387 INFO L413 NwaCegarLoop]: 279 mSDtfsCounter, 1182 mSDsluCounter, 275 mSDsCounter, 0 mSdLazyCounter, 1140 mSolverCounterSat, 391 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1194 SdHoareTripleChecker+Valid, 554 SdHoareTripleChecker+Invalid, 1532 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 391 IncrementalHoareTripleChecker+Valid, 1140 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.6s IncrementalHoareTripleChecker+Time [2022-04-27 15:14:59,388 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1194 Valid, 554 Invalid, 1532 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [391 Valid, 1140 Invalid, 1 Unknown, 0 Unchecked, 4.6s Time] [2022-04-27 15:14:59,388 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 409 states. [2022-04-27 15:14:59,522 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 409 to 387. [2022-04-27 15:14:59,522 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:14:59,524 INFO L82 GeneralOperation]: Start isEquivalent. First operand 409 states. Second operand has 387 states, 310 states have (on average 1.3741935483870968) internal successors, (426), 315 states have internal predecessors, (426), 42 states have call successors, (42), 32 states have call predecessors, (42), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) [2022-04-27 15:14:59,525 INFO L74 IsIncluded]: Start isIncluded. First operand 409 states. Second operand has 387 states, 310 states have (on average 1.3741935483870968) internal successors, (426), 315 states have internal predecessors, (426), 42 states have call successors, (42), 32 states have call predecessors, (42), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) [2022-04-27 15:14:59,525 INFO L87 Difference]: Start difference. First operand 409 states. Second operand has 387 states, 310 states have (on average 1.3741935483870968) internal successors, (426), 315 states have internal predecessors, (426), 42 states have call successors, (42), 32 states have call predecessors, (42), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) [2022-04-27 15:14:59,532 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:14:59,532 INFO L93 Difference]: Finished difference Result 409 states and 540 transitions. [2022-04-27 15:14:59,532 INFO L276 IsEmpty]: Start isEmpty. Operand 409 states and 540 transitions. [2022-04-27 15:14:59,533 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:14:59,533 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:14:59,534 INFO L74 IsIncluded]: Start isIncluded. First operand has 387 states, 310 states have (on average 1.3741935483870968) internal successors, (426), 315 states have internal predecessors, (426), 42 states have call successors, (42), 32 states have call predecessors, (42), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) Second operand 409 states. [2022-04-27 15:14:59,534 INFO L87 Difference]: Start difference. First operand has 387 states, 310 states have (on average 1.3741935483870968) internal successors, (426), 315 states have internal predecessors, (426), 42 states have call successors, (42), 32 states have call predecessors, (42), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) Second operand 409 states. [2022-04-27 15:14:59,541 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:14:59,541 INFO L93 Difference]: Finished difference Result 409 states and 540 transitions. [2022-04-27 15:14:59,542 INFO L276 IsEmpty]: Start isEmpty. Operand 409 states and 540 transitions. [2022-04-27 15:14:59,542 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:14:59,542 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:14:59,542 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:14:59,542 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:14:59,543 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 387 states, 310 states have (on average 1.3741935483870968) internal successors, (426), 315 states have internal predecessors, (426), 42 states have call successors, (42), 32 states have call predecessors, (42), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) [2022-04-27 15:14:59,550 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 387 states to 387 states and 512 transitions. [2022-04-27 15:14:59,551 INFO L78 Accepts]: Start accepts. Automaton has 387 states and 512 transitions. Word has length 73 [2022-04-27 15:14:59,551 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:14:59,551 INFO L495 AbstractCegarLoop]: Abstraction has 387 states and 512 transitions. [2022-04-27 15:14:59,551 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 14 states have (on average 3.7857142857142856) internal successors, (53), 7 states have internal predecessors, (53), 3 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:14:59,551 INFO L276 IsEmpty]: Start isEmpty. Operand 387 states and 512 transitions. [2022-04-27 15:14:59,552 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 75 [2022-04-27 15:14:59,552 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:14:59,552 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:14:59,552 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2022-04-27 15:14:59,552 INFO L420 AbstractCegarLoop]: === Iteration 12 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:14:59,552 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:14:59,553 INFO L85 PathProgramCache]: Analyzing trace with hash 1821545128, now seen corresponding path program 1 times [2022-04-27 15:14:59,553 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:14:59,553 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1385151808] [2022-04-27 15:14:59,553 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:14:59,553 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:14:59,602 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:59,666 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:14:59,668 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:59,673 INFO L290 TraceCheckUtils]: 0: Hoare triple {22614#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {22569#true} is VALID [2022-04-27 15:14:59,674 INFO L290 TraceCheckUtils]: 1: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,674 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {22569#true} {22569#true} #1270#return; {22569#true} is VALID [2022-04-27 15:14:59,697 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:14:59,699 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:59,704 INFO L290 TraceCheckUtils]: 0: Hoare triple {22615#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {22569#true} is VALID [2022-04-27 15:14:59,704 INFO L290 TraceCheckUtils]: 1: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,704 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {22569#true} {22569#true} #1216#return; {22569#true} is VALID [2022-04-27 15:14:59,711 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:14:59,718 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:59,725 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:14:59,726 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:59,731 INFO L290 TraceCheckUtils]: 0: Hoare triple {22569#true} ~cond := #in~cond; {22569#true} is VALID [2022-04-27 15:14:59,731 INFO L290 TraceCheckUtils]: 1: Hoare triple {22569#true} assume !(0 == ~cond); {22569#true} is VALID [2022-04-27 15:14:59,731 INFO L290 TraceCheckUtils]: 2: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,731 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {22569#true} {22569#true} #1254#return; {22569#true} is VALID [2022-04-27 15:14:59,731 INFO L290 TraceCheckUtils]: 0: Hoare triple {22616#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {22569#true} is VALID [2022-04-27 15:14:59,731 INFO L272 TraceCheckUtils]: 1: Hoare triple {22569#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {22569#true} is VALID [2022-04-27 15:14:59,731 INFO L290 TraceCheckUtils]: 2: Hoare triple {22569#true} ~cond := #in~cond; {22569#true} is VALID [2022-04-27 15:14:59,731 INFO L290 TraceCheckUtils]: 3: Hoare triple {22569#true} assume !(0 == ~cond); {22569#true} is VALID [2022-04-27 15:14:59,732 INFO L290 TraceCheckUtils]: 4: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,732 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {22569#true} {22569#true} #1254#return; {22569#true} is VALID [2022-04-27 15:14:59,732 INFO L290 TraceCheckUtils]: 6: Hoare triple {22569#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {22569#true} is VALID [2022-04-27 15:14:59,732 INFO L290 TraceCheckUtils]: 7: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,732 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {22569#true} {22569#true} #1218#return; {22569#true} is VALID [2022-04-27 15:14:59,741 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:14:59,744 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:59,749 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:14:59,750 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:59,756 INFO L290 TraceCheckUtils]: 0: Hoare triple {22621#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {22569#true} is VALID [2022-04-27 15:14:59,756 INFO L290 TraceCheckUtils]: 1: Hoare triple {22569#true} assume !(0 == ~__BLAST_NONDET~5); {22569#true} is VALID [2022-04-27 15:14:59,756 INFO L290 TraceCheckUtils]: 2: Hoare triple {22569#true} #res := -1073741823; {22569#true} is VALID [2022-04-27 15:14:59,756 INFO L290 TraceCheckUtils]: 3: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,756 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {22569#true} {22569#true} #1176#return; {22569#true} is VALID [2022-04-27 15:14:59,756 INFO L290 TraceCheckUtils]: 0: Hoare triple {22621#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {22569#true} is VALID [2022-04-27 15:14:59,758 INFO L272 TraceCheckUtils]: 1: Hoare triple {22569#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {22621#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:14:59,758 INFO L290 TraceCheckUtils]: 2: Hoare triple {22621#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {22569#true} is VALID [2022-04-27 15:14:59,758 INFO L290 TraceCheckUtils]: 3: Hoare triple {22569#true} assume !(0 == ~__BLAST_NONDET~5); {22569#true} is VALID [2022-04-27 15:14:59,758 INFO L290 TraceCheckUtils]: 4: Hoare triple {22569#true} #res := -1073741823; {22569#true} is VALID [2022-04-27 15:14:59,758 INFO L290 TraceCheckUtils]: 5: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,758 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {22569#true} {22569#true} #1176#return; {22569#true} is VALID [2022-04-27 15:14:59,758 INFO L290 TraceCheckUtils]: 7: Hoare triple {22569#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {22569#true} is VALID [2022-04-27 15:14:59,758 INFO L290 TraceCheckUtils]: 8: Hoare triple {22569#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {22569#true} is VALID [2022-04-27 15:14:59,758 INFO L290 TraceCheckUtils]: 9: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,758 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {22569#true} {22569#true} #1220#return; {22569#true} is VALID [2022-04-27 15:14:59,771 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:14:59,772 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:59,777 INFO L290 TraceCheckUtils]: 0: Hoare triple {22627#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {22569#true} is VALID [2022-04-27 15:14:59,777 INFO L290 TraceCheckUtils]: 1: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,777 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {22569#true} {22569#true} #1222#return; {22569#true} is VALID [2022-04-27 15:14:59,794 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 47 [2022-04-27 15:14:59,797 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:59,810 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2022-04-27 15:14:59,811 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:14:59,816 INFO L290 TraceCheckUtils]: 0: Hoare triple {22633#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {22569#true} is VALID [2022-04-27 15:14:59,816 INFO L290 TraceCheckUtils]: 1: Hoare triple {22569#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {22569#true} is VALID [2022-04-27 15:14:59,816 INFO L290 TraceCheckUtils]: 2: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,816 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {22569#true} {22569#true} #1248#return; {22569#true} is VALID [2022-04-27 15:14:59,816 INFO L290 TraceCheckUtils]: 0: Hoare triple {22628#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~2.base, ~irpStack~2.offset;havoc ~devExt~2.base, ~devExt~2.offset;havoc ~hookKeyboard~0.base, ~hookKeyboard~0.offset;havoc ~connectData~0.base, ~connectData~0.offset;havoc ~status~2;havoc ~tmp~2;~status~2 := 0;call #t~mem51.base, #t~mem51.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~2.base, ~devExt~2.offset := #t~mem51.base, #t~mem51.offset;havoc #t~mem51.base, #t~mem51.offset;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4);call #t~mem52.base, #t~mem52.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~2.base, ~irpStack~2.offset := #t~mem52.base, #t~mem52.offset;havoc #t~mem52.base, #t~mem52.offset;call #t~mem53 := read~int(~irpStack~2.base, 12 + ~irpStack~2.offset, 4); {22569#true} is VALID [2022-04-27 15:14:59,816 INFO L290 TraceCheckUtils]: 1: Hoare triple {22569#true} assume #t~mem53 % 4294967296 == ~bitwiseOr(~bitwiseOr(720896, 512), 3) % 4294967296;havoc #t~mem53; {22569#true} is VALID [2022-04-27 15:14:59,816 INFO L290 TraceCheckUtils]: 2: Hoare triple {22569#true} call #t~mem62.base, #t~mem62.offset := read~$Pointer$(~devExt~2.base, 20 + ~devExt~2.offset, 4); {22569#true} is VALID [2022-04-27 15:14:59,816 INFO L290 TraceCheckUtils]: 3: Hoare triple {22569#true} assume 0 != (#t~mem62.base + #t~mem62.offset) % 4294967296;havoc #t~mem62.base, #t~mem62.offset;~status~2 := -1073741757; {22569#true} is VALID [2022-04-27 15:14:59,816 INFO L290 TraceCheckUtils]: 4: Hoare triple {22569#true} assume !(~status~2 >= 0);call write~int(~status~2, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~2; {22569#true} is VALID [2022-04-27 15:14:59,817 INFO L272 TraceCheckUtils]: 5: Hoare triple {22569#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {22633#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:14:59,817 INFO L290 TraceCheckUtils]: 6: Hoare triple {22633#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {22569#true} is VALID [2022-04-27 15:14:59,817 INFO L290 TraceCheckUtils]: 7: Hoare triple {22569#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {22569#true} is VALID [2022-04-27 15:14:59,817 INFO L290 TraceCheckUtils]: 8: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,817 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {22569#true} {22569#true} #1248#return; {22569#true} is VALID [2022-04-27 15:14:59,817 INFO L290 TraceCheckUtils]: 10: Hoare triple {22569#true} #res := ~status~2; {22569#true} is VALID [2022-04-27 15:14:59,817 INFO L290 TraceCheckUtils]: 11: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,817 INFO L284 TraceCheckUtils]: 12: Hoare quadruple {22569#true} {22569#true} #1234#return; {22569#true} is VALID [2022-04-27 15:14:59,819 INFO L272 TraceCheckUtils]: 0: Hoare triple {22569#true} call ULTIMATE.init(); {22614#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:14:59,819 INFO L290 TraceCheckUtils]: 1: Hoare triple {22614#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {22569#true} is VALID [2022-04-27 15:14:59,819 INFO L290 TraceCheckUtils]: 2: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,819 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {22569#true} {22569#true} #1270#return; {22569#true} is VALID [2022-04-27 15:14:59,819 INFO L272 TraceCheckUtils]: 4: Hoare triple {22569#true} call #t~ret213 := main(); {22569#true} is VALID [2022-04-27 15:14:59,819 INFO L290 TraceCheckUtils]: 5: Hoare triple {22569#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {22569#true} is VALID [2022-04-27 15:14:59,820 INFO L272 TraceCheckUtils]: 6: Hoare triple {22569#true} call _BLAST_init(); {22615#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:14:59,820 INFO L290 TraceCheckUtils]: 7: Hoare triple {22615#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {22569#true} is VALID [2022-04-27 15:14:59,820 INFO L290 TraceCheckUtils]: 8: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,820 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {22569#true} {22569#true} #1216#return; {22569#true} is VALID [2022-04-27 15:14:59,821 INFO L272 TraceCheckUtils]: 10: Hoare triple {22569#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {22616#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:14:59,821 INFO L290 TraceCheckUtils]: 11: Hoare triple {22616#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {22569#true} is VALID [2022-04-27 15:14:59,821 INFO L272 TraceCheckUtils]: 12: Hoare triple {22569#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {22569#true} is VALID [2022-04-27 15:14:59,821 INFO L290 TraceCheckUtils]: 13: Hoare triple {22569#true} ~cond := #in~cond; {22569#true} is VALID [2022-04-27 15:14:59,821 INFO L290 TraceCheckUtils]: 14: Hoare triple {22569#true} assume !(0 == ~cond); {22569#true} is VALID [2022-04-27 15:14:59,821 INFO L290 TraceCheckUtils]: 15: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,821 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {22569#true} {22569#true} #1254#return; {22569#true} is VALID [2022-04-27 15:14:59,821 INFO L290 TraceCheckUtils]: 17: Hoare triple {22569#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {22569#true} is VALID [2022-04-27 15:14:59,821 INFO L290 TraceCheckUtils]: 18: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,821 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {22569#true} {22569#true} #1218#return; {22569#true} is VALID [2022-04-27 15:14:59,821 INFO L290 TraceCheckUtils]: 20: Hoare triple {22569#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {22569#true} is VALID [2022-04-27 15:14:59,821 INFO L290 TraceCheckUtils]: 21: Hoare triple {22569#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {22569#true} is VALID [2022-04-27 15:14:59,821 INFO L290 TraceCheckUtils]: 22: Hoare triple {22569#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {22569#true} is VALID [2022-04-27 15:14:59,822 INFO L272 TraceCheckUtils]: 23: Hoare triple {22569#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {22621#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:14:59,822 INFO L290 TraceCheckUtils]: 24: Hoare triple {22621#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {22569#true} is VALID [2022-04-27 15:14:59,823 INFO L272 TraceCheckUtils]: 25: Hoare triple {22569#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {22621#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:14:59,823 INFO L290 TraceCheckUtils]: 26: Hoare triple {22621#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {22569#true} is VALID [2022-04-27 15:14:59,823 INFO L290 TraceCheckUtils]: 27: Hoare triple {22569#true} assume !(0 == ~__BLAST_NONDET~5); {22569#true} is VALID [2022-04-27 15:14:59,824 INFO L290 TraceCheckUtils]: 28: Hoare triple {22569#true} #res := -1073741823; {22569#true} is VALID [2022-04-27 15:14:59,824 INFO L290 TraceCheckUtils]: 29: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,824 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {22569#true} {22569#true} #1176#return; {22569#true} is VALID [2022-04-27 15:14:59,824 INFO L290 TraceCheckUtils]: 31: Hoare triple {22569#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {22569#true} is VALID [2022-04-27 15:14:59,824 INFO L290 TraceCheckUtils]: 32: Hoare triple {22569#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {22569#true} is VALID [2022-04-27 15:14:59,824 INFO L290 TraceCheckUtils]: 33: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,824 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {22569#true} {22569#true} #1220#return; {22569#true} is VALID [2022-04-27 15:14:59,824 INFO L290 TraceCheckUtils]: 35: Hoare triple {22569#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {22569#true} is VALID [2022-04-27 15:14:59,825 INFO L272 TraceCheckUtils]: 36: Hoare triple {22569#true} call stub_driver_init(); {22627#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:14:59,825 INFO L290 TraceCheckUtils]: 37: Hoare triple {22627#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {22569#true} is VALID [2022-04-27 15:14:59,825 INFO L290 TraceCheckUtils]: 38: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,825 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {22569#true} {22569#true} #1222#return; {22569#true} is VALID [2022-04-27 15:14:59,825 INFO L290 TraceCheckUtils]: 40: Hoare triple {22569#true} assume !!(~status~5 >= 0); {22569#true} is VALID [2022-04-27 15:14:59,825 INFO L290 TraceCheckUtils]: 41: Hoare triple {22569#true} assume !(0 == ~__BLAST_NONDET~0); {22569#true} is VALID [2022-04-27 15:14:59,825 INFO L290 TraceCheckUtils]: 42: Hoare triple {22569#true} assume !(1 == ~__BLAST_NONDET~0); {22569#true} is VALID [2022-04-27 15:14:59,825 INFO L290 TraceCheckUtils]: 43: Hoare triple {22569#true} assume !(2 == ~__BLAST_NONDET~0); {22569#true} is VALID [2022-04-27 15:14:59,825 INFO L290 TraceCheckUtils]: 44: Hoare triple {22569#true} assume !(3 == ~__BLAST_NONDET~0); {22569#true} is VALID [2022-04-27 15:14:59,825 INFO L290 TraceCheckUtils]: 45: Hoare triple {22569#true} assume !(4 == ~__BLAST_NONDET~0); {22569#true} is VALID [2022-04-27 15:14:59,825 INFO L290 TraceCheckUtils]: 46: Hoare triple {22569#true} assume 8 == ~__BLAST_NONDET~0; {22569#true} is VALID [2022-04-27 15:14:59,826 INFO L272 TraceCheckUtils]: 47: Hoare triple {22569#true} call #t~ret176 := KbFilter_InternIoCtl(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {22628#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:14:59,826 INFO L290 TraceCheckUtils]: 48: Hoare triple {22628#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~2.base, ~irpStack~2.offset;havoc ~devExt~2.base, ~devExt~2.offset;havoc ~hookKeyboard~0.base, ~hookKeyboard~0.offset;havoc ~connectData~0.base, ~connectData~0.offset;havoc ~status~2;havoc ~tmp~2;~status~2 := 0;call #t~mem51.base, #t~mem51.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~2.base, ~devExt~2.offset := #t~mem51.base, #t~mem51.offset;havoc #t~mem51.base, #t~mem51.offset;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4);call #t~mem52.base, #t~mem52.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~2.base, ~irpStack~2.offset := #t~mem52.base, #t~mem52.offset;havoc #t~mem52.base, #t~mem52.offset;call #t~mem53 := read~int(~irpStack~2.base, 12 + ~irpStack~2.offset, 4); {22569#true} is VALID [2022-04-27 15:14:59,826 INFO L290 TraceCheckUtils]: 49: Hoare triple {22569#true} assume #t~mem53 % 4294967296 == ~bitwiseOr(~bitwiseOr(720896, 512), 3) % 4294967296;havoc #t~mem53; {22569#true} is VALID [2022-04-27 15:14:59,826 INFO L290 TraceCheckUtils]: 50: Hoare triple {22569#true} call #t~mem62.base, #t~mem62.offset := read~$Pointer$(~devExt~2.base, 20 + ~devExt~2.offset, 4); {22569#true} is VALID [2022-04-27 15:14:59,826 INFO L290 TraceCheckUtils]: 51: Hoare triple {22569#true} assume 0 != (#t~mem62.base + #t~mem62.offset) % 4294967296;havoc #t~mem62.base, #t~mem62.offset;~status~2 := -1073741757; {22569#true} is VALID [2022-04-27 15:14:59,826 INFO L290 TraceCheckUtils]: 52: Hoare triple {22569#true} assume !(~status~2 >= 0);call write~int(~status~2, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~2; {22569#true} is VALID [2022-04-27 15:14:59,827 INFO L272 TraceCheckUtils]: 53: Hoare triple {22569#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {22633#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:14:59,827 INFO L290 TraceCheckUtils]: 54: Hoare triple {22633#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {22569#true} is VALID [2022-04-27 15:14:59,827 INFO L290 TraceCheckUtils]: 55: Hoare triple {22569#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {22569#true} is VALID [2022-04-27 15:14:59,827 INFO L290 TraceCheckUtils]: 56: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,827 INFO L284 TraceCheckUtils]: 57: Hoare quadruple {22569#true} {22569#true} #1248#return; {22569#true} is VALID [2022-04-27 15:14:59,827 INFO L290 TraceCheckUtils]: 58: Hoare triple {22569#true} #res := ~status~2; {22569#true} is VALID [2022-04-27 15:14:59,827 INFO L290 TraceCheckUtils]: 59: Hoare triple {22569#true} assume true; {22569#true} is VALID [2022-04-27 15:14:59,827 INFO L284 TraceCheckUtils]: 60: Hoare quadruple {22569#true} {22569#true} #1234#return; {22569#true} is VALID [2022-04-27 15:14:59,827 INFO L290 TraceCheckUtils]: 61: Hoare triple {22569#true} assume -2147483648 <= #t~ret176 && #t~ret176 <= 2147483647;~status~5 := #t~ret176;havoc #t~ret176; {22569#true} is VALID [2022-04-27 15:14:59,827 INFO L290 TraceCheckUtils]: 62: Hoare triple {22569#true} assume 0 != ~we_should_unload~0; {22569#true} is VALID [2022-04-27 15:14:59,828 INFO L290 TraceCheckUtils]: 63: Hoare triple {22569#true} assume !(1 == ~pended~0); {22613#(not (= ~pended~0 1))} is VALID [2022-04-27 15:14:59,828 INFO L290 TraceCheckUtils]: 64: Hoare triple {22613#(not (= ~pended~0 1))} assume !(1 == ~pended~0); {22613#(not (= ~pended~0 1))} is VALID [2022-04-27 15:14:59,828 INFO L290 TraceCheckUtils]: 65: Hoare triple {22613#(not (= ~pended~0 1))} assume !(~s~0 == ~UNLOADED~0); {22613#(not (= ~pended~0 1))} is VALID [2022-04-27 15:14:59,828 INFO L290 TraceCheckUtils]: 66: Hoare triple {22613#(not (= ~pended~0 1))} assume !(-1 == ~status~5); {22613#(not (= ~pended~0 1))} is VALID [2022-04-27 15:14:59,829 INFO L290 TraceCheckUtils]: 67: Hoare triple {22613#(not (= ~pended~0 1))} assume ~s~0 != ~SKIP2~0; {22613#(not (= ~pended~0 1))} is VALID [2022-04-27 15:14:59,829 INFO L290 TraceCheckUtils]: 68: Hoare triple {22613#(not (= ~pended~0 1))} assume ~s~0 != ~IPC~0; {22613#(not (= ~pended~0 1))} is VALID [2022-04-27 15:14:59,829 INFO L290 TraceCheckUtils]: 69: Hoare triple {22613#(not (= ~pended~0 1))} assume !(~s~0 != ~DC~0); {22613#(not (= ~pended~0 1))} is VALID [2022-04-27 15:14:59,829 INFO L290 TraceCheckUtils]: 70: Hoare triple {22613#(not (= ~pended~0 1))} assume 1 == ~pended~0; {22570#false} is VALID [2022-04-27 15:14:59,829 INFO L290 TraceCheckUtils]: 71: Hoare triple {22570#false} assume 259 != ~status~5; {22570#false} is VALID [2022-04-27 15:14:59,829 INFO L272 TraceCheckUtils]: 72: Hoare triple {22570#false} call errorFn(); {22570#false} is VALID [2022-04-27 15:14:59,830 INFO L290 TraceCheckUtils]: 73: Hoare triple {22570#false} assume !false; {22570#false} is VALID [2022-04-27 15:14:59,830 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:14:59,830 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:14:59,830 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1385151808] [2022-04-27 15:14:59,830 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1385151808] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:14:59,830 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:14:59,830 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2022-04-27 15:14:59,830 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [98803169] [2022-04-27 15:14:59,830 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:14:59,831 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 5.4) internal successors, (54), 3 states have internal predecessors, (54), 2 states have call successors, (11), 9 states have call predecessors, (11), 1 states have return successors, (9), 1 states have call predecessors, (9), 1 states have call successors, (9) Word has length 74 [2022-04-27 15:14:59,831 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:14:59,831 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 10 states, 10 states have (on average 5.4) internal successors, (54), 3 states have internal predecessors, (54), 2 states have call successors, (11), 9 states have call predecessors, (11), 1 states have return successors, (9), 1 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:14:59,890 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 74 edges. 74 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:14:59,891 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2022-04-27 15:14:59,891 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:14:59,891 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2022-04-27 15:14:59,891 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=26, Invalid=64, Unknown=0, NotChecked=0, Total=90 [2022-04-27 15:14:59,891 INFO L87 Difference]: Start difference. First operand 387 states and 512 transitions. Second operand has 10 states, 10 states have (on average 5.4) internal successors, (54), 3 states have internal predecessors, (54), 2 states have call successors, (11), 9 states have call predecessors, (11), 1 states have return successors, (9), 1 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:15:02,064 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:15:08,410 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:08,410 INFO L93 Difference]: Finished difference Result 419 states and 554 transitions. [2022-04-27 15:15:08,410 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-04-27 15:15:08,410 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 5.4) internal successors, (54), 3 states have internal predecessors, (54), 2 states have call successors, (11), 9 states have call predecessors, (11), 1 states have return successors, (9), 1 states have call predecessors, (9), 1 states have call successors, (9) Word has length 74 [2022-04-27 15:15:08,410 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:15:08,410 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 5.4) internal successors, (54), 3 states have internal predecessors, (54), 2 states have call successors, (11), 9 states have call predecessors, (11), 1 states have return successors, (9), 1 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:15:08,413 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 12 states to 12 states and 436 transitions. [2022-04-27 15:15:08,413 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 5.4) internal successors, (54), 3 states have internal predecessors, (54), 2 states have call successors, (11), 9 states have call predecessors, (11), 1 states have return successors, (9), 1 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:15:08,415 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 12 states to 12 states and 436 transitions. [2022-04-27 15:15:08,415 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 12 states and 436 transitions. [2022-04-27 15:15:08,903 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 436 edges. 436 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:15:08,911 INFO L225 Difference]: With dead ends: 419 [2022-04-27 15:15:08,911 INFO L226 Difference]: Without dead ends: 396 [2022-04-27 15:15:08,912 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 35 GetRequests, 18 SyntacticMatches, 0 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 47 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=105, Invalid=237, Unknown=0, NotChecked=0, Total=342 [2022-04-27 15:15:08,912 INFO L413 NwaCegarLoop]: 273 mSDtfsCounter, 742 mSDsluCounter, 228 mSDsCounter, 0 mSdLazyCounter, 943 mSolverCounterSat, 240 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 752 SdHoareTripleChecker+Valid, 501 SdHoareTripleChecker+Invalid, 1184 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 240 IncrementalHoareTripleChecker+Valid, 943 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.5s IncrementalHoareTripleChecker+Time [2022-04-27 15:15:08,912 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [752 Valid, 501 Invalid, 1184 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [240 Valid, 943 Invalid, 1 Unknown, 0 Unchecked, 4.5s Time] [2022-04-27 15:15:08,913 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 396 states. [2022-04-27 15:15:09,052 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 396 to 381. [2022-04-27 15:15:09,052 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:15:09,053 INFO L82 GeneralOperation]: Start isEquivalent. First operand 396 states. Second operand has 381 states, 305 states have (on average 1.3639344262295081) internal successors, (416), 309 states have internal predecessors, (416), 41 states have call successors, (41), 32 states have call predecessors, (41), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) [2022-04-27 15:15:09,053 INFO L74 IsIncluded]: Start isIncluded. First operand 396 states. Second operand has 381 states, 305 states have (on average 1.3639344262295081) internal successors, (416), 309 states have internal predecessors, (416), 41 states have call successors, (41), 32 states have call predecessors, (41), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) [2022-04-27 15:15:09,054 INFO L87 Difference]: Start difference. First operand 396 states. Second operand has 381 states, 305 states have (on average 1.3639344262295081) internal successors, (416), 309 states have internal predecessors, (416), 41 states have call successors, (41), 32 states have call predecessors, (41), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) [2022-04-27 15:15:09,060 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:09,061 INFO L93 Difference]: Finished difference Result 396 states and 522 transitions. [2022-04-27 15:15:09,061 INFO L276 IsEmpty]: Start isEmpty. Operand 396 states and 522 transitions. [2022-04-27 15:15:09,061 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:15:09,061 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:15:09,062 INFO L74 IsIncluded]: Start isIncluded. First operand has 381 states, 305 states have (on average 1.3639344262295081) internal successors, (416), 309 states have internal predecessors, (416), 41 states have call successors, (41), 32 states have call predecessors, (41), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) Second operand 396 states. [2022-04-27 15:15:09,062 INFO L87 Difference]: Start difference. First operand has 381 states, 305 states have (on average 1.3639344262295081) internal successors, (416), 309 states have internal predecessors, (416), 41 states have call successors, (41), 32 states have call predecessors, (41), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) Second operand 396 states. [2022-04-27 15:15:09,069 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:09,069 INFO L93 Difference]: Finished difference Result 396 states and 522 transitions. [2022-04-27 15:15:09,069 INFO L276 IsEmpty]: Start isEmpty. Operand 396 states and 522 transitions. [2022-04-27 15:15:09,069 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:15:09,069 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:15:09,069 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:15:09,070 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:15:09,070 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 381 states, 305 states have (on average 1.3639344262295081) internal successors, (416), 309 states have internal predecessors, (416), 41 states have call successors, (41), 32 states have call predecessors, (41), 34 states have return successors, (44), 39 states have call predecessors, (44), 36 states have call successors, (44) [2022-04-27 15:15:09,077 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 381 states to 381 states and 501 transitions. [2022-04-27 15:15:09,077 INFO L78 Accepts]: Start accepts. Automaton has 381 states and 501 transitions. Word has length 74 [2022-04-27 15:15:09,077 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:15:09,077 INFO L495 AbstractCegarLoop]: Abstraction has 381 states and 501 transitions. [2022-04-27 15:15:09,077 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 10 states have (on average 5.4) internal successors, (54), 3 states have internal predecessors, (54), 2 states have call successors, (11), 9 states have call predecessors, (11), 1 states have return successors, (9), 1 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:15:09,077 INFO L276 IsEmpty]: Start isEmpty. Operand 381 states and 501 transitions. [2022-04-27 15:15:09,078 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 78 [2022-04-27 15:15:09,078 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:15:09,078 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:15:09,078 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2022-04-27 15:15:09,078 INFO L420 AbstractCegarLoop]: === Iteration 13 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:15:09,079 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:15:09,079 INFO L85 PathProgramCache]: Analyzing trace with hash 937494245, now seen corresponding path program 1 times [2022-04-27 15:15:09,079 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:15:09,079 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2144255963] [2022-04-27 15:15:09,079 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:15:09,079 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:15:09,137 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:09,252 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:15:09,255 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:09,262 INFO L290 TraceCheckUtils]: 0: Hoare triple {24578#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {24533#true} is VALID [2022-04-27 15:15:09,263 INFO L290 TraceCheckUtils]: 1: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,263 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {24533#true} {24533#true} #1270#return; {24533#true} is VALID [2022-04-27 15:15:09,283 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:15:09,285 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:09,290 INFO L290 TraceCheckUtils]: 0: Hoare triple {24579#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {24533#true} is VALID [2022-04-27 15:15:09,290 INFO L290 TraceCheckUtils]: 1: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,290 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {24533#true} {24533#true} #1216#return; {24533#true} is VALID [2022-04-27 15:15:09,297 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:15:09,302 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:09,310 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:15:09,311 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:09,316 INFO L290 TraceCheckUtils]: 0: Hoare triple {24533#true} ~cond := #in~cond; {24533#true} is VALID [2022-04-27 15:15:09,316 INFO L290 TraceCheckUtils]: 1: Hoare triple {24533#true} assume !(0 == ~cond); {24533#true} is VALID [2022-04-27 15:15:09,316 INFO L290 TraceCheckUtils]: 2: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,316 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {24533#true} {24533#true} #1254#return; {24533#true} is VALID [2022-04-27 15:15:09,316 INFO L290 TraceCheckUtils]: 0: Hoare triple {24580#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {24533#true} is VALID [2022-04-27 15:15:09,316 INFO L272 TraceCheckUtils]: 1: Hoare triple {24533#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {24533#true} is VALID [2022-04-27 15:15:09,316 INFO L290 TraceCheckUtils]: 2: Hoare triple {24533#true} ~cond := #in~cond; {24533#true} is VALID [2022-04-27 15:15:09,317 INFO L290 TraceCheckUtils]: 3: Hoare triple {24533#true} assume !(0 == ~cond); {24533#true} is VALID [2022-04-27 15:15:09,317 INFO L290 TraceCheckUtils]: 4: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,317 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {24533#true} {24533#true} #1254#return; {24533#true} is VALID [2022-04-27 15:15:09,317 INFO L290 TraceCheckUtils]: 6: Hoare triple {24533#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {24533#true} is VALID [2022-04-27 15:15:09,317 INFO L290 TraceCheckUtils]: 7: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,317 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {24533#true} {24533#true} #1218#return; {24533#true} is VALID [2022-04-27 15:15:09,339 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:15:09,342 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:09,360 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:15:09,362 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:09,368 INFO L290 TraceCheckUtils]: 0: Hoare triple {24585#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {24533#true} is VALID [2022-04-27 15:15:09,368 INFO L290 TraceCheckUtils]: 1: Hoare triple {24533#true} assume !(0 == ~__BLAST_NONDET~5); {24533#true} is VALID [2022-04-27 15:15:09,368 INFO L290 TraceCheckUtils]: 2: Hoare triple {24533#true} #res := -1073741823; {24533#true} is VALID [2022-04-27 15:15:09,368 INFO L290 TraceCheckUtils]: 3: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,368 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {24533#true} {24533#true} #1176#return; {24533#true} is VALID [2022-04-27 15:15:09,368 INFO L290 TraceCheckUtils]: 0: Hoare triple {24585#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {24533#true} is VALID [2022-04-27 15:15:09,369 INFO L272 TraceCheckUtils]: 1: Hoare triple {24533#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {24585#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:09,369 INFO L290 TraceCheckUtils]: 2: Hoare triple {24585#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {24533#true} is VALID [2022-04-27 15:15:09,369 INFO L290 TraceCheckUtils]: 3: Hoare triple {24533#true} assume !(0 == ~__BLAST_NONDET~5); {24533#true} is VALID [2022-04-27 15:15:09,369 INFO L290 TraceCheckUtils]: 4: Hoare triple {24533#true} #res := -1073741823; {24533#true} is VALID [2022-04-27 15:15:09,369 INFO L290 TraceCheckUtils]: 5: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,369 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {24533#true} {24533#true} #1176#return; {24533#true} is VALID [2022-04-27 15:15:09,369 INFO L290 TraceCheckUtils]: 7: Hoare triple {24533#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {24533#true} is VALID [2022-04-27 15:15:09,369 INFO L290 TraceCheckUtils]: 8: Hoare triple {24533#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {24533#true} is VALID [2022-04-27 15:15:09,370 INFO L290 TraceCheckUtils]: 9: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,370 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {24533#true} {24533#true} #1220#return; {24533#true} is VALID [2022-04-27 15:15:09,381 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:15:09,382 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:09,398 INFO L290 TraceCheckUtils]: 0: Hoare triple {24591#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {24533#true} is VALID [2022-04-27 15:15:09,399 INFO L290 TraceCheckUtils]: 1: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,399 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {24533#true} {24533#true} #1222#return; {24533#true} is VALID [2022-04-27 15:15:09,399 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 49 [2022-04-27 15:15:09,400 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:09,406 INFO L290 TraceCheckUtils]: 0: Hoare triple {24580#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {24533#true} is VALID [2022-04-27 15:15:09,406 INFO L290 TraceCheckUtils]: 1: Hoare triple {24533#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {24533#true} is VALID [2022-04-27 15:15:09,406 INFO L290 TraceCheckUtils]: 2: Hoare triple {24533#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {24533#true} is VALID [2022-04-27 15:15:09,406 INFO L290 TraceCheckUtils]: 3: Hoare triple {24533#true} assume #res.base == dest.base && #res.offset == dest.offset; {24533#true} is VALID [2022-04-27 15:15:09,406 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {24533#true} {24533#true} #1186#return; {24533#true} is VALID [2022-04-27 15:15:09,414 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 59 [2022-04-27 15:15:09,421 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:09,436 INFO L290 TraceCheckUtils]: 0: Hoare triple {24592#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {24533#true} is VALID [2022-04-27 15:15:09,437 INFO L290 TraceCheckUtils]: 1: Hoare triple {24533#true} assume !(0 != ~compRegistered~0); {24593#(<= ~compRegistered~0 0)} is VALID [2022-04-27 15:15:09,437 INFO L290 TraceCheckUtils]: 2: Hoare triple {24593#(<= ~compRegistered~0 0)} assume 0 == ~__BLAST_NONDET~11; {24593#(<= ~compRegistered~0 0)} is VALID [2022-04-27 15:15:09,437 INFO L290 TraceCheckUtils]: 3: Hoare triple {24593#(<= ~compRegistered~0 0)} ~returnVal2~0 := 0; {24593#(<= ~compRegistered~0 0)} is VALID [2022-04-27 15:15:09,437 INFO L290 TraceCheckUtils]: 4: Hoare triple {24593#(<= ~compRegistered~0 0)} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {24593#(<= ~compRegistered~0 0)} is VALID [2022-04-27 15:15:09,438 INFO L290 TraceCheckUtils]: 5: Hoare triple {24593#(<= ~compRegistered~0 0)} #res := ~returnVal2~0; {24593#(<= ~compRegistered~0 0)} is VALID [2022-04-27 15:15:09,438 INFO L290 TraceCheckUtils]: 6: Hoare triple {24593#(<= ~compRegistered~0 0)} assume true; {24593#(<= ~compRegistered~0 0)} is VALID [2022-04-27 15:15:09,439 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {24593#(<= ~compRegistered~0 0)} {24569#(= ~compRegistered~0 1)} #1192#return; {24534#false} is VALID [2022-04-27 15:15:09,440 INFO L272 TraceCheckUtils]: 0: Hoare triple {24533#true} call ULTIMATE.init(); {24578#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:15:09,440 INFO L290 TraceCheckUtils]: 1: Hoare triple {24578#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {24533#true} is VALID [2022-04-27 15:15:09,440 INFO L290 TraceCheckUtils]: 2: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,440 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {24533#true} {24533#true} #1270#return; {24533#true} is VALID [2022-04-27 15:15:09,440 INFO L272 TraceCheckUtils]: 4: Hoare triple {24533#true} call #t~ret213 := main(); {24533#true} is VALID [2022-04-27 15:15:09,440 INFO L290 TraceCheckUtils]: 5: Hoare triple {24533#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {24533#true} is VALID [2022-04-27 15:15:09,441 INFO L272 TraceCheckUtils]: 6: Hoare triple {24533#true} call _BLAST_init(); {24579#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:09,441 INFO L290 TraceCheckUtils]: 7: Hoare triple {24579#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {24533#true} is VALID [2022-04-27 15:15:09,441 INFO L290 TraceCheckUtils]: 8: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,441 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {24533#true} {24533#true} #1216#return; {24533#true} is VALID [2022-04-27 15:15:09,441 INFO L272 TraceCheckUtils]: 10: Hoare triple {24533#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {24580#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:15:09,442 INFO L290 TraceCheckUtils]: 11: Hoare triple {24580#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {24533#true} is VALID [2022-04-27 15:15:09,442 INFO L272 TraceCheckUtils]: 12: Hoare triple {24533#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {24533#true} is VALID [2022-04-27 15:15:09,442 INFO L290 TraceCheckUtils]: 13: Hoare triple {24533#true} ~cond := #in~cond; {24533#true} is VALID [2022-04-27 15:15:09,442 INFO L290 TraceCheckUtils]: 14: Hoare triple {24533#true} assume !(0 == ~cond); {24533#true} is VALID [2022-04-27 15:15:09,442 INFO L290 TraceCheckUtils]: 15: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,442 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {24533#true} {24533#true} #1254#return; {24533#true} is VALID [2022-04-27 15:15:09,442 INFO L290 TraceCheckUtils]: 17: Hoare triple {24533#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {24533#true} is VALID [2022-04-27 15:15:09,442 INFO L290 TraceCheckUtils]: 18: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,442 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {24533#true} {24533#true} #1218#return; {24533#true} is VALID [2022-04-27 15:15:09,442 INFO L290 TraceCheckUtils]: 20: Hoare triple {24533#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {24533#true} is VALID [2022-04-27 15:15:09,442 INFO L290 TraceCheckUtils]: 21: Hoare triple {24533#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {24533#true} is VALID [2022-04-27 15:15:09,442 INFO L290 TraceCheckUtils]: 22: Hoare triple {24533#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {24533#true} is VALID [2022-04-27 15:15:09,443 INFO L272 TraceCheckUtils]: 23: Hoare triple {24533#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {24585#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:09,443 INFO L290 TraceCheckUtils]: 24: Hoare triple {24585#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {24533#true} is VALID [2022-04-27 15:15:09,444 INFO L272 TraceCheckUtils]: 25: Hoare triple {24533#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {24585#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:09,444 INFO L290 TraceCheckUtils]: 26: Hoare triple {24585#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {24533#true} is VALID [2022-04-27 15:15:09,444 INFO L290 TraceCheckUtils]: 27: Hoare triple {24533#true} assume !(0 == ~__BLAST_NONDET~5); {24533#true} is VALID [2022-04-27 15:15:09,444 INFO L290 TraceCheckUtils]: 28: Hoare triple {24533#true} #res := -1073741823; {24533#true} is VALID [2022-04-27 15:15:09,444 INFO L290 TraceCheckUtils]: 29: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,444 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {24533#true} {24533#true} #1176#return; {24533#true} is VALID [2022-04-27 15:15:09,444 INFO L290 TraceCheckUtils]: 31: Hoare triple {24533#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {24533#true} is VALID [2022-04-27 15:15:09,444 INFO L290 TraceCheckUtils]: 32: Hoare triple {24533#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {24533#true} is VALID [2022-04-27 15:15:09,444 INFO L290 TraceCheckUtils]: 33: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,444 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {24533#true} {24533#true} #1220#return; {24533#true} is VALID [2022-04-27 15:15:09,445 INFO L290 TraceCheckUtils]: 35: Hoare triple {24533#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {24533#true} is VALID [2022-04-27 15:15:09,445 INFO L272 TraceCheckUtils]: 36: Hoare triple {24533#true} call stub_driver_init(); {24591#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:09,445 INFO L290 TraceCheckUtils]: 37: Hoare triple {24591#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {24533#true} is VALID [2022-04-27 15:15:09,445 INFO L290 TraceCheckUtils]: 38: Hoare triple {24533#true} assume true; {24533#true} is VALID [2022-04-27 15:15:09,445 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {24533#true} {24533#true} #1222#return; {24533#true} is VALID [2022-04-27 15:15:09,445 INFO L290 TraceCheckUtils]: 40: Hoare triple {24533#true} assume !!(~status~5 >= 0); {24533#true} is VALID [2022-04-27 15:15:09,445 INFO L290 TraceCheckUtils]: 41: Hoare triple {24533#true} assume !(0 == ~__BLAST_NONDET~0); {24533#true} is VALID [2022-04-27 15:15:09,445 INFO L290 TraceCheckUtils]: 42: Hoare triple {24533#true} assume !(1 == ~__BLAST_NONDET~0); {24533#true} is VALID [2022-04-27 15:15:09,445 INFO L290 TraceCheckUtils]: 43: Hoare triple {24533#true} assume !(2 == ~__BLAST_NONDET~0); {24533#true} is VALID [2022-04-27 15:15:09,446 INFO L290 TraceCheckUtils]: 44: Hoare triple {24533#true} assume 3 == ~__BLAST_NONDET~0; {24533#true} is VALID [2022-04-27 15:15:09,446 INFO L272 TraceCheckUtils]: 45: Hoare triple {24533#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {24533#true} is VALID [2022-04-27 15:15:09,446 INFO L290 TraceCheckUtils]: 46: Hoare triple {24533#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {24533#true} is VALID [2022-04-27 15:15:09,446 INFO L290 TraceCheckUtils]: 47: Hoare triple {24533#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {24533#true} is VALID [2022-04-27 15:15:09,446 INFO L290 TraceCheckUtils]: 48: Hoare triple {24533#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {24533#true} is VALID [2022-04-27 15:15:09,446 INFO L272 TraceCheckUtils]: 49: Hoare triple {24533#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {24580#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:15:09,446 INFO L290 TraceCheckUtils]: 50: Hoare triple {24580#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {24533#true} is VALID [2022-04-27 15:15:09,447 INFO L290 TraceCheckUtils]: 51: Hoare triple {24533#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {24533#true} is VALID [2022-04-27 15:15:09,447 INFO L290 TraceCheckUtils]: 52: Hoare triple {24533#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {24533#true} is VALID [2022-04-27 15:15:09,447 INFO L290 TraceCheckUtils]: 53: Hoare triple {24533#true} assume #res.base == dest.base && #res.offset == dest.offset; {24533#true} is VALID [2022-04-27 15:15:09,447 INFO L284 TraceCheckUtils]: 54: Hoare quadruple {24533#true} {24533#true} #1186#return; {24533#true} is VALID [2022-04-27 15:15:09,447 INFO L290 TraceCheckUtils]: 55: Hoare triple {24533#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {24533#true} is VALID [2022-04-27 15:15:09,447 INFO L290 TraceCheckUtils]: 56: Hoare triple {24533#true} assume !(~s~0 != ~NP~0); {24533#true} is VALID [2022-04-27 15:15:09,447 INFO L290 TraceCheckUtils]: 57: Hoare triple {24533#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {24569#(= ~compRegistered~0 1)} is VALID [2022-04-27 15:15:09,447 INFO L290 TraceCheckUtils]: 58: Hoare triple {24569#(= ~compRegistered~0 1)} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {24569#(= ~compRegistered~0 1)} is VALID [2022-04-27 15:15:09,448 INFO L272 TraceCheckUtils]: 59: Hoare triple {24569#(= ~compRegistered~0 1)} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {24592#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:09,448 INFO L290 TraceCheckUtils]: 60: Hoare triple {24592#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {24533#true} is VALID [2022-04-27 15:15:09,448 INFO L290 TraceCheckUtils]: 61: Hoare triple {24533#true} assume !(0 != ~compRegistered~0); {24593#(<= ~compRegistered~0 0)} is VALID [2022-04-27 15:15:09,448 INFO L290 TraceCheckUtils]: 62: Hoare triple {24593#(<= ~compRegistered~0 0)} assume 0 == ~__BLAST_NONDET~11; {24593#(<= ~compRegistered~0 0)} is VALID [2022-04-27 15:15:09,449 INFO L290 TraceCheckUtils]: 63: Hoare triple {24593#(<= ~compRegistered~0 0)} ~returnVal2~0 := 0; {24593#(<= ~compRegistered~0 0)} is VALID [2022-04-27 15:15:09,449 INFO L290 TraceCheckUtils]: 64: Hoare triple {24593#(<= ~compRegistered~0 0)} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {24593#(<= ~compRegistered~0 0)} is VALID [2022-04-27 15:15:09,449 INFO L290 TraceCheckUtils]: 65: Hoare triple {24593#(<= ~compRegistered~0 0)} #res := ~returnVal2~0; {24593#(<= ~compRegistered~0 0)} is VALID [2022-04-27 15:15:09,449 INFO L290 TraceCheckUtils]: 66: Hoare triple {24593#(<= ~compRegistered~0 0)} assume true; {24593#(<= ~compRegistered~0 0)} is VALID [2022-04-27 15:15:09,450 INFO L284 TraceCheckUtils]: 67: Hoare quadruple {24593#(<= ~compRegistered~0 0)} {24569#(= ~compRegistered~0 1)} #1192#return; {24534#false} is VALID [2022-04-27 15:15:09,450 INFO L290 TraceCheckUtils]: 68: Hoare triple {24534#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {24534#false} is VALID [2022-04-27 15:15:09,450 INFO L290 TraceCheckUtils]: 69: Hoare triple {24534#false} assume !(259 == ~status~3); {24534#false} is VALID [2022-04-27 15:15:09,450 INFO L290 TraceCheckUtils]: 70: Hoare triple {24534#false} assume !(~status~3 >= 0); {24534#false} is VALID [2022-04-27 15:15:09,450 INFO L290 TraceCheckUtils]: 71: Hoare triple {24534#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {24534#false} is VALID [2022-04-27 15:15:09,450 INFO L272 TraceCheckUtils]: 72: Hoare triple {24534#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {24534#false} is VALID [2022-04-27 15:15:09,450 INFO L290 TraceCheckUtils]: 73: Hoare triple {24534#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {24534#false} is VALID [2022-04-27 15:15:09,450 INFO L290 TraceCheckUtils]: 74: Hoare triple {24534#false} assume !(~s~0 == ~NP~0); {24534#false} is VALID [2022-04-27 15:15:09,451 INFO L272 TraceCheckUtils]: 75: Hoare triple {24534#false} call errorFn(); {24534#false} is VALID [2022-04-27 15:15:09,451 INFO L290 TraceCheckUtils]: 76: Hoare triple {24534#false} assume !false; {24534#false} is VALID [2022-04-27 15:15:09,451 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:15:09,451 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:15:09,451 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2144255963] [2022-04-27 15:15:09,451 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2144255963] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:15:09,451 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:15:09,451 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2022-04-27 15:15:09,451 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1765799440] [2022-04-27 15:15:09,451 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:15:09,452 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 5.5) internal successors, (55), 4 states have internal predecessors, (55), 3 states have call successors, (13), 8 states have call predecessors, (13), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) Word has length 77 [2022-04-27 15:15:09,452 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:15:09,456 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 10 states, 10 states have (on average 5.5) internal successors, (55), 4 states have internal predecessors, (55), 3 states have call successors, (13), 8 states have call predecessors, (13), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:09,513 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 77 edges. 77 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:15:09,514 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2022-04-27 15:15:09,514 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:15:09,514 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2022-04-27 15:15:09,514 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=24, Invalid=66, Unknown=0, NotChecked=0, Total=90 [2022-04-27 15:15:09,514 INFO L87 Difference]: Start difference. First operand 381 states and 501 transitions. Second operand has 10 states, 10 states have (on average 5.5) internal successors, (55), 4 states have internal predecessors, (55), 3 states have call successors, (13), 8 states have call predecessors, (13), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:11,696 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:15:18,255 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:18,255 INFO L93 Difference]: Finished difference Result 437 states and 561 transitions. [2022-04-27 15:15:18,255 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 14 states. [2022-04-27 15:15:18,255 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 5.5) internal successors, (55), 4 states have internal predecessors, (55), 3 states have call successors, (13), 8 states have call predecessors, (13), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) Word has length 77 [2022-04-27 15:15:18,255 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:15:18,255 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 5.5) internal successors, (55), 4 states have internal predecessors, (55), 3 states have call successors, (13), 8 states have call predecessors, (13), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:18,258 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 14 states to 14 states and 493 transitions. [2022-04-27 15:15:18,258 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 5.5) internal successors, (55), 4 states have internal predecessors, (55), 3 states have call successors, (13), 8 states have call predecessors, (13), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:18,261 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 14 states to 14 states and 493 transitions. [2022-04-27 15:15:18,261 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 14 states and 493 transitions. [2022-04-27 15:15:18,793 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 493 edges. 493 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:15:18,800 INFO L225 Difference]: With dead ends: 437 [2022-04-27 15:15:18,800 INFO L226 Difference]: Without dead ends: 374 [2022-04-27 15:15:18,800 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 37 GetRequests, 19 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 53 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=103, Invalid=277, Unknown=0, NotChecked=0, Total=380 [2022-04-27 15:15:18,800 INFO L413 NwaCegarLoop]: 310 mSDtfsCounter, 867 mSDsluCounter, 347 mSDsCounter, 0 mSdLazyCounter, 1096 mSolverCounterSat, 270 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 877 SdHoareTripleChecker+Valid, 657 SdHoareTripleChecker+Invalid, 1367 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 270 IncrementalHoareTripleChecker+Valid, 1096 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.5s IncrementalHoareTripleChecker+Time [2022-04-27 15:15:18,801 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [877 Valid, 657 Invalid, 1367 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [270 Valid, 1096 Invalid, 1 Unknown, 0 Unchecked, 4.5s Time] [2022-04-27 15:15:18,801 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 374 states. [2022-04-27 15:15:18,962 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 374 to 345. [2022-04-27 15:15:18,962 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:15:18,963 INFO L82 GeneralOperation]: Start isEquivalent. First operand 374 states. Second operand has 345 states, 274 states have (on average 1.3503649635036497) internal successors, (370), 278 states have internal predecessors, (370), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (39), 36 states have call predecessors, (39), 33 states have call successors, (39) [2022-04-27 15:15:18,963 INFO L74 IsIncluded]: Start isIncluded. First operand 374 states. Second operand has 345 states, 274 states have (on average 1.3503649635036497) internal successors, (370), 278 states have internal predecessors, (370), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (39), 36 states have call predecessors, (39), 33 states have call successors, (39) [2022-04-27 15:15:18,963 INFO L87 Difference]: Start difference. First operand 374 states. Second operand has 345 states, 274 states have (on average 1.3503649635036497) internal successors, (370), 278 states have internal predecessors, (370), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (39), 36 states have call predecessors, (39), 33 states have call successors, (39) [2022-04-27 15:15:18,969 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:18,969 INFO L93 Difference]: Finished difference Result 374 states and 482 transitions. [2022-04-27 15:15:18,969 INFO L276 IsEmpty]: Start isEmpty. Operand 374 states and 482 transitions. [2022-04-27 15:15:18,970 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:15:18,970 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:15:18,970 INFO L74 IsIncluded]: Start isIncluded. First operand has 345 states, 274 states have (on average 1.3503649635036497) internal successors, (370), 278 states have internal predecessors, (370), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (39), 36 states have call predecessors, (39), 33 states have call successors, (39) Second operand 374 states. [2022-04-27 15:15:18,970 INFO L87 Difference]: Start difference. First operand has 345 states, 274 states have (on average 1.3503649635036497) internal successors, (370), 278 states have internal predecessors, (370), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (39), 36 states have call predecessors, (39), 33 states have call successors, (39) Second operand 374 states. [2022-04-27 15:15:18,976 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:18,976 INFO L93 Difference]: Finished difference Result 374 states and 482 transitions. [2022-04-27 15:15:18,976 INFO L276 IsEmpty]: Start isEmpty. Operand 374 states and 482 transitions. [2022-04-27 15:15:18,977 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:15:18,977 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:15:18,977 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:15:18,977 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:15:18,978 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 345 states, 274 states have (on average 1.3503649635036497) internal successors, (370), 278 states have internal predecessors, (370), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (39), 36 states have call predecessors, (39), 33 states have call successors, (39) [2022-04-27 15:15:18,983 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 345 states to 345 states and 447 transitions. [2022-04-27 15:15:18,984 INFO L78 Accepts]: Start accepts. Automaton has 345 states and 447 transitions. Word has length 77 [2022-04-27 15:15:18,984 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:15:18,984 INFO L495 AbstractCegarLoop]: Abstraction has 345 states and 447 transitions. [2022-04-27 15:15:18,984 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 10 states have (on average 5.5) internal successors, (55), 4 states have internal predecessors, (55), 3 states have call successors, (13), 8 states have call predecessors, (13), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:18,984 INFO L276 IsEmpty]: Start isEmpty. Operand 345 states and 447 transitions. [2022-04-27 15:15:18,985 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 76 [2022-04-27 15:15:18,985 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:15:18,985 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:15:18,985 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12 [2022-04-27 15:15:18,985 INFO L420 AbstractCegarLoop]: === Iteration 14 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:15:18,986 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:15:18,986 INFO L85 PathProgramCache]: Analyzing trace with hash 641442499, now seen corresponding path program 1 times [2022-04-27 15:15:18,986 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:15:18,986 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1337329635] [2022-04-27 15:15:18,986 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:15:18,986 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:15:19,044 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:19,114 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:15:19,116 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:19,121 INFO L290 TraceCheckUtils]: 0: Hoare triple {26473#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {26427#true} is VALID [2022-04-27 15:15:19,122 INFO L290 TraceCheckUtils]: 1: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,122 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {26427#true} {26427#true} #1270#return; {26427#true} is VALID [2022-04-27 15:15:19,142 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:15:19,144 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:19,148 INFO L290 TraceCheckUtils]: 0: Hoare triple {26474#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {26427#true} is VALID [2022-04-27 15:15:19,149 INFO L290 TraceCheckUtils]: 1: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,149 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {26427#true} {26427#true} #1216#return; {26427#true} is VALID [2022-04-27 15:15:19,155 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:15:19,163 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:19,172 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:15:19,173 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:19,177 INFO L290 TraceCheckUtils]: 0: Hoare triple {26427#true} ~cond := #in~cond; {26427#true} is VALID [2022-04-27 15:15:19,178 INFO L290 TraceCheckUtils]: 1: Hoare triple {26427#true} assume !(0 == ~cond); {26427#true} is VALID [2022-04-27 15:15:19,178 INFO L290 TraceCheckUtils]: 2: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,178 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {26427#true} {26427#true} #1254#return; {26427#true} is VALID [2022-04-27 15:15:19,178 INFO L290 TraceCheckUtils]: 0: Hoare triple {26475#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {26427#true} is VALID [2022-04-27 15:15:19,178 INFO L272 TraceCheckUtils]: 1: Hoare triple {26427#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {26427#true} is VALID [2022-04-27 15:15:19,178 INFO L290 TraceCheckUtils]: 2: Hoare triple {26427#true} ~cond := #in~cond; {26427#true} is VALID [2022-04-27 15:15:19,178 INFO L290 TraceCheckUtils]: 3: Hoare triple {26427#true} assume !(0 == ~cond); {26427#true} is VALID [2022-04-27 15:15:19,178 INFO L290 TraceCheckUtils]: 4: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,178 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {26427#true} {26427#true} #1254#return; {26427#true} is VALID [2022-04-27 15:15:19,178 INFO L290 TraceCheckUtils]: 6: Hoare triple {26427#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {26427#true} is VALID [2022-04-27 15:15:19,178 INFO L290 TraceCheckUtils]: 7: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,178 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {26427#true} {26427#true} #1218#return; {26427#true} is VALID [2022-04-27 15:15:19,187 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:15:19,190 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:19,196 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:15:19,197 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:19,202 INFO L290 TraceCheckUtils]: 0: Hoare triple {26480#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {26427#true} is VALID [2022-04-27 15:15:19,202 INFO L290 TraceCheckUtils]: 1: Hoare triple {26427#true} assume !(0 == ~__BLAST_NONDET~5); {26427#true} is VALID [2022-04-27 15:15:19,203 INFO L290 TraceCheckUtils]: 2: Hoare triple {26427#true} #res := -1073741823; {26427#true} is VALID [2022-04-27 15:15:19,203 INFO L290 TraceCheckUtils]: 3: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,203 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {26427#true} {26427#true} #1176#return; {26427#true} is VALID [2022-04-27 15:15:19,203 INFO L290 TraceCheckUtils]: 0: Hoare triple {26480#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {26427#true} is VALID [2022-04-27 15:15:19,204 INFO L272 TraceCheckUtils]: 1: Hoare triple {26427#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {26480#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:19,204 INFO L290 TraceCheckUtils]: 2: Hoare triple {26480#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {26427#true} is VALID [2022-04-27 15:15:19,204 INFO L290 TraceCheckUtils]: 3: Hoare triple {26427#true} assume !(0 == ~__BLAST_NONDET~5); {26427#true} is VALID [2022-04-27 15:15:19,204 INFO L290 TraceCheckUtils]: 4: Hoare triple {26427#true} #res := -1073741823; {26427#true} is VALID [2022-04-27 15:15:19,204 INFO L290 TraceCheckUtils]: 5: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,204 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {26427#true} {26427#true} #1176#return; {26427#true} is VALID [2022-04-27 15:15:19,204 INFO L290 TraceCheckUtils]: 7: Hoare triple {26427#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {26427#true} is VALID [2022-04-27 15:15:19,204 INFO L290 TraceCheckUtils]: 8: Hoare triple {26427#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {26427#true} is VALID [2022-04-27 15:15:19,204 INFO L290 TraceCheckUtils]: 9: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,204 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {26427#true} {26427#true} #1220#return; {26427#true} is VALID [2022-04-27 15:15:19,217 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:15:19,218 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:19,222 INFO L290 TraceCheckUtils]: 0: Hoare triple {26486#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {26427#true} is VALID [2022-04-27 15:15:19,222 INFO L290 TraceCheckUtils]: 1: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,222 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {26427#true} {26427#true} #1222#return; {26427#true} is VALID [2022-04-27 15:15:19,234 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 47 [2022-04-27 15:15:19,239 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:19,296 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2022-04-27 15:15:19,298 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:19,303 INFO L290 TraceCheckUtils]: 0: Hoare triple {26494#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {26427#true} is VALID [2022-04-27 15:15:19,303 INFO L290 TraceCheckUtils]: 1: Hoare triple {26427#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {26427#true} is VALID [2022-04-27 15:15:19,303 INFO L290 TraceCheckUtils]: 2: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,304 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {26427#true} {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} #1248#return; {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} is VALID [2022-04-27 15:15:19,304 INFO L290 TraceCheckUtils]: 0: Hoare triple {26487#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~2.base, ~irpStack~2.offset;havoc ~devExt~2.base, ~devExt~2.offset;havoc ~hookKeyboard~0.base, ~hookKeyboard~0.offset;havoc ~connectData~0.base, ~connectData~0.offset;havoc ~status~2;havoc ~tmp~2;~status~2 := 0;call #t~mem51.base, #t~mem51.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~2.base, ~devExt~2.offset := #t~mem51.base, #t~mem51.offset;havoc #t~mem51.base, #t~mem51.offset;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4);call #t~mem52.base, #t~mem52.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~2.base, ~irpStack~2.offset := #t~mem52.base, #t~mem52.offset;havoc #t~mem52.base, #t~mem52.offset;call #t~mem53 := read~int(~irpStack~2.base, 12 + ~irpStack~2.offset, 4); {26427#true} is VALID [2022-04-27 15:15:19,304 INFO L290 TraceCheckUtils]: 1: Hoare triple {26427#true} assume #t~mem53 % 4294967296 == ~bitwiseOr(~bitwiseOr(720896, 512), 3) % 4294967296;havoc #t~mem53; {26427#true} is VALID [2022-04-27 15:15:19,304 INFO L290 TraceCheckUtils]: 2: Hoare triple {26427#true} call #t~mem62.base, #t~mem62.offset := read~$Pointer$(~devExt~2.base, 20 + ~devExt~2.offset, 4); {26427#true} is VALID [2022-04-27 15:15:19,304 INFO L290 TraceCheckUtils]: 3: Hoare triple {26427#true} assume 0 != (#t~mem62.base + #t~mem62.offset) % 4294967296;havoc #t~mem62.base, #t~mem62.offset;~status~2 := -1073741757; {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} is VALID [2022-04-27 15:15:19,305 INFO L290 TraceCheckUtils]: 4: Hoare triple {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} assume !(~status~2 >= 0);call write~int(~status~2, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~2; {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} is VALID [2022-04-27 15:15:19,305 INFO L272 TraceCheckUtils]: 5: Hoare triple {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {26494#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:19,305 INFO L290 TraceCheckUtils]: 6: Hoare triple {26494#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {26427#true} is VALID [2022-04-27 15:15:19,305 INFO L290 TraceCheckUtils]: 7: Hoare triple {26427#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {26427#true} is VALID [2022-04-27 15:15:19,305 INFO L290 TraceCheckUtils]: 8: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,306 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {26427#true} {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} #1248#return; {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} is VALID [2022-04-27 15:15:19,306 INFO L290 TraceCheckUtils]: 10: Hoare triple {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} #res := ~status~2; {26493#(<= (+ 1073741757 |KbFilter_InternIoCtl_#res|) 0)} is VALID [2022-04-27 15:15:19,306 INFO L290 TraceCheckUtils]: 11: Hoare triple {26493#(<= (+ 1073741757 |KbFilter_InternIoCtl_#res|) 0)} assume true; {26493#(<= (+ 1073741757 |KbFilter_InternIoCtl_#res|) 0)} is VALID [2022-04-27 15:15:19,307 INFO L284 TraceCheckUtils]: 12: Hoare quadruple {26493#(<= (+ 1073741757 |KbFilter_InternIoCtl_#res|) 0)} {26427#true} #1234#return; {26471#(not (= 259 |main_#t~ret176|))} is VALID [2022-04-27 15:15:19,308 INFO L272 TraceCheckUtils]: 0: Hoare triple {26427#true} call ULTIMATE.init(); {26473#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:15:19,308 INFO L290 TraceCheckUtils]: 1: Hoare triple {26473#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {26427#true} is VALID [2022-04-27 15:15:19,308 INFO L290 TraceCheckUtils]: 2: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,308 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {26427#true} {26427#true} #1270#return; {26427#true} is VALID [2022-04-27 15:15:19,308 INFO L272 TraceCheckUtils]: 4: Hoare triple {26427#true} call #t~ret213 := main(); {26427#true} is VALID [2022-04-27 15:15:19,308 INFO L290 TraceCheckUtils]: 5: Hoare triple {26427#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {26427#true} is VALID [2022-04-27 15:15:19,309 INFO L272 TraceCheckUtils]: 6: Hoare triple {26427#true} call _BLAST_init(); {26474#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:19,309 INFO L290 TraceCheckUtils]: 7: Hoare triple {26474#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {26427#true} is VALID [2022-04-27 15:15:19,309 INFO L290 TraceCheckUtils]: 8: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,309 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {26427#true} {26427#true} #1216#return; {26427#true} is VALID [2022-04-27 15:15:19,310 INFO L272 TraceCheckUtils]: 10: Hoare triple {26427#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {26475#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:15:19,310 INFO L290 TraceCheckUtils]: 11: Hoare triple {26475#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {26427#true} is VALID [2022-04-27 15:15:19,310 INFO L272 TraceCheckUtils]: 12: Hoare triple {26427#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {26427#true} is VALID [2022-04-27 15:15:19,310 INFO L290 TraceCheckUtils]: 13: Hoare triple {26427#true} ~cond := #in~cond; {26427#true} is VALID [2022-04-27 15:15:19,310 INFO L290 TraceCheckUtils]: 14: Hoare triple {26427#true} assume !(0 == ~cond); {26427#true} is VALID [2022-04-27 15:15:19,310 INFO L290 TraceCheckUtils]: 15: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,310 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {26427#true} {26427#true} #1254#return; {26427#true} is VALID [2022-04-27 15:15:19,310 INFO L290 TraceCheckUtils]: 17: Hoare triple {26427#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {26427#true} is VALID [2022-04-27 15:15:19,310 INFO L290 TraceCheckUtils]: 18: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,310 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {26427#true} {26427#true} #1218#return; {26427#true} is VALID [2022-04-27 15:15:19,310 INFO L290 TraceCheckUtils]: 20: Hoare triple {26427#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {26427#true} is VALID [2022-04-27 15:15:19,310 INFO L290 TraceCheckUtils]: 21: Hoare triple {26427#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {26427#true} is VALID [2022-04-27 15:15:19,310 INFO L290 TraceCheckUtils]: 22: Hoare triple {26427#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {26427#true} is VALID [2022-04-27 15:15:19,311 INFO L272 TraceCheckUtils]: 23: Hoare triple {26427#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {26480#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:19,311 INFO L290 TraceCheckUtils]: 24: Hoare triple {26480#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {26427#true} is VALID [2022-04-27 15:15:19,312 INFO L272 TraceCheckUtils]: 25: Hoare triple {26427#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {26480#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:19,312 INFO L290 TraceCheckUtils]: 26: Hoare triple {26480#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {26427#true} is VALID [2022-04-27 15:15:19,312 INFO L290 TraceCheckUtils]: 27: Hoare triple {26427#true} assume !(0 == ~__BLAST_NONDET~5); {26427#true} is VALID [2022-04-27 15:15:19,312 INFO L290 TraceCheckUtils]: 28: Hoare triple {26427#true} #res := -1073741823; {26427#true} is VALID [2022-04-27 15:15:19,312 INFO L290 TraceCheckUtils]: 29: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,312 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {26427#true} {26427#true} #1176#return; {26427#true} is VALID [2022-04-27 15:15:19,312 INFO L290 TraceCheckUtils]: 31: Hoare triple {26427#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {26427#true} is VALID [2022-04-27 15:15:19,312 INFO L290 TraceCheckUtils]: 32: Hoare triple {26427#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {26427#true} is VALID [2022-04-27 15:15:19,312 INFO L290 TraceCheckUtils]: 33: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,312 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {26427#true} {26427#true} #1220#return; {26427#true} is VALID [2022-04-27 15:15:19,312 INFO L290 TraceCheckUtils]: 35: Hoare triple {26427#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {26427#true} is VALID [2022-04-27 15:15:19,313 INFO L272 TraceCheckUtils]: 36: Hoare triple {26427#true} call stub_driver_init(); {26486#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:19,313 INFO L290 TraceCheckUtils]: 37: Hoare triple {26486#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {26427#true} is VALID [2022-04-27 15:15:19,313 INFO L290 TraceCheckUtils]: 38: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,313 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {26427#true} {26427#true} #1222#return; {26427#true} is VALID [2022-04-27 15:15:19,313 INFO L290 TraceCheckUtils]: 40: Hoare triple {26427#true} assume !!(~status~5 >= 0); {26427#true} is VALID [2022-04-27 15:15:19,313 INFO L290 TraceCheckUtils]: 41: Hoare triple {26427#true} assume !(0 == ~__BLAST_NONDET~0); {26427#true} is VALID [2022-04-27 15:15:19,313 INFO L290 TraceCheckUtils]: 42: Hoare triple {26427#true} assume !(1 == ~__BLAST_NONDET~0); {26427#true} is VALID [2022-04-27 15:15:19,313 INFO L290 TraceCheckUtils]: 43: Hoare triple {26427#true} assume !(2 == ~__BLAST_NONDET~0); {26427#true} is VALID [2022-04-27 15:15:19,313 INFO L290 TraceCheckUtils]: 44: Hoare triple {26427#true} assume !(3 == ~__BLAST_NONDET~0); {26427#true} is VALID [2022-04-27 15:15:19,314 INFO L290 TraceCheckUtils]: 45: Hoare triple {26427#true} assume !(4 == ~__BLAST_NONDET~0); {26427#true} is VALID [2022-04-27 15:15:19,314 INFO L290 TraceCheckUtils]: 46: Hoare triple {26427#true} assume 8 == ~__BLAST_NONDET~0; {26427#true} is VALID [2022-04-27 15:15:19,314 INFO L272 TraceCheckUtils]: 47: Hoare triple {26427#true} call #t~ret176 := KbFilter_InternIoCtl(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {26487#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:19,314 INFO L290 TraceCheckUtils]: 48: Hoare triple {26487#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~2.base, ~irpStack~2.offset;havoc ~devExt~2.base, ~devExt~2.offset;havoc ~hookKeyboard~0.base, ~hookKeyboard~0.offset;havoc ~connectData~0.base, ~connectData~0.offset;havoc ~status~2;havoc ~tmp~2;~status~2 := 0;call #t~mem51.base, #t~mem51.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~2.base, ~devExt~2.offset := #t~mem51.base, #t~mem51.offset;havoc #t~mem51.base, #t~mem51.offset;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4);call #t~mem52.base, #t~mem52.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~2.base, ~irpStack~2.offset := #t~mem52.base, #t~mem52.offset;havoc #t~mem52.base, #t~mem52.offset;call #t~mem53 := read~int(~irpStack~2.base, 12 + ~irpStack~2.offset, 4); {26427#true} is VALID [2022-04-27 15:15:19,314 INFO L290 TraceCheckUtils]: 49: Hoare triple {26427#true} assume #t~mem53 % 4294967296 == ~bitwiseOr(~bitwiseOr(720896, 512), 3) % 4294967296;havoc #t~mem53; {26427#true} is VALID [2022-04-27 15:15:19,314 INFO L290 TraceCheckUtils]: 50: Hoare triple {26427#true} call #t~mem62.base, #t~mem62.offset := read~$Pointer$(~devExt~2.base, 20 + ~devExt~2.offset, 4); {26427#true} is VALID [2022-04-27 15:15:19,315 INFO L290 TraceCheckUtils]: 51: Hoare triple {26427#true} assume 0 != (#t~mem62.base + #t~mem62.offset) % 4294967296;havoc #t~mem62.base, #t~mem62.offset;~status~2 := -1073741757; {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} is VALID [2022-04-27 15:15:19,315 INFO L290 TraceCheckUtils]: 52: Hoare triple {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} assume !(~status~2 >= 0);call write~int(~status~2, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~2; {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} is VALID [2022-04-27 15:15:19,315 INFO L272 TraceCheckUtils]: 53: Hoare triple {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {26494#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:19,316 INFO L290 TraceCheckUtils]: 54: Hoare triple {26494#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {26427#true} is VALID [2022-04-27 15:15:19,316 INFO L290 TraceCheckUtils]: 55: Hoare triple {26427#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {26427#true} is VALID [2022-04-27 15:15:19,316 INFO L290 TraceCheckUtils]: 56: Hoare triple {26427#true} assume true; {26427#true} is VALID [2022-04-27 15:15:19,316 INFO L284 TraceCheckUtils]: 57: Hoare quadruple {26427#true} {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} #1248#return; {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} is VALID [2022-04-27 15:15:19,316 INFO L290 TraceCheckUtils]: 58: Hoare triple {26488#(<= (+ 1073741757 KbFilter_InternIoCtl_~status~2) 0)} #res := ~status~2; {26493#(<= (+ 1073741757 |KbFilter_InternIoCtl_#res|) 0)} is VALID [2022-04-27 15:15:19,317 INFO L290 TraceCheckUtils]: 59: Hoare triple {26493#(<= (+ 1073741757 |KbFilter_InternIoCtl_#res|) 0)} assume true; {26493#(<= (+ 1073741757 |KbFilter_InternIoCtl_#res|) 0)} is VALID [2022-04-27 15:15:19,317 INFO L284 TraceCheckUtils]: 60: Hoare quadruple {26493#(<= (+ 1073741757 |KbFilter_InternIoCtl_#res|) 0)} {26427#true} #1234#return; {26471#(not (= 259 |main_#t~ret176|))} is VALID [2022-04-27 15:15:19,317 INFO L290 TraceCheckUtils]: 61: Hoare triple {26471#(not (= 259 |main_#t~ret176|))} assume -2147483648 <= #t~ret176 && #t~ret176 <= 2147483647;~status~5 := #t~ret176;havoc #t~ret176; {26472#(not (= main_~status~5 259))} is VALID [2022-04-27 15:15:19,318 INFO L290 TraceCheckUtils]: 62: Hoare triple {26472#(not (= main_~status~5 259))} assume 0 != ~we_should_unload~0; {26472#(not (= main_~status~5 259))} is VALID [2022-04-27 15:15:19,318 INFO L290 TraceCheckUtils]: 63: Hoare triple {26472#(not (= main_~status~5 259))} assume !(1 == ~pended~0); {26472#(not (= main_~status~5 259))} is VALID [2022-04-27 15:15:19,318 INFO L290 TraceCheckUtils]: 64: Hoare triple {26472#(not (= main_~status~5 259))} assume !(1 == ~pended~0); {26472#(not (= main_~status~5 259))} is VALID [2022-04-27 15:15:19,330 INFO L290 TraceCheckUtils]: 65: Hoare triple {26472#(not (= main_~status~5 259))} assume !(~s~0 == ~UNLOADED~0); {26472#(not (= main_~status~5 259))} is VALID [2022-04-27 15:15:19,340 INFO L290 TraceCheckUtils]: 66: Hoare triple {26472#(not (= main_~status~5 259))} assume !(-1 == ~status~5); {26472#(not (= main_~status~5 259))} is VALID [2022-04-27 15:15:19,341 INFO L290 TraceCheckUtils]: 67: Hoare triple {26472#(not (= main_~status~5 259))} assume ~s~0 != ~SKIP2~0; {26472#(not (= main_~status~5 259))} is VALID [2022-04-27 15:15:19,341 INFO L290 TraceCheckUtils]: 68: Hoare triple {26472#(not (= main_~status~5 259))} assume ~s~0 != ~IPC~0; {26472#(not (= main_~status~5 259))} is VALID [2022-04-27 15:15:19,341 INFO L290 TraceCheckUtils]: 69: Hoare triple {26472#(not (= main_~status~5 259))} assume !(~s~0 != ~DC~0); {26472#(not (= main_~status~5 259))} is VALID [2022-04-27 15:15:19,341 INFO L290 TraceCheckUtils]: 70: Hoare triple {26472#(not (= main_~status~5 259))} assume !(1 == ~pended~0); {26472#(not (= main_~status~5 259))} is VALID [2022-04-27 15:15:19,342 INFO L290 TraceCheckUtils]: 71: Hoare triple {26472#(not (= main_~status~5 259))} assume ~s~0 == ~DC~0; {26472#(not (= main_~status~5 259))} is VALID [2022-04-27 15:15:19,342 INFO L290 TraceCheckUtils]: 72: Hoare triple {26472#(not (= main_~status~5 259))} assume 259 == ~status~5; {26428#false} is VALID [2022-04-27 15:15:19,342 INFO L272 TraceCheckUtils]: 73: Hoare triple {26428#false} call errorFn(); {26428#false} is VALID [2022-04-27 15:15:19,342 INFO L290 TraceCheckUtils]: 74: Hoare triple {26428#false} assume !false; {26428#false} is VALID [2022-04-27 15:15:19,342 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:15:19,342 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:15:19,342 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1337329635] [2022-04-27 15:15:19,343 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1337329635] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:15:19,343 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:15:19,343 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [13] imperfect sequences [] total 13 [2022-04-27 15:15:19,343 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [152670901] [2022-04-27 15:15:19,343 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:15:19,343 INFO L78 Accepts]: Start accepts. Automaton has has 13 states, 13 states have (on average 4.230769230769231) internal successors, (55), 5 states have internal predecessors, (55), 3 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) Word has length 75 [2022-04-27 15:15:19,343 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:15:19,343 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 13 states, 13 states have (on average 4.230769230769231) internal successors, (55), 5 states have internal predecessors, (55), 3 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:19,404 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 75 edges. 75 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:15:19,404 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 13 states [2022-04-27 15:15:19,404 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:15:19,404 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 13 interpolants. [2022-04-27 15:15:19,404 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=32, Invalid=124, Unknown=0, NotChecked=0, Total=156 [2022-04-27 15:15:19,405 INFO L87 Difference]: Start difference. First operand 345 states and 447 transitions. Second operand has 13 states, 13 states have (on average 4.230769230769231) internal successors, (55), 5 states have internal predecessors, (55), 3 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:21,532 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:15:29,261 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:29,261 INFO L93 Difference]: Finished difference Result 417 states and 534 transitions. [2022-04-27 15:15:29,261 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 16 states. [2022-04-27 15:15:29,261 INFO L78 Accepts]: Start accepts. Automaton has has 13 states, 13 states have (on average 4.230769230769231) internal successors, (55), 5 states have internal predecessors, (55), 3 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) Word has length 75 [2022-04-27 15:15:29,261 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:15:29,262 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 13 states, 13 states have (on average 4.230769230769231) internal successors, (55), 5 states have internal predecessors, (55), 3 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:29,264 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 16 states to 16 states and 480 transitions. [2022-04-27 15:15:29,274 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 13 states, 13 states have (on average 4.230769230769231) internal successors, (55), 5 states have internal predecessors, (55), 3 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:29,278 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 16 states to 16 states and 480 transitions. [2022-04-27 15:15:29,278 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 16 states and 480 transitions. [2022-04-27 15:15:29,799 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 480 edges. 480 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:15:29,806 INFO L225 Difference]: With dead ends: 417 [2022-04-27 15:15:29,806 INFO L226 Difference]: Without dead ends: 359 [2022-04-27 15:15:29,806 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 32 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 36 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=74, Invalid=268, Unknown=0, NotChecked=0, Total=342 [2022-04-27 15:15:29,807 INFO L413 NwaCegarLoop]: 278 mSDtfsCounter, 605 mSDsluCounter, 436 mSDsCounter, 0 mSdLazyCounter, 1698 mSolverCounterSat, 237 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 608 SdHoareTripleChecker+Valid, 714 SdHoareTripleChecker+Invalid, 1936 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 237 IncrementalHoareTripleChecker+Valid, 1698 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.2s IncrementalHoareTripleChecker+Time [2022-04-27 15:15:29,807 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [608 Valid, 714 Invalid, 1936 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [237 Valid, 1698 Invalid, 1 Unknown, 0 Unchecked, 5.2s Time] [2022-04-27 15:15:29,810 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 359 states. [2022-04-27 15:15:29,982 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 359 to 344. [2022-04-27 15:15:29,982 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:15:29,983 INFO L82 GeneralOperation]: Start isEquivalent. First operand 359 states. Second operand has 344 states, 273 states have (on average 1.336996336996337) internal successors, (365), 277 states have internal predecessors, (365), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (39), 36 states have call predecessors, (39), 33 states have call successors, (39) [2022-04-27 15:15:29,983 INFO L74 IsIncluded]: Start isIncluded. First operand 359 states. Second operand has 344 states, 273 states have (on average 1.336996336996337) internal successors, (365), 277 states have internal predecessors, (365), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (39), 36 states have call predecessors, (39), 33 states have call successors, (39) [2022-04-27 15:15:29,983 INFO L87 Difference]: Start difference. First operand 359 states. Second operand has 344 states, 273 states have (on average 1.336996336996337) internal successors, (365), 277 states have internal predecessors, (365), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (39), 36 states have call predecessors, (39), 33 states have call successors, (39) [2022-04-27 15:15:29,989 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:29,989 INFO L93 Difference]: Finished difference Result 359 states and 463 transitions. [2022-04-27 15:15:29,989 INFO L276 IsEmpty]: Start isEmpty. Operand 359 states and 463 transitions. [2022-04-27 15:15:29,990 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:15:29,990 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:15:29,990 INFO L74 IsIncluded]: Start isIncluded. First operand has 344 states, 273 states have (on average 1.336996336996337) internal successors, (365), 277 states have internal predecessors, (365), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (39), 36 states have call predecessors, (39), 33 states have call successors, (39) Second operand 359 states. [2022-04-27 15:15:29,991 INFO L87 Difference]: Start difference. First operand has 344 states, 273 states have (on average 1.336996336996337) internal successors, (365), 277 states have internal predecessors, (365), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (39), 36 states have call predecessors, (39), 33 states have call successors, (39) Second operand 359 states. [2022-04-27 15:15:29,996 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:29,996 INFO L93 Difference]: Finished difference Result 359 states and 463 transitions. [2022-04-27 15:15:29,996 INFO L276 IsEmpty]: Start isEmpty. Operand 359 states and 463 transitions. [2022-04-27 15:15:29,997 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:15:29,997 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:15:29,997 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:15:29,997 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:15:29,997 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 344 states, 273 states have (on average 1.336996336996337) internal successors, (365), 277 states have internal predecessors, (365), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (39), 36 states have call predecessors, (39), 33 states have call successors, (39) [2022-04-27 15:15:30,003 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 344 states to 344 states and 442 transitions. [2022-04-27 15:15:30,003 INFO L78 Accepts]: Start accepts. Automaton has 344 states and 442 transitions. Word has length 75 [2022-04-27 15:15:30,003 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:15:30,003 INFO L495 AbstractCegarLoop]: Abstraction has 344 states and 442 transitions. [2022-04-27 15:15:30,004 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 13 states, 13 states have (on average 4.230769230769231) internal successors, (55), 5 states have internal predecessors, (55), 3 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:30,004 INFO L276 IsEmpty]: Start isEmpty. Operand 344 states and 442 transitions. [2022-04-27 15:15:30,005 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 77 [2022-04-27 15:15:30,005 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:15:30,005 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:15:30,005 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13 [2022-04-27 15:15:30,005 INFO L420 AbstractCegarLoop]: === Iteration 15 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:15:30,006 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:15:30,006 INFO L85 PathProgramCache]: Analyzing trace with hash 476602328, now seen corresponding path program 1 times [2022-04-27 15:15:30,006 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:15:30,006 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [723847157] [2022-04-27 15:15:30,006 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:15:30,006 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:15:30,059 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:30,149 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:15:30,151 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:30,157 INFO L290 TraceCheckUtils]: 0: Hoare triple {28304#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {28255#true} is VALID [2022-04-27 15:15:30,157 INFO L290 TraceCheckUtils]: 1: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,157 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {28255#true} {28255#true} #1270#return; {28255#true} is VALID [2022-04-27 15:15:30,184 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:15:30,186 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:30,207 INFO L290 TraceCheckUtils]: 0: Hoare triple {28305#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,208 INFO L290 TraceCheckUtils]: 1: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} assume true; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,208 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {28263#(not (= ~SKIP1~0 ~NP~0))} {28255#true} #1216#return; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,215 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:15:30,226 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:30,234 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:15:30,235 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:30,241 INFO L290 TraceCheckUtils]: 0: Hoare triple {28255#true} ~cond := #in~cond; {28255#true} is VALID [2022-04-27 15:15:30,241 INFO L290 TraceCheckUtils]: 1: Hoare triple {28255#true} assume !(0 == ~cond); {28255#true} is VALID [2022-04-27 15:15:30,241 INFO L290 TraceCheckUtils]: 2: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,241 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {28255#true} {28255#true} #1254#return; {28255#true} is VALID [2022-04-27 15:15:30,242 INFO L290 TraceCheckUtils]: 0: Hoare triple {28306#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {28255#true} is VALID [2022-04-27 15:15:30,242 INFO L272 TraceCheckUtils]: 1: Hoare triple {28255#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {28255#true} is VALID [2022-04-27 15:15:30,242 INFO L290 TraceCheckUtils]: 2: Hoare triple {28255#true} ~cond := #in~cond; {28255#true} is VALID [2022-04-27 15:15:30,242 INFO L290 TraceCheckUtils]: 3: Hoare triple {28255#true} assume !(0 == ~cond); {28255#true} is VALID [2022-04-27 15:15:30,242 INFO L290 TraceCheckUtils]: 4: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,242 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {28255#true} {28255#true} #1254#return; {28255#true} is VALID [2022-04-27 15:15:30,242 INFO L290 TraceCheckUtils]: 6: Hoare triple {28255#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {28255#true} is VALID [2022-04-27 15:15:30,242 INFO L290 TraceCheckUtils]: 7: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,243 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {28255#true} {28263#(not (= ~SKIP1~0 ~NP~0))} #1218#return; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,252 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:15:30,257 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:30,263 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:15:30,264 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:30,269 INFO L290 TraceCheckUtils]: 0: Hoare triple {28311#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {28255#true} is VALID [2022-04-27 15:15:30,269 INFO L290 TraceCheckUtils]: 1: Hoare triple {28255#true} assume !(0 == ~__BLAST_NONDET~5); {28255#true} is VALID [2022-04-27 15:15:30,269 INFO L290 TraceCheckUtils]: 2: Hoare triple {28255#true} #res := -1073741823; {28255#true} is VALID [2022-04-27 15:15:30,270 INFO L290 TraceCheckUtils]: 3: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,270 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {28255#true} {28255#true} #1176#return; {28255#true} is VALID [2022-04-27 15:15:30,270 INFO L290 TraceCheckUtils]: 0: Hoare triple {28311#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {28255#true} is VALID [2022-04-27 15:15:30,271 INFO L272 TraceCheckUtils]: 1: Hoare triple {28255#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {28311#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:30,271 INFO L290 TraceCheckUtils]: 2: Hoare triple {28311#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {28255#true} is VALID [2022-04-27 15:15:30,271 INFO L290 TraceCheckUtils]: 3: Hoare triple {28255#true} assume !(0 == ~__BLAST_NONDET~5); {28255#true} is VALID [2022-04-27 15:15:30,271 INFO L290 TraceCheckUtils]: 4: Hoare triple {28255#true} #res := -1073741823; {28255#true} is VALID [2022-04-27 15:15:30,271 INFO L290 TraceCheckUtils]: 5: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,271 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {28255#true} {28255#true} #1176#return; {28255#true} is VALID [2022-04-27 15:15:30,271 INFO L290 TraceCheckUtils]: 7: Hoare triple {28255#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {28255#true} is VALID [2022-04-27 15:15:30,271 INFO L290 TraceCheckUtils]: 8: Hoare triple {28255#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {28255#true} is VALID [2022-04-27 15:15:30,271 INFO L290 TraceCheckUtils]: 9: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,272 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {28255#true} {28263#(not (= ~SKIP1~0 ~NP~0))} #1220#return; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,285 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:15:30,288 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:30,294 INFO L290 TraceCheckUtils]: 0: Hoare triple {28317#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {28255#true} is VALID [2022-04-27 15:15:30,294 INFO L290 TraceCheckUtils]: 1: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,294 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {28255#true} {28263#(not (= ~SKIP1~0 ~NP~0))} #1222#return; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,308 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 46 [2022-04-27 15:15:30,316 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:30,352 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2022-04-27 15:15:30,355 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:30,380 INFO L290 TraceCheckUtils]: 0: Hoare triple {28329#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {28330#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,381 INFO L290 TraceCheckUtils]: 1: Hoare triple {28330#(= ~s~0 |old(~s~0)|)} assume !(0 != ~compRegistered~0); {28330#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,381 INFO L290 TraceCheckUtils]: 2: Hoare triple {28330#(= ~s~0 |old(~s~0)|)} assume 0 == ~__BLAST_NONDET~16; {28330#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,381 INFO L290 TraceCheckUtils]: 3: Hoare triple {28330#(= ~s~0 |old(~s~0)|)} ~returnVal~0 := 0; {28330#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,382 INFO L290 TraceCheckUtils]: 4: Hoare triple {28330#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal~0; {28331#(= ~NP~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,382 INFO L290 TraceCheckUtils]: 5: Hoare triple {28331#(= ~NP~0 |old(~s~0)|)} #res := ~returnVal~0; {28331#(= ~NP~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,382 INFO L290 TraceCheckUtils]: 6: Hoare triple {28331#(= ~NP~0 |old(~s~0)|)} assume true; {28331#(= ~NP~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,383 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {28331#(= ~NP~0 |old(~s~0)|)} {28319#(= ~SKIP1~0 ~s~0)} #1268#return; {28328#(= ~SKIP1~0 ~NP~0)} is VALID [2022-04-27 15:15:30,384 INFO L290 TraceCheckUtils]: 0: Hoare triple {28318#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~4.base, ~irpStack~4.offset;havoc ~devExt~4.base, ~devExt~4.offset;call ~#powerState~0.base, ~#powerState~0.offset := #Ultimate.allocOnStack(4);havoc ~powerType~0;havoc ~tmp~3;call #t~mem123.base, #t~mem123.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~4.base, ~devExt~4.offset := #t~mem123.base, #t~mem123.offset;havoc #t~mem123.base, #t~mem123.offset;call #t~mem124.base, #t~mem124.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~4.base, ~irpStack~4.offset := #t~mem124.base, #t~mem124.offset;havoc #t~mem124.base, #t~mem124.offset;call #t~mem125 := read~int(~irpStack~4.base, 8 + ~irpStack~4.offset, 4);~powerType~0 := #t~mem125;havoc #t~mem125;call #t~mem126 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call #t~mem127 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call write~int(#t~mem126, ~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem127, ~#powerState~0.base, ~#powerState~0.offset, 4);havoc #t~mem126;havoc #t~mem127;call #t~mem128 := read~int(~irpStack~4.base, 1 + ~irpStack~4.offset, 1); {28255#true} is VALID [2022-04-27 15:15:30,384 INFO L290 TraceCheckUtils]: 1: Hoare triple {28255#true} assume 2 == #t~mem128 % 256;havoc #t~mem128; {28255#true} is VALID [2022-04-27 15:15:30,384 INFO L290 TraceCheckUtils]: 2: Hoare triple {28255#true} assume 1 == ~powerType~0;call #t~mem132 := read~int(~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem132, ~devExt~4.base, 48 + ~devExt~4.offset, 4);havoc #t~mem132; {28255#true} is VALID [2022-04-27 15:15:30,384 INFO L290 TraceCheckUtils]: 3: Hoare triple {28255#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {28319#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:15:30,385 INFO L290 TraceCheckUtils]: 4: Hoare triple {28319#(= ~SKIP1~0 ~s~0)} call #t~mem133 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem133) % 256 <= 127 then (1 + #t~mem133) % 256 else (1 + #t~mem133) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem133;call #t~mem134.base, #t~mem134.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem134.base, 36 + #t~mem134.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem134.base, #t~mem134.offset;call #t~mem135.base, #t~mem135.offset := read~$Pointer$(~devExt~4.base, 8 + ~devExt~4.offset, 4); {28319#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:15:30,386 INFO L272 TraceCheckUtils]: 5: Hoare triple {28319#(= ~SKIP1~0 ~s~0)} call #t~ret136 := PoCallDriver(#t~mem135.base, #t~mem135.offset, ~Irp.base, ~Irp.offset); {28329#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:30,386 INFO L290 TraceCheckUtils]: 6: Hoare triple {28329#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {28330#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,386 INFO L290 TraceCheckUtils]: 7: Hoare triple {28330#(= ~s~0 |old(~s~0)|)} assume !(0 != ~compRegistered~0); {28330#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,387 INFO L290 TraceCheckUtils]: 8: Hoare triple {28330#(= ~s~0 |old(~s~0)|)} assume 0 == ~__BLAST_NONDET~16; {28330#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,387 INFO L290 TraceCheckUtils]: 9: Hoare triple {28330#(= ~s~0 |old(~s~0)|)} ~returnVal~0 := 0; {28330#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,387 INFO L290 TraceCheckUtils]: 10: Hoare triple {28330#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal~0; {28331#(= ~NP~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,387 INFO L290 TraceCheckUtils]: 11: Hoare triple {28331#(= ~NP~0 |old(~s~0)|)} #res := ~returnVal~0; {28331#(= ~NP~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,388 INFO L290 TraceCheckUtils]: 12: Hoare triple {28331#(= ~NP~0 |old(~s~0)|)} assume true; {28331#(= ~NP~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,389 INFO L284 TraceCheckUtils]: 13: Hoare quadruple {28331#(= ~NP~0 |old(~s~0)|)} {28319#(= ~SKIP1~0 ~s~0)} #1268#return; {28328#(= ~SKIP1~0 ~NP~0)} is VALID [2022-04-27 15:15:30,389 INFO L290 TraceCheckUtils]: 14: Hoare triple {28328#(= ~SKIP1~0 ~NP~0)} assume -2147483648 <= #t~ret136 && #t~ret136 <= 2147483647;~tmp~3 := #t~ret136;havoc #t~mem135.base, #t~mem135.offset;havoc #t~ret136;#res := ~tmp~3;call ULTIMATE.dealloc(~#powerState~0.base, ~#powerState~0.offset);havoc ~#powerState~0.base, ~#powerState~0.offset; {28328#(= ~SKIP1~0 ~NP~0)} is VALID [2022-04-27 15:15:30,389 INFO L290 TraceCheckUtils]: 15: Hoare triple {28328#(= ~SKIP1~0 ~NP~0)} assume true; {28328#(= ~SKIP1~0 ~NP~0)} is VALID [2022-04-27 15:15:30,390 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {28328#(= ~SKIP1~0 ~NP~0)} {28263#(not (= ~SKIP1~0 ~NP~0))} #1232#return; {28256#false} is VALID [2022-04-27 15:15:30,391 INFO L272 TraceCheckUtils]: 0: Hoare triple {28255#true} call ULTIMATE.init(); {28304#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:15:30,391 INFO L290 TraceCheckUtils]: 1: Hoare triple {28304#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {28255#true} is VALID [2022-04-27 15:15:30,391 INFO L290 TraceCheckUtils]: 2: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,391 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {28255#true} {28255#true} #1270#return; {28255#true} is VALID [2022-04-27 15:15:30,391 INFO L272 TraceCheckUtils]: 4: Hoare triple {28255#true} call #t~ret213 := main(); {28255#true} is VALID [2022-04-27 15:15:30,391 INFO L290 TraceCheckUtils]: 5: Hoare triple {28255#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {28255#true} is VALID [2022-04-27 15:15:30,392 INFO L272 TraceCheckUtils]: 6: Hoare triple {28255#true} call _BLAST_init(); {28305#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:30,393 INFO L290 TraceCheckUtils]: 7: Hoare triple {28305#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,393 INFO L290 TraceCheckUtils]: 8: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} assume true; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,394 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {28263#(not (= ~SKIP1~0 ~NP~0))} {28255#true} #1216#return; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,395 INFO L272 TraceCheckUtils]: 10: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {28306#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:15:30,395 INFO L290 TraceCheckUtils]: 11: Hoare triple {28306#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {28255#true} is VALID [2022-04-27 15:15:30,395 INFO L272 TraceCheckUtils]: 12: Hoare triple {28255#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {28255#true} is VALID [2022-04-27 15:15:30,395 INFO L290 TraceCheckUtils]: 13: Hoare triple {28255#true} ~cond := #in~cond; {28255#true} is VALID [2022-04-27 15:15:30,395 INFO L290 TraceCheckUtils]: 14: Hoare triple {28255#true} assume !(0 == ~cond); {28255#true} is VALID [2022-04-27 15:15:30,395 INFO L290 TraceCheckUtils]: 15: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,396 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {28255#true} {28255#true} #1254#return; {28255#true} is VALID [2022-04-27 15:15:30,396 INFO L290 TraceCheckUtils]: 17: Hoare triple {28255#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {28255#true} is VALID [2022-04-27 15:15:30,396 INFO L290 TraceCheckUtils]: 18: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,396 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {28255#true} {28263#(not (= ~SKIP1~0 ~NP~0))} #1218#return; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,397 INFO L290 TraceCheckUtils]: 20: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,397 INFO L290 TraceCheckUtils]: 21: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,397 INFO L290 TraceCheckUtils]: 22: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,398 INFO L272 TraceCheckUtils]: 23: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {28311#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:30,398 INFO L290 TraceCheckUtils]: 24: Hoare triple {28311#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {28255#true} is VALID [2022-04-27 15:15:30,399 INFO L272 TraceCheckUtils]: 25: Hoare triple {28255#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {28311#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:30,399 INFO L290 TraceCheckUtils]: 26: Hoare triple {28311#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {28255#true} is VALID [2022-04-27 15:15:30,399 INFO L290 TraceCheckUtils]: 27: Hoare triple {28255#true} assume !(0 == ~__BLAST_NONDET~5); {28255#true} is VALID [2022-04-27 15:15:30,399 INFO L290 TraceCheckUtils]: 28: Hoare triple {28255#true} #res := -1073741823; {28255#true} is VALID [2022-04-27 15:15:30,399 INFO L290 TraceCheckUtils]: 29: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,399 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {28255#true} {28255#true} #1176#return; {28255#true} is VALID [2022-04-27 15:15:30,400 INFO L290 TraceCheckUtils]: 31: Hoare triple {28255#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {28255#true} is VALID [2022-04-27 15:15:30,400 INFO L290 TraceCheckUtils]: 32: Hoare triple {28255#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {28255#true} is VALID [2022-04-27 15:15:30,400 INFO L290 TraceCheckUtils]: 33: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,400 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {28255#true} {28263#(not (= ~SKIP1~0 ~NP~0))} #1220#return; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,401 INFO L290 TraceCheckUtils]: 35: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,401 INFO L272 TraceCheckUtils]: 36: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} call stub_driver_init(); {28317#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:30,401 INFO L290 TraceCheckUtils]: 37: Hoare triple {28317#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {28255#true} is VALID [2022-04-27 15:15:30,401 INFO L290 TraceCheckUtils]: 38: Hoare triple {28255#true} assume true; {28255#true} is VALID [2022-04-27 15:15:30,402 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {28255#true} {28263#(not (= ~SKIP1~0 ~NP~0))} #1222#return; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,402 INFO L290 TraceCheckUtils]: 40: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} assume !!(~status~5 >= 0); {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,402 INFO L290 TraceCheckUtils]: 41: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} assume !(0 == ~__BLAST_NONDET~0); {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,402 INFO L290 TraceCheckUtils]: 42: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} assume !(1 == ~__BLAST_NONDET~0); {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,403 INFO L290 TraceCheckUtils]: 43: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} assume !(2 == ~__BLAST_NONDET~0); {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,403 INFO L290 TraceCheckUtils]: 44: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} assume !(3 == ~__BLAST_NONDET~0); {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,403 INFO L290 TraceCheckUtils]: 45: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} assume 4 == ~__BLAST_NONDET~0; {28263#(not (= ~SKIP1~0 ~NP~0))} is VALID [2022-04-27 15:15:30,404 INFO L272 TraceCheckUtils]: 46: Hoare triple {28263#(not (= ~SKIP1~0 ~NP~0))} call #t~ret175 := KbFilter_Power(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {28318#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:30,404 INFO L290 TraceCheckUtils]: 47: Hoare triple {28318#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~4.base, ~irpStack~4.offset;havoc ~devExt~4.base, ~devExt~4.offset;call ~#powerState~0.base, ~#powerState~0.offset := #Ultimate.allocOnStack(4);havoc ~powerType~0;havoc ~tmp~3;call #t~mem123.base, #t~mem123.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~4.base, ~devExt~4.offset := #t~mem123.base, #t~mem123.offset;havoc #t~mem123.base, #t~mem123.offset;call #t~mem124.base, #t~mem124.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~4.base, ~irpStack~4.offset := #t~mem124.base, #t~mem124.offset;havoc #t~mem124.base, #t~mem124.offset;call #t~mem125 := read~int(~irpStack~4.base, 8 + ~irpStack~4.offset, 4);~powerType~0 := #t~mem125;havoc #t~mem125;call #t~mem126 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call #t~mem127 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call write~int(#t~mem126, ~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem127, ~#powerState~0.base, ~#powerState~0.offset, 4);havoc #t~mem126;havoc #t~mem127;call #t~mem128 := read~int(~irpStack~4.base, 1 + ~irpStack~4.offset, 1); {28255#true} is VALID [2022-04-27 15:15:30,404 INFO L290 TraceCheckUtils]: 48: Hoare triple {28255#true} assume 2 == #t~mem128 % 256;havoc #t~mem128; {28255#true} is VALID [2022-04-27 15:15:30,404 INFO L290 TraceCheckUtils]: 49: Hoare triple {28255#true} assume 1 == ~powerType~0;call #t~mem132 := read~int(~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem132, ~devExt~4.base, 48 + ~devExt~4.offset, 4);havoc #t~mem132; {28255#true} is VALID [2022-04-27 15:15:30,405 INFO L290 TraceCheckUtils]: 50: Hoare triple {28255#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {28319#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:15:30,405 INFO L290 TraceCheckUtils]: 51: Hoare triple {28319#(= ~SKIP1~0 ~s~0)} call #t~mem133 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem133) % 256 <= 127 then (1 + #t~mem133) % 256 else (1 + #t~mem133) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem133;call #t~mem134.base, #t~mem134.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem134.base, 36 + #t~mem134.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem134.base, #t~mem134.offset;call #t~mem135.base, #t~mem135.offset := read~$Pointer$(~devExt~4.base, 8 + ~devExt~4.offset, 4); {28319#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:15:30,406 INFO L272 TraceCheckUtils]: 52: Hoare triple {28319#(= ~SKIP1~0 ~s~0)} call #t~ret136 := PoCallDriver(#t~mem135.base, #t~mem135.offset, ~Irp.base, ~Irp.offset); {28329#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:30,406 INFO L290 TraceCheckUtils]: 53: Hoare triple {28329#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {28330#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,407 INFO L290 TraceCheckUtils]: 54: Hoare triple {28330#(= ~s~0 |old(~s~0)|)} assume !(0 != ~compRegistered~0); {28330#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,407 INFO L290 TraceCheckUtils]: 55: Hoare triple {28330#(= ~s~0 |old(~s~0)|)} assume 0 == ~__BLAST_NONDET~16; {28330#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,407 INFO L290 TraceCheckUtils]: 56: Hoare triple {28330#(= ~s~0 |old(~s~0)|)} ~returnVal~0 := 0; {28330#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,407 INFO L290 TraceCheckUtils]: 57: Hoare triple {28330#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal~0; {28331#(= ~NP~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,408 INFO L290 TraceCheckUtils]: 58: Hoare triple {28331#(= ~NP~0 |old(~s~0)|)} #res := ~returnVal~0; {28331#(= ~NP~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,408 INFO L290 TraceCheckUtils]: 59: Hoare triple {28331#(= ~NP~0 |old(~s~0)|)} assume true; {28331#(= ~NP~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:30,409 INFO L284 TraceCheckUtils]: 60: Hoare quadruple {28331#(= ~NP~0 |old(~s~0)|)} {28319#(= ~SKIP1~0 ~s~0)} #1268#return; {28328#(= ~SKIP1~0 ~NP~0)} is VALID [2022-04-27 15:15:30,409 INFO L290 TraceCheckUtils]: 61: Hoare triple {28328#(= ~SKIP1~0 ~NP~0)} assume -2147483648 <= #t~ret136 && #t~ret136 <= 2147483647;~tmp~3 := #t~ret136;havoc #t~mem135.base, #t~mem135.offset;havoc #t~ret136;#res := ~tmp~3;call ULTIMATE.dealloc(~#powerState~0.base, ~#powerState~0.offset);havoc ~#powerState~0.base, ~#powerState~0.offset; {28328#(= ~SKIP1~0 ~NP~0)} is VALID [2022-04-27 15:15:30,409 INFO L290 TraceCheckUtils]: 62: Hoare triple {28328#(= ~SKIP1~0 ~NP~0)} assume true; {28328#(= ~SKIP1~0 ~NP~0)} is VALID [2022-04-27 15:15:30,410 INFO L284 TraceCheckUtils]: 63: Hoare quadruple {28328#(= ~SKIP1~0 ~NP~0)} {28263#(not (= ~SKIP1~0 ~NP~0))} #1232#return; {28256#false} is VALID [2022-04-27 15:15:30,410 INFO L290 TraceCheckUtils]: 64: Hoare triple {28256#false} assume -2147483648 <= #t~ret175 && #t~ret175 <= 2147483647;~status~5 := #t~ret175;havoc #t~ret175; {28256#false} is VALID [2022-04-27 15:15:30,410 INFO L290 TraceCheckUtils]: 65: Hoare triple {28256#false} assume 0 != ~we_should_unload~0; {28256#false} is VALID [2022-04-27 15:15:30,410 INFO L290 TraceCheckUtils]: 66: Hoare triple {28256#false} assume !(1 == ~pended~0); {28256#false} is VALID [2022-04-27 15:15:30,410 INFO L290 TraceCheckUtils]: 67: Hoare triple {28256#false} assume !(1 == ~pended~0); {28256#false} is VALID [2022-04-27 15:15:30,410 INFO L290 TraceCheckUtils]: 68: Hoare triple {28256#false} assume !(~s~0 == ~UNLOADED~0); {28256#false} is VALID [2022-04-27 15:15:30,410 INFO L290 TraceCheckUtils]: 69: Hoare triple {28256#false} assume !(-1 == ~status~5); {28256#false} is VALID [2022-04-27 15:15:30,410 INFO L290 TraceCheckUtils]: 70: Hoare triple {28256#false} assume !(~s~0 != ~SKIP2~0); {28256#false} is VALID [2022-04-27 15:15:30,410 INFO L290 TraceCheckUtils]: 71: Hoare triple {28256#false} assume !(1 == ~pended~0); {28256#false} is VALID [2022-04-27 15:15:30,411 INFO L290 TraceCheckUtils]: 72: Hoare triple {28256#false} assume ~s~0 == ~DC~0; {28256#false} is VALID [2022-04-27 15:15:30,411 INFO L290 TraceCheckUtils]: 73: Hoare triple {28256#false} assume 259 == ~status~5; {28256#false} is VALID [2022-04-27 15:15:30,411 INFO L272 TraceCheckUtils]: 74: Hoare triple {28256#false} call errorFn(); {28256#false} is VALID [2022-04-27 15:15:30,411 INFO L290 TraceCheckUtils]: 75: Hoare triple {28256#false} assume !false; {28256#false} is VALID [2022-04-27 15:15:30,411 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:15:30,411 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:15:30,411 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [723847157] [2022-04-27 15:15:30,411 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [723847157] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:15:30,411 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:15:30,411 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [14] imperfect sequences [] total 14 [2022-04-27 15:15:30,411 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1324743389] [2022-04-27 15:15:30,411 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:15:30,412 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 4.0) internal successors, (56), 7 states have internal predecessors, (56), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) Word has length 76 [2022-04-27 15:15:30,412 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:15:30,412 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 14 states, 14 states have (on average 4.0) internal successors, (56), 7 states have internal predecessors, (56), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) [2022-04-27 15:15:30,477 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 76 edges. 76 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:15:30,477 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-04-27 15:15:30,477 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:15:30,477 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-04-27 15:15:30,477 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=40, Invalid=142, Unknown=0, NotChecked=0, Total=182 [2022-04-27 15:15:30,477 INFO L87 Difference]: Start difference. First operand 344 states and 442 transitions. Second operand has 14 states, 14 states have (on average 4.0) internal successors, (56), 7 states have internal predecessors, (56), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) [2022-04-27 15:15:32,736 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:15:40,327 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:40,327 INFO L93 Difference]: Finished difference Result 422 states and 536 transitions. [2022-04-27 15:15:40,328 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 24 states. [2022-04-27 15:15:40,328 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 4.0) internal successors, (56), 7 states have internal predecessors, (56), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) Word has length 76 [2022-04-27 15:15:40,328 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:15:40,328 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 4.0) internal successors, (56), 7 states have internal predecessors, (56), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) [2022-04-27 15:15:40,331 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 24 states to 24 states and 508 transitions. [2022-04-27 15:15:40,331 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 4.0) internal successors, (56), 7 states have internal predecessors, (56), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) [2022-04-27 15:15:40,334 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 24 states to 24 states and 508 transitions. [2022-04-27 15:15:40,334 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 24 states and 508 transitions. [2022-04-27 15:15:40,895 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 508 edges. 508 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:15:40,903 INFO L225 Difference]: With dead ends: 422 [2022-04-27 15:15:40,904 INFO L226 Difference]: Without dead ends: 379 [2022-04-27 15:15:40,909 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 49 GetRequests, 16 SyntacticMatches, 0 SemanticMatches, 33 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 230 ImplicationChecksByTransitivity, 0.7s TimeCoverageRelationStatistics Valid=260, Invalid=930, Unknown=0, NotChecked=0, Total=1190 [2022-04-27 15:15:40,910 INFO L413 NwaCegarLoop]: 302 mSDtfsCounter, 970 mSDsluCounter, 361 mSDsCounter, 0 mSdLazyCounter, 1584 mSolverCounterSat, 367 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 975 SdHoareTripleChecker+Valid, 663 SdHoareTripleChecker+Invalid, 1952 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 367 IncrementalHoareTripleChecker+Valid, 1584 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.7s IncrementalHoareTripleChecker+Time [2022-04-27 15:15:40,910 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [975 Valid, 663 Invalid, 1952 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [367 Valid, 1584 Invalid, 1 Unknown, 0 Unchecked, 5.7s Time] [2022-04-27 15:15:40,911 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 379 states. [2022-04-27 15:15:41,084 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 379 to 344. [2022-04-27 15:15:41,084 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:15:41,085 INFO L82 GeneralOperation]: Start isEquivalent. First operand 379 states. Second operand has 344 states, 273 states have (on average 1.3296703296703296) internal successors, (363), 277 states have internal predecessors, (363), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (38), 36 states have call predecessors, (38), 33 states have call successors, (38) [2022-04-27 15:15:41,085 INFO L74 IsIncluded]: Start isIncluded. First operand 379 states. Second operand has 344 states, 273 states have (on average 1.3296703296703296) internal successors, (363), 277 states have internal predecessors, (363), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (38), 36 states have call predecessors, (38), 33 states have call successors, (38) [2022-04-27 15:15:41,085 INFO L87 Difference]: Start difference. First operand 379 states. Second operand has 344 states, 273 states have (on average 1.3296703296703296) internal successors, (363), 277 states have internal predecessors, (363), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (38), 36 states have call predecessors, (38), 33 states have call successors, (38) [2022-04-27 15:15:41,092 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:41,092 INFO L93 Difference]: Finished difference Result 379 states and 484 transitions. [2022-04-27 15:15:41,092 INFO L276 IsEmpty]: Start isEmpty. Operand 379 states and 484 transitions. [2022-04-27 15:15:41,092 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:15:41,093 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:15:41,093 INFO L74 IsIncluded]: Start isIncluded. First operand has 344 states, 273 states have (on average 1.3296703296703296) internal successors, (363), 277 states have internal predecessors, (363), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (38), 36 states have call predecessors, (38), 33 states have call successors, (38) Second operand 379 states. [2022-04-27 15:15:41,093 INFO L87 Difference]: Start difference. First operand has 344 states, 273 states have (on average 1.3296703296703296) internal successors, (363), 277 states have internal predecessors, (363), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (38), 36 states have call predecessors, (38), 33 states have call successors, (38) Second operand 379 states. [2022-04-27 15:15:41,099 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:41,099 INFO L93 Difference]: Finished difference Result 379 states and 484 transitions. [2022-04-27 15:15:41,099 INFO L276 IsEmpty]: Start isEmpty. Operand 379 states and 484 transitions. [2022-04-27 15:15:41,100 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:15:41,100 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:15:41,100 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:15:41,100 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:15:41,100 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 344 states, 273 states have (on average 1.3296703296703296) internal successors, (363), 277 states have internal predecessors, (363), 38 states have call successors, (38), 30 states have call predecessors, (38), 32 states have return successors, (38), 36 states have call predecessors, (38), 33 states have call successors, (38) [2022-04-27 15:15:41,106 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 344 states to 344 states and 439 transitions. [2022-04-27 15:15:41,106 INFO L78 Accepts]: Start accepts. Automaton has 344 states and 439 transitions. Word has length 76 [2022-04-27 15:15:41,106 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:15:41,106 INFO L495 AbstractCegarLoop]: Abstraction has 344 states and 439 transitions. [2022-04-27 15:15:41,106 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 14 states have (on average 4.0) internal successors, (56), 7 states have internal predecessors, (56), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) [2022-04-27 15:15:41,107 INFO L276 IsEmpty]: Start isEmpty. Operand 344 states and 439 transitions. [2022-04-27 15:15:41,107 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 77 [2022-04-27 15:15:41,107 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:15:41,108 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:15:41,108 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14 [2022-04-27 15:15:41,108 INFO L420 AbstractCegarLoop]: === Iteration 16 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:15:41,108 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:15:41,108 INFO L85 PathProgramCache]: Analyzing trace with hash 1346047832, now seen corresponding path program 1 times [2022-04-27 15:15:41,108 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:15:41,108 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [169264187] [2022-04-27 15:15:41,108 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:15:41,108 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:15:41,159 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:41,219 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:15:41,221 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:41,226 INFO L290 TraceCheckUtils]: 0: Hoare triple {30208#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {30163#true} is VALID [2022-04-27 15:15:41,226 INFO L290 TraceCheckUtils]: 1: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,226 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {30163#true} {30163#true} #1270#return; {30163#true} is VALID [2022-04-27 15:15:41,248 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:15:41,249 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:41,255 INFO L290 TraceCheckUtils]: 0: Hoare triple {30209#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {30163#true} is VALID [2022-04-27 15:15:41,255 INFO L290 TraceCheckUtils]: 1: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,255 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {30163#true} {30163#true} #1216#return; {30163#true} is VALID [2022-04-27 15:15:41,261 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:15:41,268 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:41,275 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:15:41,275 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:41,280 INFO L290 TraceCheckUtils]: 0: Hoare triple {30163#true} ~cond := #in~cond; {30163#true} is VALID [2022-04-27 15:15:41,280 INFO L290 TraceCheckUtils]: 1: Hoare triple {30163#true} assume !(0 == ~cond); {30163#true} is VALID [2022-04-27 15:15:41,280 INFO L290 TraceCheckUtils]: 2: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,280 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {30163#true} {30163#true} #1254#return; {30163#true} is VALID [2022-04-27 15:15:41,280 INFO L290 TraceCheckUtils]: 0: Hoare triple {30210#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {30163#true} is VALID [2022-04-27 15:15:41,280 INFO L272 TraceCheckUtils]: 1: Hoare triple {30163#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {30163#true} is VALID [2022-04-27 15:15:41,280 INFO L290 TraceCheckUtils]: 2: Hoare triple {30163#true} ~cond := #in~cond; {30163#true} is VALID [2022-04-27 15:15:41,280 INFO L290 TraceCheckUtils]: 3: Hoare triple {30163#true} assume !(0 == ~cond); {30163#true} is VALID [2022-04-27 15:15:41,280 INFO L290 TraceCheckUtils]: 4: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,280 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {30163#true} {30163#true} #1254#return; {30163#true} is VALID [2022-04-27 15:15:41,280 INFO L290 TraceCheckUtils]: 6: Hoare triple {30163#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {30163#true} is VALID [2022-04-27 15:15:41,281 INFO L290 TraceCheckUtils]: 7: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,281 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {30163#true} {30163#true} #1218#return; {30163#true} is VALID [2022-04-27 15:15:41,289 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:15:41,292 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:41,297 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:15:41,298 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:41,303 INFO L290 TraceCheckUtils]: 0: Hoare triple {30215#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {30163#true} is VALID [2022-04-27 15:15:41,303 INFO L290 TraceCheckUtils]: 1: Hoare triple {30163#true} assume !(0 == ~__BLAST_NONDET~5); {30163#true} is VALID [2022-04-27 15:15:41,303 INFO L290 TraceCheckUtils]: 2: Hoare triple {30163#true} #res := -1073741823; {30163#true} is VALID [2022-04-27 15:15:41,303 INFO L290 TraceCheckUtils]: 3: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,303 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {30163#true} {30163#true} #1176#return; {30163#true} is VALID [2022-04-27 15:15:41,303 INFO L290 TraceCheckUtils]: 0: Hoare triple {30215#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {30163#true} is VALID [2022-04-27 15:15:41,304 INFO L272 TraceCheckUtils]: 1: Hoare triple {30163#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {30215#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:41,304 INFO L290 TraceCheckUtils]: 2: Hoare triple {30215#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {30163#true} is VALID [2022-04-27 15:15:41,305 INFO L290 TraceCheckUtils]: 3: Hoare triple {30163#true} assume !(0 == ~__BLAST_NONDET~5); {30163#true} is VALID [2022-04-27 15:15:41,305 INFO L290 TraceCheckUtils]: 4: Hoare triple {30163#true} #res := -1073741823; {30163#true} is VALID [2022-04-27 15:15:41,305 INFO L290 TraceCheckUtils]: 5: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,305 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {30163#true} {30163#true} #1176#return; {30163#true} is VALID [2022-04-27 15:15:41,305 INFO L290 TraceCheckUtils]: 7: Hoare triple {30163#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {30163#true} is VALID [2022-04-27 15:15:41,305 INFO L290 TraceCheckUtils]: 8: Hoare triple {30163#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {30163#true} is VALID [2022-04-27 15:15:41,305 INFO L290 TraceCheckUtils]: 9: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,305 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {30163#true} {30163#true} #1220#return; {30163#true} is VALID [2022-04-27 15:15:41,317 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:15:41,318 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:41,323 INFO L290 TraceCheckUtils]: 0: Hoare triple {30221#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {30163#true} is VALID [2022-04-27 15:15:41,323 INFO L290 TraceCheckUtils]: 1: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,323 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {30163#true} {30163#true} #1222#return; {30163#true} is VALID [2022-04-27 15:15:41,335 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 47 [2022-04-27 15:15:41,341 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:41,363 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:15:41,364 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:41,368 INFO L290 TraceCheckUtils]: 0: Hoare triple {30228#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {30163#true} is VALID [2022-04-27 15:15:41,368 INFO L290 TraceCheckUtils]: 1: Hoare triple {30163#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {30163#true} is VALID [2022-04-27 15:15:41,368 INFO L290 TraceCheckUtils]: 2: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,369 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {30163#true} {30164#false} #1248#return; {30164#false} is VALID [2022-04-27 15:15:41,369 INFO L290 TraceCheckUtils]: 0: Hoare triple {30222#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~2.base, ~irpStack~2.offset;havoc ~devExt~2.base, ~devExt~2.offset;havoc ~hookKeyboard~0.base, ~hookKeyboard~0.offset;havoc ~connectData~0.base, ~connectData~0.offset;havoc ~status~2;havoc ~tmp~2;~status~2 := 0;call #t~mem51.base, #t~mem51.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~2.base, ~devExt~2.offset := #t~mem51.base, #t~mem51.offset;havoc #t~mem51.base, #t~mem51.offset;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4);call #t~mem52.base, #t~mem52.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~2.base, ~irpStack~2.offset := #t~mem52.base, #t~mem52.offset;havoc #t~mem52.base, #t~mem52.offset;call #t~mem53 := read~int(~irpStack~2.base, 12 + ~irpStack~2.offset, 4); {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} is VALID [2022-04-27 15:15:41,370 INFO L290 TraceCheckUtils]: 1: Hoare triple {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} assume #t~mem53 % 4294967296 == ~bitwiseOr(~bitwiseOr(720896, 512), 3) % 4294967296;havoc #t~mem53; {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} is VALID [2022-04-27 15:15:41,370 INFO L290 TraceCheckUtils]: 2: Hoare triple {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} call #t~mem62.base, #t~mem62.offset := read~$Pointer$(~devExt~2.base, 20 + ~devExt~2.offset, 4); {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} is VALID [2022-04-27 15:15:41,370 INFO L290 TraceCheckUtils]: 3: Hoare triple {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} assume !(0 != (#t~mem62.base + #t~mem62.offset) % 4294967296);havoc #t~mem62.base, #t~mem62.offset;call #t~mem63 := read~int(~irpStack~2.base, 8 + ~irpStack~2.offset, 4); {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} is VALID [2022-04-27 15:15:41,370 INFO L290 TraceCheckUtils]: 4: Hoare triple {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} assume !(#t~mem63 % 4294967296 < 8);havoc #t~mem63;call #t~mem64.base, #t~mem64.offset := read~$Pointer$(~irpStack~2.base, 16 + ~irpStack~2.offset, 4);~connectData~0.base, ~connectData~0.offset := #t~mem64.base, #t~mem64.offset;havoc #t~mem64.base, #t~mem64.offset;call #t~mem65.base, #t~mem65.offset := read~$Pointer$(~connectData~0.base, ~connectData~0.offset, 4);call #t~mem66.base, #t~mem66.offset := read~$Pointer$(~connectData~0.base, 4 + ~connectData~0.offset, 4);call write~$Pointer$(#t~mem65.base, #t~mem65.offset, ~devExt~2.base, 16 + ~devExt~2.offset, 4);call write~$Pointer$(#t~mem66.base, #t~mem66.offset, ~devExt~2.base, 20 + ~devExt~2.offset, 4);havoc #t~mem65.base, #t~mem65.offset;havoc #t~mem66.base, #t~mem66.offset;call #t~mem67.base, #t~mem67.offset := read~$Pointer$(~devExt~2.base, ~devExt~2.offset, 4);call write~$Pointer$(#t~mem67.base, #t~mem67.offset, ~connectData~0.base, ~connectData~0.offset, 4);havoc #t~mem67.base, #t~mem67.offset;call write~$Pointer$(#funAddr~KbFilter_ServiceCallback.base, #funAddr~KbFilter_ServiceCallback.offset, ~connectData~0.base, 4 + ~connectData~0.offset, 4); {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} is VALID [2022-04-27 15:15:41,371 INFO L290 TraceCheckUtils]: 5: Hoare triple {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} assume !(~status~2 >= 0);call write~int(~status~2, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~2; {30164#false} is VALID [2022-04-27 15:15:41,371 INFO L272 TraceCheckUtils]: 6: Hoare triple {30164#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {30228#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:41,371 INFO L290 TraceCheckUtils]: 7: Hoare triple {30228#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {30163#true} is VALID [2022-04-27 15:15:41,371 INFO L290 TraceCheckUtils]: 8: Hoare triple {30163#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {30163#true} is VALID [2022-04-27 15:15:41,371 INFO L290 TraceCheckUtils]: 9: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,371 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {30163#true} {30164#false} #1248#return; {30164#false} is VALID [2022-04-27 15:15:41,371 INFO L290 TraceCheckUtils]: 11: Hoare triple {30164#false} #res := ~status~2; {30164#false} is VALID [2022-04-27 15:15:41,371 INFO L290 TraceCheckUtils]: 12: Hoare triple {30164#false} assume true; {30164#false} is VALID [2022-04-27 15:15:41,371 INFO L284 TraceCheckUtils]: 13: Hoare quadruple {30164#false} {30163#true} #1234#return; {30164#false} is VALID [2022-04-27 15:15:41,372 INFO L272 TraceCheckUtils]: 0: Hoare triple {30163#true} call ULTIMATE.init(); {30208#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:15:41,372 INFO L290 TraceCheckUtils]: 1: Hoare triple {30208#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {30163#true} is VALID [2022-04-27 15:15:41,373 INFO L290 TraceCheckUtils]: 2: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,373 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {30163#true} {30163#true} #1270#return; {30163#true} is VALID [2022-04-27 15:15:41,373 INFO L272 TraceCheckUtils]: 4: Hoare triple {30163#true} call #t~ret213 := main(); {30163#true} is VALID [2022-04-27 15:15:41,373 INFO L290 TraceCheckUtils]: 5: Hoare triple {30163#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {30163#true} is VALID [2022-04-27 15:15:41,374 INFO L272 TraceCheckUtils]: 6: Hoare triple {30163#true} call _BLAST_init(); {30209#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:41,374 INFO L290 TraceCheckUtils]: 7: Hoare triple {30209#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {30163#true} is VALID [2022-04-27 15:15:41,374 INFO L290 TraceCheckUtils]: 8: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,374 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {30163#true} {30163#true} #1216#return; {30163#true} is VALID [2022-04-27 15:15:41,374 INFO L272 TraceCheckUtils]: 10: Hoare triple {30163#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {30210#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:15:41,375 INFO L290 TraceCheckUtils]: 11: Hoare triple {30210#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {30163#true} is VALID [2022-04-27 15:15:41,375 INFO L272 TraceCheckUtils]: 12: Hoare triple {30163#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {30163#true} is VALID [2022-04-27 15:15:41,375 INFO L290 TraceCheckUtils]: 13: Hoare triple {30163#true} ~cond := #in~cond; {30163#true} is VALID [2022-04-27 15:15:41,375 INFO L290 TraceCheckUtils]: 14: Hoare triple {30163#true} assume !(0 == ~cond); {30163#true} is VALID [2022-04-27 15:15:41,375 INFO L290 TraceCheckUtils]: 15: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,375 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {30163#true} {30163#true} #1254#return; {30163#true} is VALID [2022-04-27 15:15:41,375 INFO L290 TraceCheckUtils]: 17: Hoare triple {30163#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {30163#true} is VALID [2022-04-27 15:15:41,375 INFO L290 TraceCheckUtils]: 18: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,375 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {30163#true} {30163#true} #1218#return; {30163#true} is VALID [2022-04-27 15:15:41,375 INFO L290 TraceCheckUtils]: 20: Hoare triple {30163#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {30163#true} is VALID [2022-04-27 15:15:41,375 INFO L290 TraceCheckUtils]: 21: Hoare triple {30163#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {30163#true} is VALID [2022-04-27 15:15:41,375 INFO L290 TraceCheckUtils]: 22: Hoare triple {30163#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {30163#true} is VALID [2022-04-27 15:15:41,376 INFO L272 TraceCheckUtils]: 23: Hoare triple {30163#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {30215#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:41,376 INFO L290 TraceCheckUtils]: 24: Hoare triple {30215#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {30163#true} is VALID [2022-04-27 15:15:41,377 INFO L272 TraceCheckUtils]: 25: Hoare triple {30163#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {30215#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:41,377 INFO L290 TraceCheckUtils]: 26: Hoare triple {30215#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {30163#true} is VALID [2022-04-27 15:15:41,377 INFO L290 TraceCheckUtils]: 27: Hoare triple {30163#true} assume !(0 == ~__BLAST_NONDET~5); {30163#true} is VALID [2022-04-27 15:15:41,377 INFO L290 TraceCheckUtils]: 28: Hoare triple {30163#true} #res := -1073741823; {30163#true} is VALID [2022-04-27 15:15:41,377 INFO L290 TraceCheckUtils]: 29: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,377 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {30163#true} {30163#true} #1176#return; {30163#true} is VALID [2022-04-27 15:15:41,378 INFO L290 TraceCheckUtils]: 31: Hoare triple {30163#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {30163#true} is VALID [2022-04-27 15:15:41,378 INFO L290 TraceCheckUtils]: 32: Hoare triple {30163#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {30163#true} is VALID [2022-04-27 15:15:41,378 INFO L290 TraceCheckUtils]: 33: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,378 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {30163#true} {30163#true} #1220#return; {30163#true} is VALID [2022-04-27 15:15:41,378 INFO L290 TraceCheckUtils]: 35: Hoare triple {30163#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {30163#true} is VALID [2022-04-27 15:15:41,378 INFO L272 TraceCheckUtils]: 36: Hoare triple {30163#true} call stub_driver_init(); {30221#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:41,378 INFO L290 TraceCheckUtils]: 37: Hoare triple {30221#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {30163#true} is VALID [2022-04-27 15:15:41,378 INFO L290 TraceCheckUtils]: 38: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,379 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {30163#true} {30163#true} #1222#return; {30163#true} is VALID [2022-04-27 15:15:41,379 INFO L290 TraceCheckUtils]: 40: Hoare triple {30163#true} assume !!(~status~5 >= 0); {30163#true} is VALID [2022-04-27 15:15:41,379 INFO L290 TraceCheckUtils]: 41: Hoare triple {30163#true} assume !(0 == ~__BLAST_NONDET~0); {30163#true} is VALID [2022-04-27 15:15:41,379 INFO L290 TraceCheckUtils]: 42: Hoare triple {30163#true} assume !(1 == ~__BLAST_NONDET~0); {30163#true} is VALID [2022-04-27 15:15:41,379 INFO L290 TraceCheckUtils]: 43: Hoare triple {30163#true} assume !(2 == ~__BLAST_NONDET~0); {30163#true} is VALID [2022-04-27 15:15:41,379 INFO L290 TraceCheckUtils]: 44: Hoare triple {30163#true} assume !(3 == ~__BLAST_NONDET~0); {30163#true} is VALID [2022-04-27 15:15:41,379 INFO L290 TraceCheckUtils]: 45: Hoare triple {30163#true} assume !(4 == ~__BLAST_NONDET~0); {30163#true} is VALID [2022-04-27 15:15:41,379 INFO L290 TraceCheckUtils]: 46: Hoare triple {30163#true} assume 8 == ~__BLAST_NONDET~0; {30163#true} is VALID [2022-04-27 15:15:41,380 INFO L272 TraceCheckUtils]: 47: Hoare triple {30163#true} call #t~ret176 := KbFilter_InternIoCtl(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {30222#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:41,381 INFO L290 TraceCheckUtils]: 48: Hoare triple {30222#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~2.base, ~irpStack~2.offset;havoc ~devExt~2.base, ~devExt~2.offset;havoc ~hookKeyboard~0.base, ~hookKeyboard~0.offset;havoc ~connectData~0.base, ~connectData~0.offset;havoc ~status~2;havoc ~tmp~2;~status~2 := 0;call #t~mem51.base, #t~mem51.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~2.base, ~devExt~2.offset := #t~mem51.base, #t~mem51.offset;havoc #t~mem51.base, #t~mem51.offset;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4);call #t~mem52.base, #t~mem52.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~2.base, ~irpStack~2.offset := #t~mem52.base, #t~mem52.offset;havoc #t~mem52.base, #t~mem52.offset;call #t~mem53 := read~int(~irpStack~2.base, 12 + ~irpStack~2.offset, 4); {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} is VALID [2022-04-27 15:15:41,381 INFO L290 TraceCheckUtils]: 49: Hoare triple {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} assume #t~mem53 % 4294967296 == ~bitwiseOr(~bitwiseOr(720896, 512), 3) % 4294967296;havoc #t~mem53; {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} is VALID [2022-04-27 15:15:41,381 INFO L290 TraceCheckUtils]: 50: Hoare triple {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} call #t~mem62.base, #t~mem62.offset := read~$Pointer$(~devExt~2.base, 20 + ~devExt~2.offset, 4); {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} is VALID [2022-04-27 15:15:41,381 INFO L290 TraceCheckUtils]: 51: Hoare triple {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} assume !(0 != (#t~mem62.base + #t~mem62.offset) % 4294967296);havoc #t~mem62.base, #t~mem62.offset;call #t~mem63 := read~int(~irpStack~2.base, 8 + ~irpStack~2.offset, 4); {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} is VALID [2022-04-27 15:15:41,382 INFO L290 TraceCheckUtils]: 52: Hoare triple {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} assume !(#t~mem63 % 4294967296 < 8);havoc #t~mem63;call #t~mem64.base, #t~mem64.offset := read~$Pointer$(~irpStack~2.base, 16 + ~irpStack~2.offset, 4);~connectData~0.base, ~connectData~0.offset := #t~mem64.base, #t~mem64.offset;havoc #t~mem64.base, #t~mem64.offset;call #t~mem65.base, #t~mem65.offset := read~$Pointer$(~connectData~0.base, ~connectData~0.offset, 4);call #t~mem66.base, #t~mem66.offset := read~$Pointer$(~connectData~0.base, 4 + ~connectData~0.offset, 4);call write~$Pointer$(#t~mem65.base, #t~mem65.offset, ~devExt~2.base, 16 + ~devExt~2.offset, 4);call write~$Pointer$(#t~mem66.base, #t~mem66.offset, ~devExt~2.base, 20 + ~devExt~2.offset, 4);havoc #t~mem65.base, #t~mem65.offset;havoc #t~mem66.base, #t~mem66.offset;call #t~mem67.base, #t~mem67.offset := read~$Pointer$(~devExt~2.base, ~devExt~2.offset, 4);call write~$Pointer$(#t~mem67.base, #t~mem67.offset, ~connectData~0.base, ~connectData~0.offset, 4);havoc #t~mem67.base, #t~mem67.offset;call write~$Pointer$(#funAddr~KbFilter_ServiceCallback.base, #funAddr~KbFilter_ServiceCallback.offset, ~connectData~0.base, 4 + ~connectData~0.offset, 4); {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} is VALID [2022-04-27 15:15:41,382 INFO L290 TraceCheckUtils]: 53: Hoare triple {30223#(<= 0 KbFilter_InternIoCtl_~status~2)} assume !(~status~2 >= 0);call write~int(~status~2, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~2; {30164#false} is VALID [2022-04-27 15:15:41,382 INFO L272 TraceCheckUtils]: 54: Hoare triple {30164#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {30228#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:15:41,382 INFO L290 TraceCheckUtils]: 55: Hoare triple {30228#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {30163#true} is VALID [2022-04-27 15:15:41,382 INFO L290 TraceCheckUtils]: 56: Hoare triple {30163#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {30163#true} is VALID [2022-04-27 15:15:41,382 INFO L290 TraceCheckUtils]: 57: Hoare triple {30163#true} assume true; {30163#true} is VALID [2022-04-27 15:15:41,382 INFO L284 TraceCheckUtils]: 58: Hoare quadruple {30163#true} {30164#false} #1248#return; {30164#false} is VALID [2022-04-27 15:15:41,382 INFO L290 TraceCheckUtils]: 59: Hoare triple {30164#false} #res := ~status~2; {30164#false} is VALID [2022-04-27 15:15:41,382 INFO L290 TraceCheckUtils]: 60: Hoare triple {30164#false} assume true; {30164#false} is VALID [2022-04-27 15:15:41,382 INFO L284 TraceCheckUtils]: 61: Hoare quadruple {30164#false} {30163#true} #1234#return; {30164#false} is VALID [2022-04-27 15:15:41,382 INFO L290 TraceCheckUtils]: 62: Hoare triple {30164#false} assume -2147483648 <= #t~ret176 && #t~ret176 <= 2147483647;~status~5 := #t~ret176;havoc #t~ret176; {30164#false} is VALID [2022-04-27 15:15:41,382 INFO L290 TraceCheckUtils]: 63: Hoare triple {30164#false} assume 0 != ~we_should_unload~0; {30164#false} is VALID [2022-04-27 15:15:41,382 INFO L290 TraceCheckUtils]: 64: Hoare triple {30164#false} assume !(1 == ~pended~0); {30164#false} is VALID [2022-04-27 15:15:41,383 INFO L290 TraceCheckUtils]: 65: Hoare triple {30164#false} assume !(1 == ~pended~0); {30164#false} is VALID [2022-04-27 15:15:41,383 INFO L290 TraceCheckUtils]: 66: Hoare triple {30164#false} assume !(~s~0 == ~UNLOADED~0); {30164#false} is VALID [2022-04-27 15:15:41,383 INFO L290 TraceCheckUtils]: 67: Hoare triple {30164#false} assume !(-1 == ~status~5); {30164#false} is VALID [2022-04-27 15:15:41,383 INFO L290 TraceCheckUtils]: 68: Hoare triple {30164#false} assume ~s~0 != ~SKIP2~0; {30164#false} is VALID [2022-04-27 15:15:41,383 INFO L290 TraceCheckUtils]: 69: Hoare triple {30164#false} assume ~s~0 != ~IPC~0; {30164#false} is VALID [2022-04-27 15:15:41,383 INFO L290 TraceCheckUtils]: 70: Hoare triple {30164#false} assume !(~s~0 != ~DC~0); {30164#false} is VALID [2022-04-27 15:15:41,383 INFO L290 TraceCheckUtils]: 71: Hoare triple {30164#false} assume !(1 == ~pended~0); {30164#false} is VALID [2022-04-27 15:15:41,383 INFO L290 TraceCheckUtils]: 72: Hoare triple {30164#false} assume ~s~0 == ~DC~0; {30164#false} is VALID [2022-04-27 15:15:41,383 INFO L290 TraceCheckUtils]: 73: Hoare triple {30164#false} assume 259 == ~status~5; {30164#false} is VALID [2022-04-27 15:15:41,383 INFO L272 TraceCheckUtils]: 74: Hoare triple {30164#false} call errorFn(); {30164#false} is VALID [2022-04-27 15:15:41,383 INFO L290 TraceCheckUtils]: 75: Hoare triple {30164#false} assume !false; {30164#false} is VALID [2022-04-27 15:15:41,383 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:15:41,384 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:15:41,384 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [169264187] [2022-04-27 15:15:41,385 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [169264187] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:15:41,385 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:15:41,385 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2022-04-27 15:15:41,385 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1317915422] [2022-04-27 15:15:41,385 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:15:41,386 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 5.6) internal successors, (56), 3 states have internal predecessors, (56), 2 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) Word has length 76 [2022-04-27 15:15:41,386 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:15:41,386 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 10 states, 10 states have (on average 5.6) internal successors, (56), 3 states have internal predecessors, (56), 2 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:41,461 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 76 edges. 76 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:15:41,461 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2022-04-27 15:15:41,461 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:15:41,461 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2022-04-27 15:15:41,461 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=26, Invalid=64, Unknown=0, NotChecked=0, Total=90 [2022-04-27 15:15:41,462 INFO L87 Difference]: Start difference. First operand 344 states and 439 transitions. Second operand has 10 states, 10 states have (on average 5.6) internal successors, (56), 3 states have internal predecessors, (56), 2 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:43,551 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:15:48,640 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:48,640 INFO L93 Difference]: Finished difference Result 378 states and 480 transitions. [2022-04-27 15:15:48,640 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-04-27 15:15:48,640 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 5.6) internal successors, (56), 3 states have internal predecessors, (56), 2 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) Word has length 76 [2022-04-27 15:15:48,641 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:15:48,641 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 5.6) internal successors, (56), 3 states have internal predecessors, (56), 2 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:48,643 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 12 states to 12 states and 427 transitions. [2022-04-27 15:15:48,643 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 5.6) internal successors, (56), 3 states have internal predecessors, (56), 2 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:48,645 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 12 states to 12 states and 427 transitions. [2022-04-27 15:15:48,645 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 12 states and 427 transitions. [2022-04-27 15:15:49,117 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 427 edges. 427 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:15:49,123 INFO L225 Difference]: With dead ends: 378 [2022-04-27 15:15:49,124 INFO L226 Difference]: Without dead ends: 355 [2022-04-27 15:15:49,124 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 27 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 19 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=57, Invalid=125, Unknown=0, NotChecked=0, Total=182 [2022-04-27 15:15:49,124 INFO L413 NwaCegarLoop]: 274 mSDtfsCounter, 983 mSDsluCounter, 199 mSDsCounter, 0 mSdLazyCounter, 632 mSolverCounterSat, 332 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 986 SdHoareTripleChecker+Valid, 473 SdHoareTripleChecker+Invalid, 965 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 332 IncrementalHoareTripleChecker+Valid, 632 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.0s IncrementalHoareTripleChecker+Time [2022-04-27 15:15:49,124 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [986 Valid, 473 Invalid, 965 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [332 Valid, 632 Invalid, 1 Unknown, 0 Unchecked, 4.0s Time] [2022-04-27 15:15:49,125 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 355 states. [2022-04-27 15:15:49,277 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 355 to 335. [2022-04-27 15:15:49,277 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:15:49,278 INFO L82 GeneralOperation]: Start isEquivalent. First operand 355 states. Second operand has 335 states, 267 states have (on average 1.3333333333333333) internal successors, (356), 271 states have internal predecessors, (356), 37 states have call successors, (37), 29 states have call predecessors, (37), 30 states have return successors, (36), 34 states have call predecessors, (36), 32 states have call successors, (36) [2022-04-27 15:15:49,278 INFO L74 IsIncluded]: Start isIncluded. First operand 355 states. Second operand has 335 states, 267 states have (on average 1.3333333333333333) internal successors, (356), 271 states have internal predecessors, (356), 37 states have call successors, (37), 29 states have call predecessors, (37), 30 states have return successors, (36), 34 states have call predecessors, (36), 32 states have call successors, (36) [2022-04-27 15:15:49,278 INFO L87 Difference]: Start difference. First operand 355 states. Second operand has 335 states, 267 states have (on average 1.3333333333333333) internal successors, (356), 271 states have internal predecessors, (356), 37 states have call successors, (37), 29 states have call predecessors, (37), 30 states have return successors, (36), 34 states have call predecessors, (36), 32 states have call successors, (36) [2022-04-27 15:15:49,283 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:49,283 INFO L93 Difference]: Finished difference Result 355 states and 456 transitions. [2022-04-27 15:15:49,284 INFO L276 IsEmpty]: Start isEmpty. Operand 355 states and 456 transitions. [2022-04-27 15:15:49,284 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:15:49,284 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:15:49,284 INFO L74 IsIncluded]: Start isIncluded. First operand has 335 states, 267 states have (on average 1.3333333333333333) internal successors, (356), 271 states have internal predecessors, (356), 37 states have call successors, (37), 29 states have call predecessors, (37), 30 states have return successors, (36), 34 states have call predecessors, (36), 32 states have call successors, (36) Second operand 355 states. [2022-04-27 15:15:49,285 INFO L87 Difference]: Start difference. First operand has 335 states, 267 states have (on average 1.3333333333333333) internal successors, (356), 271 states have internal predecessors, (356), 37 states have call successors, (37), 29 states have call predecessors, (37), 30 states have return successors, (36), 34 states have call predecessors, (36), 32 states have call successors, (36) Second operand 355 states. [2022-04-27 15:15:49,290 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:15:49,290 INFO L93 Difference]: Finished difference Result 355 states and 456 transitions. [2022-04-27 15:15:49,290 INFO L276 IsEmpty]: Start isEmpty. Operand 355 states and 456 transitions. [2022-04-27 15:15:49,291 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:15:49,291 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:15:49,291 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:15:49,291 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:15:49,291 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 335 states, 267 states have (on average 1.3333333333333333) internal successors, (356), 271 states have internal predecessors, (356), 37 states have call successors, (37), 29 states have call predecessors, (37), 30 states have return successors, (36), 34 states have call predecessors, (36), 32 states have call successors, (36) [2022-04-27 15:15:49,297 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 335 states to 335 states and 429 transitions. [2022-04-27 15:15:49,297 INFO L78 Accepts]: Start accepts. Automaton has 335 states and 429 transitions. Word has length 76 [2022-04-27 15:15:49,297 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:15:49,297 INFO L495 AbstractCegarLoop]: Abstraction has 335 states and 429 transitions. [2022-04-27 15:15:49,297 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 10 states have (on average 5.6) internal successors, (56), 3 states have internal predecessors, (56), 2 states have call successors, (11), 9 states have call predecessors, (11), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:15:49,297 INFO L276 IsEmpty]: Start isEmpty. Operand 335 states and 429 transitions. [2022-04-27 15:15:49,298 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 79 [2022-04-27 15:15:49,298 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:15:49,298 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:15:49,298 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable15 [2022-04-27 15:15:49,298 INFO L420 AbstractCegarLoop]: === Iteration 17 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:15:49,299 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:15:49,299 INFO L85 PathProgramCache]: Analyzing trace with hash 2131421, now seen corresponding path program 1 times [2022-04-27 15:15:49,299 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:15:49,299 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [85980232] [2022-04-27 15:15:49,299 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:15:49,299 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:15:49,350 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:49,424 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:15:49,426 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:49,431 INFO L290 TraceCheckUtils]: 0: Hoare triple {31966#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {31914#true} is VALID [2022-04-27 15:15:49,431 INFO L290 TraceCheckUtils]: 1: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,431 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {31914#true} {31914#true} #1270#return; {31914#true} is VALID [2022-04-27 15:15:49,452 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:15:49,453 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:49,458 INFO L290 TraceCheckUtils]: 0: Hoare triple {31967#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {31914#true} is VALID [2022-04-27 15:15:49,458 INFO L290 TraceCheckUtils]: 1: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,458 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {31914#true} {31914#true} #1216#return; {31914#true} is VALID [2022-04-27 15:15:49,465 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:15:49,472 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:49,479 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:15:49,487 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:49,492 INFO L290 TraceCheckUtils]: 0: Hoare triple {31914#true} ~cond := #in~cond; {31914#true} is VALID [2022-04-27 15:15:49,492 INFO L290 TraceCheckUtils]: 1: Hoare triple {31914#true} assume !(0 == ~cond); {31914#true} is VALID [2022-04-27 15:15:49,492 INFO L290 TraceCheckUtils]: 2: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,492 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {31914#true} {31914#true} #1254#return; {31914#true} is VALID [2022-04-27 15:15:49,493 INFO L290 TraceCheckUtils]: 0: Hoare triple {31968#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {31914#true} is VALID [2022-04-27 15:15:49,493 INFO L272 TraceCheckUtils]: 1: Hoare triple {31914#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {31914#true} is VALID [2022-04-27 15:15:49,493 INFO L290 TraceCheckUtils]: 2: Hoare triple {31914#true} ~cond := #in~cond; {31914#true} is VALID [2022-04-27 15:15:49,493 INFO L290 TraceCheckUtils]: 3: Hoare triple {31914#true} assume !(0 == ~cond); {31914#true} is VALID [2022-04-27 15:15:49,493 INFO L290 TraceCheckUtils]: 4: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,493 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {31914#true} {31914#true} #1254#return; {31914#true} is VALID [2022-04-27 15:15:49,493 INFO L290 TraceCheckUtils]: 6: Hoare triple {31914#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {31914#true} is VALID [2022-04-27 15:15:49,493 INFO L290 TraceCheckUtils]: 7: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,493 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {31914#true} {31914#true} #1218#return; {31914#true} is VALID [2022-04-27 15:15:49,502 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:15:49,505 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:49,510 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:15:49,511 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:49,518 INFO L290 TraceCheckUtils]: 0: Hoare triple {31973#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {31914#true} is VALID [2022-04-27 15:15:49,518 INFO L290 TraceCheckUtils]: 1: Hoare triple {31914#true} assume !(0 == ~__BLAST_NONDET~5); {31914#true} is VALID [2022-04-27 15:15:49,518 INFO L290 TraceCheckUtils]: 2: Hoare triple {31914#true} #res := -1073741823; {31914#true} is VALID [2022-04-27 15:15:49,518 INFO L290 TraceCheckUtils]: 3: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,518 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {31914#true} {31914#true} #1176#return; {31914#true} is VALID [2022-04-27 15:15:49,518 INFO L290 TraceCheckUtils]: 0: Hoare triple {31973#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {31914#true} is VALID [2022-04-27 15:15:49,519 INFO L272 TraceCheckUtils]: 1: Hoare triple {31914#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {31973#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:49,519 INFO L290 TraceCheckUtils]: 2: Hoare triple {31973#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {31914#true} is VALID [2022-04-27 15:15:49,519 INFO L290 TraceCheckUtils]: 3: Hoare triple {31914#true} assume !(0 == ~__BLAST_NONDET~5); {31914#true} is VALID [2022-04-27 15:15:49,519 INFO L290 TraceCheckUtils]: 4: Hoare triple {31914#true} #res := -1073741823; {31914#true} is VALID [2022-04-27 15:15:49,519 INFO L290 TraceCheckUtils]: 5: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,519 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {31914#true} {31914#true} #1176#return; {31914#true} is VALID [2022-04-27 15:15:49,520 INFO L290 TraceCheckUtils]: 7: Hoare triple {31914#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {31914#true} is VALID [2022-04-27 15:15:49,520 INFO L290 TraceCheckUtils]: 8: Hoare triple {31914#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {31914#true} is VALID [2022-04-27 15:15:49,520 INFO L290 TraceCheckUtils]: 9: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,520 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {31914#true} {31914#true} #1220#return; {31914#true} is VALID [2022-04-27 15:15:49,532 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:15:49,533 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:49,547 INFO L290 TraceCheckUtils]: 0: Hoare triple {31979#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {31914#true} is VALID [2022-04-27 15:15:49,547 INFO L290 TraceCheckUtils]: 1: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,547 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {31914#true} {31914#true} #1222#return; {31914#true} is VALID [2022-04-27 15:15:49,560 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 46 [2022-04-27 15:15:49,567 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:49,604 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2022-04-27 15:15:49,607 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:15:49,651 INFO L290 TraceCheckUtils]: 0: Hoare triple {31993#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {31914#true} is VALID [2022-04-27 15:15:49,651 INFO L290 TraceCheckUtils]: 1: Hoare triple {31914#true} assume !(0 != ~compRegistered~0); {31914#true} is VALID [2022-04-27 15:15:49,651 INFO L290 TraceCheckUtils]: 2: Hoare triple {31914#true} assume 0 == ~__BLAST_NONDET~16; {31914#true} is VALID [2022-04-27 15:15:49,651 INFO L290 TraceCheckUtils]: 3: Hoare triple {31914#true} ~returnVal~0 := 0; {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} is VALID [2022-04-27 15:15:49,652 INFO L290 TraceCheckUtils]: 4: Hoare triple {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} assume !(~s~0 == ~NP~0); {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} is VALID [2022-04-27 15:15:49,652 INFO L290 TraceCheckUtils]: 5: Hoare triple {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} assume !(~s~0 == ~MPR1~0); {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} is VALID [2022-04-27 15:15:49,652 INFO L290 TraceCheckUtils]: 6: Hoare triple {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} assume ~s~0 == ~SKIP1~0;~s~0 := ~SKIP2~0;~lowerDriverReturn~0 := ~returnVal~0; {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} is VALID [2022-04-27 15:15:49,653 INFO L290 TraceCheckUtils]: 7: Hoare triple {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} #res := ~returnVal~0; {31995#(and (<= |PoCallDriver_#res| 0) (<= 0 |PoCallDriver_#res|))} is VALID [2022-04-27 15:15:49,653 INFO L290 TraceCheckUtils]: 8: Hoare triple {31995#(and (<= |PoCallDriver_#res| 0) (<= 0 |PoCallDriver_#res|))} assume true; {31995#(and (<= |PoCallDriver_#res| 0) (<= 0 |PoCallDriver_#res|))} is VALID [2022-04-27 15:15:49,654 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {31995#(and (<= |PoCallDriver_#res| 0) (<= 0 |PoCallDriver_#res|))} {31914#true} #1268#return; {31991#(= |KbFilter_Power_#t~ret136| 0)} is VALID [2022-04-27 15:15:49,654 INFO L290 TraceCheckUtils]: 0: Hoare triple {31980#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~4.base, ~irpStack~4.offset;havoc ~devExt~4.base, ~devExt~4.offset;call ~#powerState~0.base, ~#powerState~0.offset := #Ultimate.allocOnStack(4);havoc ~powerType~0;havoc ~tmp~3;call #t~mem123.base, #t~mem123.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~4.base, ~devExt~4.offset := #t~mem123.base, #t~mem123.offset;havoc #t~mem123.base, #t~mem123.offset;call #t~mem124.base, #t~mem124.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~4.base, ~irpStack~4.offset := #t~mem124.base, #t~mem124.offset;havoc #t~mem124.base, #t~mem124.offset;call #t~mem125 := read~int(~irpStack~4.base, 8 + ~irpStack~4.offset, 4);~powerType~0 := #t~mem125;havoc #t~mem125;call #t~mem126 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call #t~mem127 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call write~int(#t~mem126, ~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem127, ~#powerState~0.base, ~#powerState~0.offset, 4);havoc #t~mem126;havoc #t~mem127;call #t~mem128 := read~int(~irpStack~4.base, 1 + ~irpStack~4.offset, 1); {31914#true} is VALID [2022-04-27 15:15:49,655 INFO L290 TraceCheckUtils]: 1: Hoare triple {31914#true} assume 2 == #t~mem128 % 256;havoc #t~mem128; {31914#true} is VALID [2022-04-27 15:15:49,655 INFO L290 TraceCheckUtils]: 2: Hoare triple {31914#true} assume 1 == ~powerType~0;call #t~mem132 := read~int(~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem132, ~devExt~4.base, 48 + ~devExt~4.offset, 4);havoc #t~mem132; {31914#true} is VALID [2022-04-27 15:15:49,655 INFO L290 TraceCheckUtils]: 3: Hoare triple {31914#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {31914#true} is VALID [2022-04-27 15:15:49,655 INFO L290 TraceCheckUtils]: 4: Hoare triple {31914#true} call #t~mem133 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem133) % 256 <= 127 then (1 + #t~mem133) % 256 else (1 + #t~mem133) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem133;call #t~mem134.base, #t~mem134.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem134.base, 36 + #t~mem134.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem134.base, #t~mem134.offset;call #t~mem135.base, #t~mem135.offset := read~$Pointer$(~devExt~4.base, 8 + ~devExt~4.offset, 4); {31914#true} is VALID [2022-04-27 15:15:49,656 INFO L272 TraceCheckUtils]: 5: Hoare triple {31914#true} call #t~ret136 := PoCallDriver(#t~mem135.base, #t~mem135.offset, ~Irp.base, ~Irp.offset); {31993#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:49,656 INFO L290 TraceCheckUtils]: 6: Hoare triple {31993#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {31914#true} is VALID [2022-04-27 15:15:49,656 INFO L290 TraceCheckUtils]: 7: Hoare triple {31914#true} assume !(0 != ~compRegistered~0); {31914#true} is VALID [2022-04-27 15:15:49,656 INFO L290 TraceCheckUtils]: 8: Hoare triple {31914#true} assume 0 == ~__BLAST_NONDET~16; {31914#true} is VALID [2022-04-27 15:15:49,656 INFO L290 TraceCheckUtils]: 9: Hoare triple {31914#true} ~returnVal~0 := 0; {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} is VALID [2022-04-27 15:15:49,656 INFO L290 TraceCheckUtils]: 10: Hoare triple {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} assume !(~s~0 == ~NP~0); {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} is VALID [2022-04-27 15:15:49,657 INFO L290 TraceCheckUtils]: 11: Hoare triple {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} assume !(~s~0 == ~MPR1~0); {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} is VALID [2022-04-27 15:15:49,657 INFO L290 TraceCheckUtils]: 12: Hoare triple {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} assume ~s~0 == ~SKIP1~0;~s~0 := ~SKIP2~0;~lowerDriverReturn~0 := ~returnVal~0; {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} is VALID [2022-04-27 15:15:49,658 INFO L290 TraceCheckUtils]: 13: Hoare triple {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} #res := ~returnVal~0; {31995#(and (<= |PoCallDriver_#res| 0) (<= 0 |PoCallDriver_#res|))} is VALID [2022-04-27 15:15:49,658 INFO L290 TraceCheckUtils]: 14: Hoare triple {31995#(and (<= |PoCallDriver_#res| 0) (<= 0 |PoCallDriver_#res|))} assume true; {31995#(and (<= |PoCallDriver_#res| 0) (<= 0 |PoCallDriver_#res|))} is VALID [2022-04-27 15:15:49,659 INFO L284 TraceCheckUtils]: 15: Hoare quadruple {31995#(and (<= |PoCallDriver_#res| 0) (<= 0 |PoCallDriver_#res|))} {31914#true} #1268#return; {31991#(= |KbFilter_Power_#t~ret136| 0)} is VALID [2022-04-27 15:15:49,659 INFO L290 TraceCheckUtils]: 16: Hoare triple {31991#(= |KbFilter_Power_#t~ret136| 0)} assume -2147483648 <= #t~ret136 && #t~ret136 <= 2147483647;~tmp~3 := #t~ret136;havoc #t~mem135.base, #t~mem135.offset;havoc #t~ret136;#res := ~tmp~3;call ULTIMATE.dealloc(~#powerState~0.base, ~#powerState~0.offset);havoc ~#powerState~0.base, ~#powerState~0.offset; {31992#(= |KbFilter_Power_#res| 0)} is VALID [2022-04-27 15:15:49,660 INFO L290 TraceCheckUtils]: 17: Hoare triple {31992#(= |KbFilter_Power_#res| 0)} assume true; {31992#(= |KbFilter_Power_#res| 0)} is VALID [2022-04-27 15:15:49,660 INFO L284 TraceCheckUtils]: 18: Hoare quadruple {31992#(= |KbFilter_Power_#res| 0)} {31914#true} #1232#return; {31964#(= 0 |main_#t~ret175|)} is VALID [2022-04-27 15:15:49,662 INFO L272 TraceCheckUtils]: 0: Hoare triple {31914#true} call ULTIMATE.init(); {31966#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:15:49,662 INFO L290 TraceCheckUtils]: 1: Hoare triple {31966#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {31914#true} is VALID [2022-04-27 15:15:49,662 INFO L290 TraceCheckUtils]: 2: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,662 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {31914#true} {31914#true} #1270#return; {31914#true} is VALID [2022-04-27 15:15:49,662 INFO L272 TraceCheckUtils]: 4: Hoare triple {31914#true} call #t~ret213 := main(); {31914#true} is VALID [2022-04-27 15:15:49,662 INFO L290 TraceCheckUtils]: 5: Hoare triple {31914#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {31914#true} is VALID [2022-04-27 15:15:49,663 INFO L272 TraceCheckUtils]: 6: Hoare triple {31914#true} call _BLAST_init(); {31967#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:49,663 INFO L290 TraceCheckUtils]: 7: Hoare triple {31967#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {31914#true} is VALID [2022-04-27 15:15:49,663 INFO L290 TraceCheckUtils]: 8: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,664 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {31914#true} {31914#true} #1216#return; {31914#true} is VALID [2022-04-27 15:15:49,664 INFO L272 TraceCheckUtils]: 10: Hoare triple {31914#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {31968#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:15:49,664 INFO L290 TraceCheckUtils]: 11: Hoare triple {31968#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {31914#true} is VALID [2022-04-27 15:15:49,664 INFO L272 TraceCheckUtils]: 12: Hoare triple {31914#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {31914#true} is VALID [2022-04-27 15:15:49,665 INFO L290 TraceCheckUtils]: 13: Hoare triple {31914#true} ~cond := #in~cond; {31914#true} is VALID [2022-04-27 15:15:49,665 INFO L290 TraceCheckUtils]: 14: Hoare triple {31914#true} assume !(0 == ~cond); {31914#true} is VALID [2022-04-27 15:15:49,665 INFO L290 TraceCheckUtils]: 15: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,665 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {31914#true} {31914#true} #1254#return; {31914#true} is VALID [2022-04-27 15:15:49,665 INFO L290 TraceCheckUtils]: 17: Hoare triple {31914#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {31914#true} is VALID [2022-04-27 15:15:49,665 INFO L290 TraceCheckUtils]: 18: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,665 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {31914#true} {31914#true} #1218#return; {31914#true} is VALID [2022-04-27 15:15:49,665 INFO L290 TraceCheckUtils]: 20: Hoare triple {31914#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {31914#true} is VALID [2022-04-27 15:15:49,665 INFO L290 TraceCheckUtils]: 21: Hoare triple {31914#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {31914#true} is VALID [2022-04-27 15:15:49,665 INFO L290 TraceCheckUtils]: 22: Hoare triple {31914#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {31914#true} is VALID [2022-04-27 15:15:49,666 INFO L272 TraceCheckUtils]: 23: Hoare triple {31914#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {31973#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:49,666 INFO L290 TraceCheckUtils]: 24: Hoare triple {31973#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {31914#true} is VALID [2022-04-27 15:15:49,667 INFO L272 TraceCheckUtils]: 25: Hoare triple {31914#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {31973#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:15:49,667 INFO L290 TraceCheckUtils]: 26: Hoare triple {31973#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {31914#true} is VALID [2022-04-27 15:15:49,667 INFO L290 TraceCheckUtils]: 27: Hoare triple {31914#true} assume !(0 == ~__BLAST_NONDET~5); {31914#true} is VALID [2022-04-27 15:15:49,667 INFO L290 TraceCheckUtils]: 28: Hoare triple {31914#true} #res := -1073741823; {31914#true} is VALID [2022-04-27 15:15:49,667 INFO L290 TraceCheckUtils]: 29: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,668 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {31914#true} {31914#true} #1176#return; {31914#true} is VALID [2022-04-27 15:15:49,668 INFO L290 TraceCheckUtils]: 31: Hoare triple {31914#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {31914#true} is VALID [2022-04-27 15:15:49,668 INFO L290 TraceCheckUtils]: 32: Hoare triple {31914#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {31914#true} is VALID [2022-04-27 15:15:49,668 INFO L290 TraceCheckUtils]: 33: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,668 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {31914#true} {31914#true} #1220#return; {31914#true} is VALID [2022-04-27 15:15:49,668 INFO L290 TraceCheckUtils]: 35: Hoare triple {31914#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {31914#true} is VALID [2022-04-27 15:15:49,668 INFO L272 TraceCheckUtils]: 36: Hoare triple {31914#true} call stub_driver_init(); {31979#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:49,669 INFO L290 TraceCheckUtils]: 37: Hoare triple {31979#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {31914#true} is VALID [2022-04-27 15:15:49,669 INFO L290 TraceCheckUtils]: 38: Hoare triple {31914#true} assume true; {31914#true} is VALID [2022-04-27 15:15:49,669 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {31914#true} {31914#true} #1222#return; {31914#true} is VALID [2022-04-27 15:15:49,669 INFO L290 TraceCheckUtils]: 40: Hoare triple {31914#true} assume !!(~status~5 >= 0); {31914#true} is VALID [2022-04-27 15:15:49,669 INFO L290 TraceCheckUtils]: 41: Hoare triple {31914#true} assume !(0 == ~__BLAST_NONDET~0); {31914#true} is VALID [2022-04-27 15:15:49,669 INFO L290 TraceCheckUtils]: 42: Hoare triple {31914#true} assume !(1 == ~__BLAST_NONDET~0); {31914#true} is VALID [2022-04-27 15:15:49,669 INFO L290 TraceCheckUtils]: 43: Hoare triple {31914#true} assume !(2 == ~__BLAST_NONDET~0); {31914#true} is VALID [2022-04-27 15:15:49,669 INFO L290 TraceCheckUtils]: 44: Hoare triple {31914#true} assume !(3 == ~__BLAST_NONDET~0); {31914#true} is VALID [2022-04-27 15:15:49,669 INFO L290 TraceCheckUtils]: 45: Hoare triple {31914#true} assume 4 == ~__BLAST_NONDET~0; {31914#true} is VALID [2022-04-27 15:15:49,670 INFO L272 TraceCheckUtils]: 46: Hoare triple {31914#true} call #t~ret175 := KbFilter_Power(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {31980#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:49,670 INFO L290 TraceCheckUtils]: 47: Hoare triple {31980#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~4.base, ~irpStack~4.offset;havoc ~devExt~4.base, ~devExt~4.offset;call ~#powerState~0.base, ~#powerState~0.offset := #Ultimate.allocOnStack(4);havoc ~powerType~0;havoc ~tmp~3;call #t~mem123.base, #t~mem123.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~4.base, ~devExt~4.offset := #t~mem123.base, #t~mem123.offset;havoc #t~mem123.base, #t~mem123.offset;call #t~mem124.base, #t~mem124.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~4.base, ~irpStack~4.offset := #t~mem124.base, #t~mem124.offset;havoc #t~mem124.base, #t~mem124.offset;call #t~mem125 := read~int(~irpStack~4.base, 8 + ~irpStack~4.offset, 4);~powerType~0 := #t~mem125;havoc #t~mem125;call #t~mem126 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call #t~mem127 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call write~int(#t~mem126, ~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem127, ~#powerState~0.base, ~#powerState~0.offset, 4);havoc #t~mem126;havoc #t~mem127;call #t~mem128 := read~int(~irpStack~4.base, 1 + ~irpStack~4.offset, 1); {31914#true} is VALID [2022-04-27 15:15:49,670 INFO L290 TraceCheckUtils]: 48: Hoare triple {31914#true} assume 2 == #t~mem128 % 256;havoc #t~mem128; {31914#true} is VALID [2022-04-27 15:15:49,670 INFO L290 TraceCheckUtils]: 49: Hoare triple {31914#true} assume 1 == ~powerType~0;call #t~mem132 := read~int(~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem132, ~devExt~4.base, 48 + ~devExt~4.offset, 4);havoc #t~mem132; {31914#true} is VALID [2022-04-27 15:15:49,670 INFO L290 TraceCheckUtils]: 50: Hoare triple {31914#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {31914#true} is VALID [2022-04-27 15:15:49,670 INFO L290 TraceCheckUtils]: 51: Hoare triple {31914#true} call #t~mem133 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem133) % 256 <= 127 then (1 + #t~mem133) % 256 else (1 + #t~mem133) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem133;call #t~mem134.base, #t~mem134.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem134.base, 36 + #t~mem134.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem134.base, #t~mem134.offset;call #t~mem135.base, #t~mem135.offset := read~$Pointer$(~devExt~4.base, 8 + ~devExt~4.offset, 4); {31914#true} is VALID [2022-04-27 15:15:49,671 INFO L272 TraceCheckUtils]: 52: Hoare triple {31914#true} call #t~ret136 := PoCallDriver(#t~mem135.base, #t~mem135.offset, ~Irp.base, ~Irp.offset); {31993#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:15:49,671 INFO L290 TraceCheckUtils]: 53: Hoare triple {31993#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {31914#true} is VALID [2022-04-27 15:15:49,671 INFO L290 TraceCheckUtils]: 54: Hoare triple {31914#true} assume !(0 != ~compRegistered~0); {31914#true} is VALID [2022-04-27 15:15:49,671 INFO L290 TraceCheckUtils]: 55: Hoare triple {31914#true} assume 0 == ~__BLAST_NONDET~16; {31914#true} is VALID [2022-04-27 15:15:49,672 INFO L290 TraceCheckUtils]: 56: Hoare triple {31914#true} ~returnVal~0 := 0; {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} is VALID [2022-04-27 15:15:49,672 INFO L290 TraceCheckUtils]: 57: Hoare triple {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} assume !(~s~0 == ~NP~0); {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} is VALID [2022-04-27 15:15:49,672 INFO L290 TraceCheckUtils]: 58: Hoare triple {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} assume !(~s~0 == ~MPR1~0); {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} is VALID [2022-04-27 15:15:49,672 INFO L290 TraceCheckUtils]: 59: Hoare triple {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} assume ~s~0 == ~SKIP1~0;~s~0 := ~SKIP2~0;~lowerDriverReturn~0 := ~returnVal~0; {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} is VALID [2022-04-27 15:15:49,673 INFO L290 TraceCheckUtils]: 60: Hoare triple {31994#(and (<= 0 PoCallDriver_~returnVal~0) (<= PoCallDriver_~returnVal~0 0))} #res := ~returnVal~0; {31995#(and (<= |PoCallDriver_#res| 0) (<= 0 |PoCallDriver_#res|))} is VALID [2022-04-27 15:15:49,673 INFO L290 TraceCheckUtils]: 61: Hoare triple {31995#(and (<= |PoCallDriver_#res| 0) (<= 0 |PoCallDriver_#res|))} assume true; {31995#(and (<= |PoCallDriver_#res| 0) (<= 0 |PoCallDriver_#res|))} is VALID [2022-04-27 15:15:49,674 INFO L284 TraceCheckUtils]: 62: Hoare quadruple {31995#(and (<= |PoCallDriver_#res| 0) (<= 0 |PoCallDriver_#res|))} {31914#true} #1268#return; {31991#(= |KbFilter_Power_#t~ret136| 0)} is VALID [2022-04-27 15:15:49,674 INFO L290 TraceCheckUtils]: 63: Hoare triple {31991#(= |KbFilter_Power_#t~ret136| 0)} assume -2147483648 <= #t~ret136 && #t~ret136 <= 2147483647;~tmp~3 := #t~ret136;havoc #t~mem135.base, #t~mem135.offset;havoc #t~ret136;#res := ~tmp~3;call ULTIMATE.dealloc(~#powerState~0.base, ~#powerState~0.offset);havoc ~#powerState~0.base, ~#powerState~0.offset; {31992#(= |KbFilter_Power_#res| 0)} is VALID [2022-04-27 15:15:49,675 INFO L290 TraceCheckUtils]: 64: Hoare triple {31992#(= |KbFilter_Power_#res| 0)} assume true; {31992#(= |KbFilter_Power_#res| 0)} is VALID [2022-04-27 15:15:49,675 INFO L284 TraceCheckUtils]: 65: Hoare quadruple {31992#(= |KbFilter_Power_#res| 0)} {31914#true} #1232#return; {31964#(= 0 |main_#t~ret175|)} is VALID [2022-04-27 15:15:49,676 INFO L290 TraceCheckUtils]: 66: Hoare triple {31964#(= 0 |main_#t~ret175|)} assume -2147483648 <= #t~ret175 && #t~ret175 <= 2147483647;~status~5 := #t~ret175;havoc #t~ret175; {31965#(= main_~status~5 0)} is VALID [2022-04-27 15:15:49,676 INFO L290 TraceCheckUtils]: 67: Hoare triple {31965#(= main_~status~5 0)} assume 0 != ~we_should_unload~0; {31965#(= main_~status~5 0)} is VALID [2022-04-27 15:15:49,676 INFO L290 TraceCheckUtils]: 68: Hoare triple {31965#(= main_~status~5 0)} assume !(1 == ~pended~0); {31965#(= main_~status~5 0)} is VALID [2022-04-27 15:15:49,676 INFO L290 TraceCheckUtils]: 69: Hoare triple {31965#(= main_~status~5 0)} assume !(1 == ~pended~0); {31965#(= main_~status~5 0)} is VALID [2022-04-27 15:15:49,677 INFO L290 TraceCheckUtils]: 70: Hoare triple {31965#(= main_~status~5 0)} assume !(~s~0 == ~UNLOADED~0); {31965#(= main_~status~5 0)} is VALID [2022-04-27 15:15:49,677 INFO L290 TraceCheckUtils]: 71: Hoare triple {31965#(= main_~status~5 0)} assume !(-1 == ~status~5); {31965#(= main_~status~5 0)} is VALID [2022-04-27 15:15:49,677 INFO L290 TraceCheckUtils]: 72: Hoare triple {31965#(= main_~status~5 0)} assume !(~s~0 != ~SKIP2~0); {31965#(= main_~status~5 0)} is VALID [2022-04-27 15:15:49,677 INFO L290 TraceCheckUtils]: 73: Hoare triple {31965#(= main_~status~5 0)} assume !(1 == ~pended~0); {31965#(= main_~status~5 0)} is VALID [2022-04-27 15:15:49,678 INFO L290 TraceCheckUtils]: 74: Hoare triple {31965#(= main_~status~5 0)} assume ~s~0 == ~DC~0; {31965#(= main_~status~5 0)} is VALID [2022-04-27 15:15:49,678 INFO L290 TraceCheckUtils]: 75: Hoare triple {31965#(= main_~status~5 0)} assume 259 == ~status~5; {31915#false} is VALID [2022-04-27 15:15:49,678 INFO L272 TraceCheckUtils]: 76: Hoare triple {31915#false} call errorFn(); {31915#false} is VALID [2022-04-27 15:15:49,678 INFO L290 TraceCheckUtils]: 77: Hoare triple {31915#false} assume !false; {31915#false} is VALID [2022-04-27 15:15:49,678 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:15:49,678 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:15:49,678 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [85980232] [2022-04-27 15:15:49,678 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [85980232] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:15:49,679 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:15:49,679 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [15] imperfect sequences [] total 15 [2022-04-27 15:15:49,679 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1565164345] [2022-04-27 15:15:49,679 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:15:49,679 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 15 states have (on average 3.8666666666666667) internal successors, (58), 6 states have internal predecessors, (58), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) Word has length 78 [2022-04-27 15:15:49,680 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:15:49,680 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 15 states, 15 states have (on average 3.8666666666666667) internal successors, (58), 6 states have internal predecessors, (58), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:15:49,743 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 78 edges. 78 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:15:49,743 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2022-04-27 15:15:49,743 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:15:49,743 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2022-04-27 15:15:49,744 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=37, Invalid=173, Unknown=0, NotChecked=0, Total=210 [2022-04-27 15:15:49,744 INFO L87 Difference]: Start difference. First operand 335 states and 429 transitions. Second operand has 15 states, 15 states have (on average 3.8666666666666667) internal successors, (58), 6 states have internal predecessors, (58), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:15:51,877 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:16:03,060 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.66s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:16:09,590 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:16:09,591 INFO L93 Difference]: Finished difference Result 398 states and 505 transitions. [2022-04-27 15:16:09,591 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 16 states. [2022-04-27 15:16:09,591 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 15 states have (on average 3.8666666666666667) internal successors, (58), 6 states have internal predecessors, (58), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) Word has length 78 [2022-04-27 15:16:09,592 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:16:09,592 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 15 states, 15 states have (on average 3.8666666666666667) internal successors, (58), 6 states have internal predecessors, (58), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:16:09,594 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 16 states to 16 states and 444 transitions. [2022-04-27 15:16:09,594 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 15 states, 15 states have (on average 3.8666666666666667) internal successors, (58), 6 states have internal predecessors, (58), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:16:09,596 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 16 states to 16 states and 444 transitions. [2022-04-27 15:16:09,596 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 16 states and 444 transitions. [2022-04-27 15:16:10,086 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 444 edges. 444 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:16:10,092 INFO L225 Difference]: With dead ends: 398 [2022-04-27 15:16:10,092 INFO L226 Difference]: Without dead ends: 354 [2022-04-27 15:16:10,092 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 33 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 34 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=79, Invalid=301, Unknown=0, NotChecked=0, Total=380 [2022-04-27 15:16:10,093 INFO L413 NwaCegarLoop]: 272 mSDtfsCounter, 801 mSDsluCounter, 645 mSDsCounter, 0 mSdLazyCounter, 2182 mSolverCounterSat, 273 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 11.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 805 SdHoareTripleChecker+Valid, 917 SdHoareTripleChecker+Invalid, 2456 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 273 IncrementalHoareTripleChecker+Valid, 2182 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 11.3s IncrementalHoareTripleChecker+Time [2022-04-27 15:16:10,093 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [805 Valid, 917 Invalid, 2456 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [273 Valid, 2182 Invalid, 1 Unknown, 0 Unchecked, 11.3s Time] [2022-04-27 15:16:10,093 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 354 states. [2022-04-27 15:16:10,228 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 354 to 334. [2022-04-27 15:16:10,228 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:16:10,228 INFO L82 GeneralOperation]: Start isEquivalent. First operand 354 states. Second operand has 334 states, 266 states have (on average 1.330827067669173) internal successors, (354), 270 states have internal predecessors, (354), 37 states have call successors, (37), 29 states have call predecessors, (37), 30 states have return successors, (36), 34 states have call predecessors, (36), 32 states have call successors, (36) [2022-04-27 15:16:10,229 INFO L74 IsIncluded]: Start isIncluded. First operand 354 states. Second operand has 334 states, 266 states have (on average 1.330827067669173) internal successors, (354), 270 states have internal predecessors, (354), 37 states have call successors, (37), 29 states have call predecessors, (37), 30 states have return successors, (36), 34 states have call predecessors, (36), 32 states have call successors, (36) [2022-04-27 15:16:10,229 INFO L87 Difference]: Start difference. First operand 354 states. Second operand has 334 states, 266 states have (on average 1.330827067669173) internal successors, (354), 270 states have internal predecessors, (354), 37 states have call successors, (37), 29 states have call predecessors, (37), 30 states have return successors, (36), 34 states have call predecessors, (36), 32 states have call successors, (36) [2022-04-27 15:16:10,237 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:16:10,237 INFO L93 Difference]: Finished difference Result 354 states and 454 transitions. [2022-04-27 15:16:10,237 INFO L276 IsEmpty]: Start isEmpty. Operand 354 states and 454 transitions. [2022-04-27 15:16:10,237 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:16:10,237 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:16:10,238 INFO L74 IsIncluded]: Start isIncluded. First operand has 334 states, 266 states have (on average 1.330827067669173) internal successors, (354), 270 states have internal predecessors, (354), 37 states have call successors, (37), 29 states have call predecessors, (37), 30 states have return successors, (36), 34 states have call predecessors, (36), 32 states have call successors, (36) Second operand 354 states. [2022-04-27 15:16:10,238 INFO L87 Difference]: Start difference. First operand has 334 states, 266 states have (on average 1.330827067669173) internal successors, (354), 270 states have internal predecessors, (354), 37 states have call successors, (37), 29 states have call predecessors, (37), 30 states have return successors, (36), 34 states have call predecessors, (36), 32 states have call successors, (36) Second operand 354 states. [2022-04-27 15:16:10,243 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:16:10,244 INFO L93 Difference]: Finished difference Result 354 states and 454 transitions. [2022-04-27 15:16:10,244 INFO L276 IsEmpty]: Start isEmpty. Operand 354 states and 454 transitions. [2022-04-27 15:16:10,244 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:16:10,244 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:16:10,244 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:16:10,244 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:16:10,245 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 334 states, 266 states have (on average 1.330827067669173) internal successors, (354), 270 states have internal predecessors, (354), 37 states have call successors, (37), 29 states have call predecessors, (37), 30 states have return successors, (36), 34 states have call predecessors, (36), 32 states have call successors, (36) [2022-04-27 15:16:10,250 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 334 states to 334 states and 427 transitions. [2022-04-27 15:16:10,250 INFO L78 Accepts]: Start accepts. Automaton has 334 states and 427 transitions. Word has length 78 [2022-04-27 15:16:10,250 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:16:10,250 INFO L495 AbstractCegarLoop]: Abstraction has 334 states and 427 transitions. [2022-04-27 15:16:10,251 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 15 states have (on average 3.8666666666666667) internal successors, (58), 6 states have internal predecessors, (58), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:16:10,251 INFO L276 IsEmpty]: Start isEmpty. Operand 334 states and 427 transitions. [2022-04-27 15:16:10,251 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 80 [2022-04-27 15:16:10,251 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:16:10,252 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:16:10,252 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable16 [2022-04-27 15:16:10,252 INFO L420 AbstractCegarLoop]: === Iteration 18 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:16:10,252 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:16:10,252 INFO L85 PathProgramCache]: Analyzing trace with hash -1889602735, now seen corresponding path program 1 times [2022-04-27 15:16:10,252 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:16:10,252 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2037850588] [2022-04-27 15:16:10,252 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:16:10,252 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:16:10,311 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:10,376 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:16:10,378 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:10,383 INFO L290 TraceCheckUtils]: 0: Hoare triple {33756#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {33702#true} is VALID [2022-04-27 15:16:10,383 INFO L290 TraceCheckUtils]: 1: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,383 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {33702#true} {33702#true} #1270#return; {33702#true} is VALID [2022-04-27 15:16:10,406 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:16:10,407 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:10,412 INFO L290 TraceCheckUtils]: 0: Hoare triple {33757#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {33702#true} is VALID [2022-04-27 15:16:10,412 INFO L290 TraceCheckUtils]: 1: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,412 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {33702#true} {33702#true} #1216#return; {33702#true} is VALID [2022-04-27 15:16:10,420 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:16:10,427 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:10,434 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:16:10,435 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:10,440 INFO L290 TraceCheckUtils]: 0: Hoare triple {33702#true} ~cond := #in~cond; {33702#true} is VALID [2022-04-27 15:16:10,440 INFO L290 TraceCheckUtils]: 1: Hoare triple {33702#true} assume !(0 == ~cond); {33702#true} is VALID [2022-04-27 15:16:10,441 INFO L290 TraceCheckUtils]: 2: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,441 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {33702#true} {33702#true} #1254#return; {33702#true} is VALID [2022-04-27 15:16:10,442 INFO L290 TraceCheckUtils]: 0: Hoare triple {33758#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {33702#true} is VALID [2022-04-27 15:16:10,442 INFO L272 TraceCheckUtils]: 1: Hoare triple {33702#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {33702#true} is VALID [2022-04-27 15:16:10,442 INFO L290 TraceCheckUtils]: 2: Hoare triple {33702#true} ~cond := #in~cond; {33702#true} is VALID [2022-04-27 15:16:10,442 INFO L290 TraceCheckUtils]: 3: Hoare triple {33702#true} assume !(0 == ~cond); {33702#true} is VALID [2022-04-27 15:16:10,442 INFO L290 TraceCheckUtils]: 4: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,442 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {33702#true} {33702#true} #1254#return; {33702#true} is VALID [2022-04-27 15:16:10,442 INFO L290 TraceCheckUtils]: 6: Hoare triple {33702#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {33702#true} is VALID [2022-04-27 15:16:10,442 INFO L290 TraceCheckUtils]: 7: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,442 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {33702#true} {33702#true} #1218#return; {33702#true} is VALID [2022-04-27 15:16:10,452 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:16:10,455 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:10,460 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:16:10,462 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:10,467 INFO L290 TraceCheckUtils]: 0: Hoare triple {33763#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {33702#true} is VALID [2022-04-27 15:16:10,467 INFO L290 TraceCheckUtils]: 1: Hoare triple {33702#true} assume !(0 == ~__BLAST_NONDET~5); {33702#true} is VALID [2022-04-27 15:16:10,467 INFO L290 TraceCheckUtils]: 2: Hoare triple {33702#true} #res := -1073741823; {33702#true} is VALID [2022-04-27 15:16:10,467 INFO L290 TraceCheckUtils]: 3: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,467 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {33702#true} {33702#true} #1176#return; {33702#true} is VALID [2022-04-27 15:16:10,467 INFO L290 TraceCheckUtils]: 0: Hoare triple {33763#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {33702#true} is VALID [2022-04-27 15:16:10,468 INFO L272 TraceCheckUtils]: 1: Hoare triple {33702#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {33763#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:16:10,469 INFO L290 TraceCheckUtils]: 2: Hoare triple {33763#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {33702#true} is VALID [2022-04-27 15:16:10,469 INFO L290 TraceCheckUtils]: 3: Hoare triple {33702#true} assume !(0 == ~__BLAST_NONDET~5); {33702#true} is VALID [2022-04-27 15:16:10,469 INFO L290 TraceCheckUtils]: 4: Hoare triple {33702#true} #res := -1073741823; {33702#true} is VALID [2022-04-27 15:16:10,469 INFO L290 TraceCheckUtils]: 5: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,469 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {33702#true} {33702#true} #1176#return; {33702#true} is VALID [2022-04-27 15:16:10,469 INFO L290 TraceCheckUtils]: 7: Hoare triple {33702#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {33702#true} is VALID [2022-04-27 15:16:10,469 INFO L290 TraceCheckUtils]: 8: Hoare triple {33702#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {33702#true} is VALID [2022-04-27 15:16:10,469 INFO L290 TraceCheckUtils]: 9: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,469 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {33702#true} {33702#true} #1220#return; {33702#true} is VALID [2022-04-27 15:16:10,482 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:16:10,483 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:10,488 INFO L290 TraceCheckUtils]: 0: Hoare triple {33769#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {33702#true} is VALID [2022-04-27 15:16:10,489 INFO L290 TraceCheckUtils]: 1: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,489 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {33702#true} {33702#true} #1222#return; {33702#true} is VALID [2022-04-27 15:16:10,510 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 45 [2022-04-27 15:16:10,518 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:10,579 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:16:10,582 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:10,624 INFO L290 TraceCheckUtils]: 0: Hoare triple {33784#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {33702#true} is VALID [2022-04-27 15:16:10,625 INFO L290 TraceCheckUtils]: 1: Hoare triple {33702#true} assume !(0 != ~compRegistered~0); {33702#true} is VALID [2022-04-27 15:16:10,625 INFO L290 TraceCheckUtils]: 2: Hoare triple {33702#true} assume 0 == ~__BLAST_NONDET~11; {33702#true} is VALID [2022-04-27 15:16:10,625 INFO L290 TraceCheckUtils]: 3: Hoare triple {33702#true} ~returnVal2~0 := 0; {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:16:10,625 INFO L290 TraceCheckUtils]: 4: Hoare triple {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume !(~s~0 == ~NP~0); {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:16:10,626 INFO L290 TraceCheckUtils]: 5: Hoare triple {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume !(~s~0 == ~MPR1~0); {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:16:10,626 INFO L290 TraceCheckUtils]: 6: Hoare triple {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume ~s~0 == ~SKIP1~0;~s~0 := ~SKIP2~0;~lowerDriverReturn~0 := ~returnVal2~0; {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:16:10,627 INFO L290 TraceCheckUtils]: 7: Hoare triple {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} #res := ~returnVal2~0; {33786#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:16:10,627 INFO L290 TraceCheckUtils]: 8: Hoare triple {33786#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} assume true; {33786#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:16:10,628 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {33786#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} {33702#true} #1200#return; {33781#(= |KbFilter_PnP_#t~ret114| 0)} is VALID [2022-04-27 15:16:10,628 INFO L290 TraceCheckUtils]: 0: Hoare triple {33770#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {33702#true} is VALID [2022-04-27 15:16:10,628 INFO L290 TraceCheckUtils]: 1: Hoare triple {33702#true} assume !(0 == #t~mem81 % 256);havoc #t~mem81;call #t~mem82 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {33702#true} is VALID [2022-04-27 15:16:10,628 INFO L290 TraceCheckUtils]: 2: Hoare triple {33702#true} assume 23 == #t~mem82 % 256;havoc #t~mem82; {33702#true} is VALID [2022-04-27 15:16:10,628 INFO L290 TraceCheckUtils]: 3: Hoare triple {33702#true} call write~int(1, ~devExt~3.base, 53 + ~devExt~3.offset, 1); {33702#true} is VALID [2022-04-27 15:16:10,628 INFO L290 TraceCheckUtils]: 4: Hoare triple {33702#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {33702#true} is VALID [2022-04-27 15:16:10,628 INFO L290 TraceCheckUtils]: 5: Hoare triple {33702#true} call #t~mem111 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem111) % 256 <= 127 then (1 + #t~mem111) % 256 else (1 + #t~mem111) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem111;call #t~mem112.base, #t~mem112.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem112.base, 36 + #t~mem112.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem112.base, #t~mem112.offset;call #t~mem113.base, #t~mem113.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {33702#true} is VALID [2022-04-27 15:16:10,629 INFO L272 TraceCheckUtils]: 6: Hoare triple {33702#true} call #t~ret114 := IofCallDriver(#t~mem113.base, #t~mem113.offset, ~Irp.base, ~Irp.offset); {33784#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:10,629 INFO L290 TraceCheckUtils]: 7: Hoare triple {33784#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {33702#true} is VALID [2022-04-27 15:16:10,630 INFO L290 TraceCheckUtils]: 8: Hoare triple {33702#true} assume !(0 != ~compRegistered~0); {33702#true} is VALID [2022-04-27 15:16:10,630 INFO L290 TraceCheckUtils]: 9: Hoare triple {33702#true} assume 0 == ~__BLAST_NONDET~11; {33702#true} is VALID [2022-04-27 15:16:10,630 INFO L290 TraceCheckUtils]: 10: Hoare triple {33702#true} ~returnVal2~0 := 0; {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:16:10,630 INFO L290 TraceCheckUtils]: 11: Hoare triple {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume !(~s~0 == ~NP~0); {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:16:10,631 INFO L290 TraceCheckUtils]: 12: Hoare triple {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume !(~s~0 == ~MPR1~0); {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:16:10,631 INFO L290 TraceCheckUtils]: 13: Hoare triple {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume ~s~0 == ~SKIP1~0;~s~0 := ~SKIP2~0;~lowerDriverReturn~0 := ~returnVal2~0; {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:16:10,631 INFO L290 TraceCheckUtils]: 14: Hoare triple {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} #res := ~returnVal2~0; {33786#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:16:10,632 INFO L290 TraceCheckUtils]: 15: Hoare triple {33786#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} assume true; {33786#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:16:10,633 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {33786#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} {33702#true} #1200#return; {33781#(= |KbFilter_PnP_#t~ret114| 0)} is VALID [2022-04-27 15:16:10,633 INFO L290 TraceCheckUtils]: 17: Hoare triple {33781#(= |KbFilter_PnP_#t~ret114| 0)} assume -2147483648 <= #t~ret114 && #t~ret114 <= 2147483647;~status~3 := #t~ret114;havoc #t~mem113.base, #t~mem113.offset;havoc #t~ret114; {33782#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:16:10,633 INFO L290 TraceCheckUtils]: 18: Hoare triple {33782#(= KbFilter_PnP_~status~3 0)} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {33783#(= |KbFilter_PnP_#res| 0)} is VALID [2022-04-27 15:16:10,634 INFO L290 TraceCheckUtils]: 19: Hoare triple {33783#(= |KbFilter_PnP_#res| 0)} assume true; {33783#(= |KbFilter_PnP_#res| 0)} is VALID [2022-04-27 15:16:10,634 INFO L284 TraceCheckUtils]: 20: Hoare quadruple {33783#(= |KbFilter_PnP_#res| 0)} {33702#true} #1230#return; {33754#(= 0 |main_#t~ret174|)} is VALID [2022-04-27 15:16:10,636 INFO L272 TraceCheckUtils]: 0: Hoare triple {33702#true} call ULTIMATE.init(); {33756#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:16:10,636 INFO L290 TraceCheckUtils]: 1: Hoare triple {33756#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {33702#true} is VALID [2022-04-27 15:16:10,636 INFO L290 TraceCheckUtils]: 2: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,636 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {33702#true} {33702#true} #1270#return; {33702#true} is VALID [2022-04-27 15:16:10,636 INFO L272 TraceCheckUtils]: 4: Hoare triple {33702#true} call #t~ret213 := main(); {33702#true} is VALID [2022-04-27 15:16:10,636 INFO L290 TraceCheckUtils]: 5: Hoare triple {33702#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {33702#true} is VALID [2022-04-27 15:16:10,637 INFO L272 TraceCheckUtils]: 6: Hoare triple {33702#true} call _BLAST_init(); {33757#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:10,637 INFO L290 TraceCheckUtils]: 7: Hoare triple {33757#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {33702#true} is VALID [2022-04-27 15:16:10,637 INFO L290 TraceCheckUtils]: 8: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,638 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {33702#true} {33702#true} #1216#return; {33702#true} is VALID [2022-04-27 15:16:10,638 INFO L272 TraceCheckUtils]: 10: Hoare triple {33702#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {33758#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:16:10,638 INFO L290 TraceCheckUtils]: 11: Hoare triple {33758#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {33702#true} is VALID [2022-04-27 15:16:10,639 INFO L272 TraceCheckUtils]: 12: Hoare triple {33702#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {33702#true} is VALID [2022-04-27 15:16:10,639 INFO L290 TraceCheckUtils]: 13: Hoare triple {33702#true} ~cond := #in~cond; {33702#true} is VALID [2022-04-27 15:16:10,639 INFO L290 TraceCheckUtils]: 14: Hoare triple {33702#true} assume !(0 == ~cond); {33702#true} is VALID [2022-04-27 15:16:10,639 INFO L290 TraceCheckUtils]: 15: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,639 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {33702#true} {33702#true} #1254#return; {33702#true} is VALID [2022-04-27 15:16:10,639 INFO L290 TraceCheckUtils]: 17: Hoare triple {33702#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {33702#true} is VALID [2022-04-27 15:16:10,639 INFO L290 TraceCheckUtils]: 18: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,639 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {33702#true} {33702#true} #1218#return; {33702#true} is VALID [2022-04-27 15:16:10,639 INFO L290 TraceCheckUtils]: 20: Hoare triple {33702#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {33702#true} is VALID [2022-04-27 15:16:10,639 INFO L290 TraceCheckUtils]: 21: Hoare triple {33702#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {33702#true} is VALID [2022-04-27 15:16:10,639 INFO L290 TraceCheckUtils]: 22: Hoare triple {33702#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {33702#true} is VALID [2022-04-27 15:16:10,640 INFO L272 TraceCheckUtils]: 23: Hoare triple {33702#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {33763#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:16:10,640 INFO L290 TraceCheckUtils]: 24: Hoare triple {33763#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {33702#true} is VALID [2022-04-27 15:16:10,641 INFO L272 TraceCheckUtils]: 25: Hoare triple {33702#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {33763#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:16:10,641 INFO L290 TraceCheckUtils]: 26: Hoare triple {33763#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {33702#true} is VALID [2022-04-27 15:16:10,641 INFO L290 TraceCheckUtils]: 27: Hoare triple {33702#true} assume !(0 == ~__BLAST_NONDET~5); {33702#true} is VALID [2022-04-27 15:16:10,641 INFO L290 TraceCheckUtils]: 28: Hoare triple {33702#true} #res := -1073741823; {33702#true} is VALID [2022-04-27 15:16:10,642 INFO L290 TraceCheckUtils]: 29: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,642 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {33702#true} {33702#true} #1176#return; {33702#true} is VALID [2022-04-27 15:16:10,642 INFO L290 TraceCheckUtils]: 31: Hoare triple {33702#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {33702#true} is VALID [2022-04-27 15:16:10,642 INFO L290 TraceCheckUtils]: 32: Hoare triple {33702#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {33702#true} is VALID [2022-04-27 15:16:10,642 INFO L290 TraceCheckUtils]: 33: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,642 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {33702#true} {33702#true} #1220#return; {33702#true} is VALID [2022-04-27 15:16:10,642 INFO L290 TraceCheckUtils]: 35: Hoare triple {33702#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {33702#true} is VALID [2022-04-27 15:16:10,643 INFO L272 TraceCheckUtils]: 36: Hoare triple {33702#true} call stub_driver_init(); {33769#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:10,643 INFO L290 TraceCheckUtils]: 37: Hoare triple {33769#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {33702#true} is VALID [2022-04-27 15:16:10,643 INFO L290 TraceCheckUtils]: 38: Hoare triple {33702#true} assume true; {33702#true} is VALID [2022-04-27 15:16:10,643 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {33702#true} {33702#true} #1222#return; {33702#true} is VALID [2022-04-27 15:16:10,643 INFO L290 TraceCheckUtils]: 40: Hoare triple {33702#true} assume !!(~status~5 >= 0); {33702#true} is VALID [2022-04-27 15:16:10,643 INFO L290 TraceCheckUtils]: 41: Hoare triple {33702#true} assume !(0 == ~__BLAST_NONDET~0); {33702#true} is VALID [2022-04-27 15:16:10,643 INFO L290 TraceCheckUtils]: 42: Hoare triple {33702#true} assume !(1 == ~__BLAST_NONDET~0); {33702#true} is VALID [2022-04-27 15:16:10,643 INFO L290 TraceCheckUtils]: 43: Hoare triple {33702#true} assume !(2 == ~__BLAST_NONDET~0); {33702#true} is VALID [2022-04-27 15:16:10,643 INFO L290 TraceCheckUtils]: 44: Hoare triple {33702#true} assume 3 == ~__BLAST_NONDET~0; {33702#true} is VALID [2022-04-27 15:16:10,644 INFO L272 TraceCheckUtils]: 45: Hoare triple {33702#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {33770#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:10,644 INFO L290 TraceCheckUtils]: 46: Hoare triple {33770#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {33702#true} is VALID [2022-04-27 15:16:10,644 INFO L290 TraceCheckUtils]: 47: Hoare triple {33702#true} assume !(0 == #t~mem81 % 256);havoc #t~mem81;call #t~mem82 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {33702#true} is VALID [2022-04-27 15:16:10,645 INFO L290 TraceCheckUtils]: 48: Hoare triple {33702#true} assume 23 == #t~mem82 % 256;havoc #t~mem82; {33702#true} is VALID [2022-04-27 15:16:10,645 INFO L290 TraceCheckUtils]: 49: Hoare triple {33702#true} call write~int(1, ~devExt~3.base, 53 + ~devExt~3.offset, 1); {33702#true} is VALID [2022-04-27 15:16:10,645 INFO L290 TraceCheckUtils]: 50: Hoare triple {33702#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {33702#true} is VALID [2022-04-27 15:16:10,645 INFO L290 TraceCheckUtils]: 51: Hoare triple {33702#true} call #t~mem111 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem111) % 256 <= 127 then (1 + #t~mem111) % 256 else (1 + #t~mem111) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem111;call #t~mem112.base, #t~mem112.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem112.base, 36 + #t~mem112.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem112.base, #t~mem112.offset;call #t~mem113.base, #t~mem113.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {33702#true} is VALID [2022-04-27 15:16:10,645 INFO L272 TraceCheckUtils]: 52: Hoare triple {33702#true} call #t~ret114 := IofCallDriver(#t~mem113.base, #t~mem113.offset, ~Irp.base, ~Irp.offset); {33784#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:10,646 INFO L290 TraceCheckUtils]: 53: Hoare triple {33784#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {33702#true} is VALID [2022-04-27 15:16:10,646 INFO L290 TraceCheckUtils]: 54: Hoare triple {33702#true} assume !(0 != ~compRegistered~0); {33702#true} is VALID [2022-04-27 15:16:10,646 INFO L290 TraceCheckUtils]: 55: Hoare triple {33702#true} assume 0 == ~__BLAST_NONDET~11; {33702#true} is VALID [2022-04-27 15:16:10,646 INFO L290 TraceCheckUtils]: 56: Hoare triple {33702#true} ~returnVal2~0 := 0; {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:16:10,646 INFO L290 TraceCheckUtils]: 57: Hoare triple {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume !(~s~0 == ~NP~0); {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:16:10,647 INFO L290 TraceCheckUtils]: 58: Hoare triple {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume !(~s~0 == ~MPR1~0); {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:16:10,647 INFO L290 TraceCheckUtils]: 59: Hoare triple {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume ~s~0 == ~SKIP1~0;~s~0 := ~SKIP2~0;~lowerDriverReturn~0 := ~returnVal2~0; {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:16:10,648 INFO L290 TraceCheckUtils]: 60: Hoare triple {33785#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} #res := ~returnVal2~0; {33786#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:16:10,648 INFO L290 TraceCheckUtils]: 61: Hoare triple {33786#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} assume true; {33786#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:16:10,649 INFO L284 TraceCheckUtils]: 62: Hoare quadruple {33786#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} {33702#true} #1200#return; {33781#(= |KbFilter_PnP_#t~ret114| 0)} is VALID [2022-04-27 15:16:10,649 INFO L290 TraceCheckUtils]: 63: Hoare triple {33781#(= |KbFilter_PnP_#t~ret114| 0)} assume -2147483648 <= #t~ret114 && #t~ret114 <= 2147483647;~status~3 := #t~ret114;havoc #t~mem113.base, #t~mem113.offset;havoc #t~ret114; {33782#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:16:10,649 INFO L290 TraceCheckUtils]: 64: Hoare triple {33782#(= KbFilter_PnP_~status~3 0)} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {33783#(= |KbFilter_PnP_#res| 0)} is VALID [2022-04-27 15:16:10,650 INFO L290 TraceCheckUtils]: 65: Hoare triple {33783#(= |KbFilter_PnP_#res| 0)} assume true; {33783#(= |KbFilter_PnP_#res| 0)} is VALID [2022-04-27 15:16:10,650 INFO L284 TraceCheckUtils]: 66: Hoare quadruple {33783#(= |KbFilter_PnP_#res| 0)} {33702#true} #1230#return; {33754#(= 0 |main_#t~ret174|)} is VALID [2022-04-27 15:16:10,651 INFO L290 TraceCheckUtils]: 67: Hoare triple {33754#(= 0 |main_#t~ret174|)} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {33755#(= main_~status~5 0)} is VALID [2022-04-27 15:16:10,651 INFO L290 TraceCheckUtils]: 68: Hoare triple {33755#(= main_~status~5 0)} assume 0 != ~we_should_unload~0; {33755#(= main_~status~5 0)} is VALID [2022-04-27 15:16:10,651 INFO L290 TraceCheckUtils]: 69: Hoare triple {33755#(= main_~status~5 0)} assume !(1 == ~pended~0); {33755#(= main_~status~5 0)} is VALID [2022-04-27 15:16:10,652 INFO L290 TraceCheckUtils]: 70: Hoare triple {33755#(= main_~status~5 0)} assume !(1 == ~pended~0); {33755#(= main_~status~5 0)} is VALID [2022-04-27 15:16:10,652 INFO L290 TraceCheckUtils]: 71: Hoare triple {33755#(= main_~status~5 0)} assume !(~s~0 == ~UNLOADED~0); {33755#(= main_~status~5 0)} is VALID [2022-04-27 15:16:10,652 INFO L290 TraceCheckUtils]: 72: Hoare triple {33755#(= main_~status~5 0)} assume !(-1 == ~status~5); {33755#(= main_~status~5 0)} is VALID [2022-04-27 15:16:10,652 INFO L290 TraceCheckUtils]: 73: Hoare triple {33755#(= main_~status~5 0)} assume !(~s~0 != ~SKIP2~0); {33755#(= main_~status~5 0)} is VALID [2022-04-27 15:16:10,653 INFO L290 TraceCheckUtils]: 74: Hoare triple {33755#(= main_~status~5 0)} assume !(1 == ~pended~0); {33755#(= main_~status~5 0)} is VALID [2022-04-27 15:16:10,653 INFO L290 TraceCheckUtils]: 75: Hoare triple {33755#(= main_~status~5 0)} assume ~s~0 == ~DC~0; {33755#(= main_~status~5 0)} is VALID [2022-04-27 15:16:10,653 INFO L290 TraceCheckUtils]: 76: Hoare triple {33755#(= main_~status~5 0)} assume 259 == ~status~5; {33703#false} is VALID [2022-04-27 15:16:10,653 INFO L272 TraceCheckUtils]: 77: Hoare triple {33703#false} call errorFn(); {33703#false} is VALID [2022-04-27 15:16:10,653 INFO L290 TraceCheckUtils]: 78: Hoare triple {33703#false} assume !false; {33703#false} is VALID [2022-04-27 15:16:10,653 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:16:10,654 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:16:10,654 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2037850588] [2022-04-27 15:16:10,654 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2037850588] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:16:10,654 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:16:10,654 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [16] imperfect sequences [] total 16 [2022-04-27 15:16:10,654 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [666090277] [2022-04-27 15:16:10,654 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:16:10,654 INFO L78 Accepts]: Start accepts. Automaton has has 16 states, 16 states have (on average 3.6875) internal successors, (59), 7 states have internal predecessors, (59), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) Word has length 79 [2022-04-27 15:16:10,654 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:16:10,655 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 16 states, 16 states have (on average 3.6875) internal successors, (59), 7 states have internal predecessors, (59), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:16:10,717 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 79 edges. 79 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:16:10,717 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 16 states [2022-04-27 15:16:10,717 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:16:10,718 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 16 interpolants. [2022-04-27 15:16:10,718 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=39, Invalid=201, Unknown=0, NotChecked=0, Total=240 [2022-04-27 15:16:10,718 INFO L87 Difference]: Start difference. First operand 334 states and 427 transitions. Second operand has 16 states, 16 states have (on average 3.6875) internal successors, (59), 7 states have internal predecessors, (59), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:16:12,863 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:16:24,681 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:16:24,681 INFO L93 Difference]: Finished difference Result 475 states and 607 transitions. [2022-04-27 15:16:24,681 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2022-04-27 15:16:24,682 INFO L78 Accepts]: Start accepts. Automaton has has 16 states, 16 states have (on average 3.6875) internal successors, (59), 7 states have internal predecessors, (59), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) Word has length 79 [2022-04-27 15:16:24,682 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:16:24,682 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 16 states, 16 states have (on average 3.6875) internal successors, (59), 7 states have internal predecessors, (59), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:16:24,685 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 19 states to 19 states and 510 transitions. [2022-04-27 15:16:24,685 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 16 states, 16 states have (on average 3.6875) internal successors, (59), 7 states have internal predecessors, (59), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:16:24,687 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 19 states to 19 states and 510 transitions. [2022-04-27 15:16:24,688 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 19 states and 510 transitions. [2022-04-27 15:16:25,217 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 510 edges. 510 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:16:25,228 INFO L225 Difference]: With dead ends: 475 [2022-04-27 15:16:25,228 INFO L226 Difference]: Without dead ends: 367 [2022-04-27 15:16:25,229 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 42 GetRequests, 17 SyntacticMatches, 0 SemanticMatches, 25 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 92 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=117, Invalid=585, Unknown=0, NotChecked=0, Total=702 [2022-04-27 15:16:25,229 INFO L413 NwaCegarLoop]: 266 mSDtfsCounter, 1150 mSDsluCounter, 660 mSDsCounter, 0 mSdLazyCounter, 2286 mSolverCounterSat, 408 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 7.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1160 SdHoareTripleChecker+Valid, 926 SdHoareTripleChecker+Invalid, 2695 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 408 IncrementalHoareTripleChecker+Valid, 2286 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 7.9s IncrementalHoareTripleChecker+Time [2022-04-27 15:16:25,229 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1160 Valid, 926 Invalid, 2695 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [408 Valid, 2286 Invalid, 1 Unknown, 0 Unchecked, 7.9s Time] [2022-04-27 15:16:25,230 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 367 states. [2022-04-27 15:16:25,383 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 367 to 338. [2022-04-27 15:16:25,383 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:16:25,384 INFO L82 GeneralOperation]: Start isEquivalent. First operand 367 states. Second operand has 338 states, 270 states have (on average 1.3296296296296297) internal successors, (359), 275 states have internal predecessors, (359), 36 states have call successors, (36), 29 states have call predecessors, (36), 31 states have return successors, (37), 33 states have call predecessors, (37), 31 states have call successors, (37) [2022-04-27 15:16:25,384 INFO L74 IsIncluded]: Start isIncluded. First operand 367 states. Second operand has 338 states, 270 states have (on average 1.3296296296296297) internal successors, (359), 275 states have internal predecessors, (359), 36 states have call successors, (36), 29 states have call predecessors, (36), 31 states have return successors, (37), 33 states have call predecessors, (37), 31 states have call successors, (37) [2022-04-27 15:16:25,385 INFO L87 Difference]: Start difference. First operand 367 states. Second operand has 338 states, 270 states have (on average 1.3296296296296297) internal successors, (359), 275 states have internal predecessors, (359), 36 states have call successors, (36), 29 states have call predecessors, (36), 31 states have return successors, (37), 33 states have call predecessors, (37), 31 states have call successors, (37) [2022-04-27 15:16:25,396 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:16:25,396 INFO L93 Difference]: Finished difference Result 367 states and 469 transitions. [2022-04-27 15:16:25,396 INFO L276 IsEmpty]: Start isEmpty. Operand 367 states and 469 transitions. [2022-04-27 15:16:25,397 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:16:25,397 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:16:25,397 INFO L74 IsIncluded]: Start isIncluded. First operand has 338 states, 270 states have (on average 1.3296296296296297) internal successors, (359), 275 states have internal predecessors, (359), 36 states have call successors, (36), 29 states have call predecessors, (36), 31 states have return successors, (37), 33 states have call predecessors, (37), 31 states have call successors, (37) Second operand 367 states. [2022-04-27 15:16:25,398 INFO L87 Difference]: Start difference. First operand has 338 states, 270 states have (on average 1.3296296296296297) internal successors, (359), 275 states have internal predecessors, (359), 36 states have call successors, (36), 29 states have call predecessors, (36), 31 states have return successors, (37), 33 states have call predecessors, (37), 31 states have call successors, (37) Second operand 367 states. [2022-04-27 15:16:25,405 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:16:25,405 INFO L93 Difference]: Finished difference Result 367 states and 469 transitions. [2022-04-27 15:16:25,405 INFO L276 IsEmpty]: Start isEmpty. Operand 367 states and 469 transitions. [2022-04-27 15:16:25,406 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:16:25,406 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:16:25,406 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:16:25,406 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:16:25,406 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 338 states, 270 states have (on average 1.3296296296296297) internal successors, (359), 275 states have internal predecessors, (359), 36 states have call successors, (36), 29 states have call predecessors, (36), 31 states have return successors, (37), 33 states have call predecessors, (37), 31 states have call successors, (37) [2022-04-27 15:16:25,413 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 338 states to 338 states and 432 transitions. [2022-04-27 15:16:25,414 INFO L78 Accepts]: Start accepts. Automaton has 338 states and 432 transitions. Word has length 79 [2022-04-27 15:16:25,414 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:16:25,414 INFO L495 AbstractCegarLoop]: Abstraction has 338 states and 432 transitions. [2022-04-27 15:16:25,414 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 16 states, 16 states have (on average 3.6875) internal successors, (59), 7 states have internal predecessors, (59), 2 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 1 states have call successors, (9) [2022-04-27 15:16:25,414 INFO L276 IsEmpty]: Start isEmpty. Operand 338 states and 432 transitions. [2022-04-27 15:16:25,415 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 80 [2022-04-27 15:16:25,415 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:16:25,415 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:16:25,415 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17 [2022-04-27 15:16:25,415 INFO L420 AbstractCegarLoop]: === Iteration 19 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:16:25,415 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:16:25,415 INFO L85 PathProgramCache]: Analyzing trace with hash -2045108737, now seen corresponding path program 1 times [2022-04-27 15:16:25,415 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:16:25,415 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2118205190] [2022-04-27 15:16:25,415 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:16:25,415 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:16:25,469 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:25,557 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:16:25,562 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:25,567 INFO L290 TraceCheckUtils]: 0: Hoare triple {35688#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {35635#true} is VALID [2022-04-27 15:16:25,567 INFO L290 TraceCheckUtils]: 1: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,568 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {35635#true} {35635#true} #1270#return; {35635#true} is VALID [2022-04-27 15:16:25,594 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:16:25,598 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:25,609 INFO L290 TraceCheckUtils]: 0: Hoare triple {35689#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,610 INFO L290 TraceCheckUtils]: 1: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} assume true; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,610 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} {35635#true} #1216#return; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,617 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:16:25,625 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:25,633 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:16:25,634 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:25,638 INFO L290 TraceCheckUtils]: 0: Hoare triple {35635#true} ~cond := #in~cond; {35635#true} is VALID [2022-04-27 15:16:25,638 INFO L290 TraceCheckUtils]: 1: Hoare triple {35635#true} assume !(0 == ~cond); {35635#true} is VALID [2022-04-27 15:16:25,638 INFO L290 TraceCheckUtils]: 2: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,638 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {35635#true} {35635#true} #1254#return; {35635#true} is VALID [2022-04-27 15:16:25,638 INFO L290 TraceCheckUtils]: 0: Hoare triple {35690#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {35635#true} is VALID [2022-04-27 15:16:25,639 INFO L272 TraceCheckUtils]: 1: Hoare triple {35635#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {35635#true} is VALID [2022-04-27 15:16:25,639 INFO L290 TraceCheckUtils]: 2: Hoare triple {35635#true} ~cond := #in~cond; {35635#true} is VALID [2022-04-27 15:16:25,639 INFO L290 TraceCheckUtils]: 3: Hoare triple {35635#true} assume !(0 == ~cond); {35635#true} is VALID [2022-04-27 15:16:25,639 INFO L290 TraceCheckUtils]: 4: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,639 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {35635#true} {35635#true} #1254#return; {35635#true} is VALID [2022-04-27 15:16:25,639 INFO L290 TraceCheckUtils]: 6: Hoare triple {35635#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {35635#true} is VALID [2022-04-27 15:16:25,639 INFO L290 TraceCheckUtils]: 7: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,640 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {35635#true} {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} #1218#return; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,649 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:16:25,654 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:25,659 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:16:25,660 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:25,665 INFO L290 TraceCheckUtils]: 0: Hoare triple {35695#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {35635#true} is VALID [2022-04-27 15:16:25,665 INFO L290 TraceCheckUtils]: 1: Hoare triple {35635#true} assume !(0 == ~__BLAST_NONDET~5); {35635#true} is VALID [2022-04-27 15:16:25,665 INFO L290 TraceCheckUtils]: 2: Hoare triple {35635#true} #res := -1073741823; {35635#true} is VALID [2022-04-27 15:16:25,665 INFO L290 TraceCheckUtils]: 3: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,665 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {35635#true} {35635#true} #1176#return; {35635#true} is VALID [2022-04-27 15:16:25,666 INFO L290 TraceCheckUtils]: 0: Hoare triple {35695#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {35635#true} is VALID [2022-04-27 15:16:25,667 INFO L272 TraceCheckUtils]: 1: Hoare triple {35635#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {35695#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:16:25,667 INFO L290 TraceCheckUtils]: 2: Hoare triple {35695#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {35635#true} is VALID [2022-04-27 15:16:25,667 INFO L290 TraceCheckUtils]: 3: Hoare triple {35635#true} assume !(0 == ~__BLAST_NONDET~5); {35635#true} is VALID [2022-04-27 15:16:25,667 INFO L290 TraceCheckUtils]: 4: Hoare triple {35635#true} #res := -1073741823; {35635#true} is VALID [2022-04-27 15:16:25,667 INFO L290 TraceCheckUtils]: 5: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,667 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {35635#true} {35635#true} #1176#return; {35635#true} is VALID [2022-04-27 15:16:25,667 INFO L290 TraceCheckUtils]: 7: Hoare triple {35635#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {35635#true} is VALID [2022-04-27 15:16:25,667 INFO L290 TraceCheckUtils]: 8: Hoare triple {35635#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {35635#true} is VALID [2022-04-27 15:16:25,667 INFO L290 TraceCheckUtils]: 9: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,668 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {35635#true} {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} #1220#return; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,682 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:16:25,683 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:25,688 INFO L290 TraceCheckUtils]: 0: Hoare triple {35701#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {35635#true} is VALID [2022-04-27 15:16:25,688 INFO L290 TraceCheckUtils]: 1: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,689 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {35635#true} {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} #1222#return; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,703 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 46 [2022-04-27 15:16:25,711 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:25,741 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2022-04-27 15:16:25,744 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:25,757 INFO L290 TraceCheckUtils]: 0: Hoare triple {35715#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {35635#true} is VALID [2022-04-27 15:16:25,757 INFO L290 TraceCheckUtils]: 1: Hoare triple {35635#true} assume !(0 != ~compRegistered~0); {35635#true} is VALID [2022-04-27 15:16:25,758 INFO L290 TraceCheckUtils]: 2: Hoare triple {35635#true} assume !(0 == ~__BLAST_NONDET~16); {35635#true} is VALID [2022-04-27 15:16:25,758 INFO L290 TraceCheckUtils]: 3: Hoare triple {35635#true} assume 1 == ~__BLAST_NONDET~16; {35635#true} is VALID [2022-04-27 15:16:25,758 INFO L290 TraceCheckUtils]: 4: Hoare triple {35635#true} ~returnVal~0 := -1073741823; {35635#true} is VALID [2022-04-27 15:16:25,758 INFO L290 TraceCheckUtils]: 5: Hoare triple {35635#true} assume !(~s~0 == ~NP~0); {35635#true} is VALID [2022-04-27 15:16:25,758 INFO L290 TraceCheckUtils]: 6: Hoare triple {35635#true} assume !(~s~0 == ~MPR1~0); {35635#true} is VALID [2022-04-27 15:16:25,758 INFO L290 TraceCheckUtils]: 7: Hoare triple {35635#true} assume ~s~0 == ~SKIP1~0;~s~0 := ~SKIP2~0;~lowerDriverReturn~0 := ~returnVal~0; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,759 INFO L290 TraceCheckUtils]: 8: Hoare triple {35714#(<= ~SKIP2~0 ~s~0)} #res := ~returnVal~0; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,760 INFO L290 TraceCheckUtils]: 9: Hoare triple {35714#(<= ~SKIP2~0 ~s~0)} assume true; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,760 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {35714#(<= ~SKIP2~0 ~s~0)} {35635#true} #1268#return; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,760 INFO L290 TraceCheckUtils]: 0: Hoare triple {35702#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~4.base, ~irpStack~4.offset;havoc ~devExt~4.base, ~devExt~4.offset;call ~#powerState~0.base, ~#powerState~0.offset := #Ultimate.allocOnStack(4);havoc ~powerType~0;havoc ~tmp~3;call #t~mem123.base, #t~mem123.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~4.base, ~devExt~4.offset := #t~mem123.base, #t~mem123.offset;havoc #t~mem123.base, #t~mem123.offset;call #t~mem124.base, #t~mem124.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~4.base, ~irpStack~4.offset := #t~mem124.base, #t~mem124.offset;havoc #t~mem124.base, #t~mem124.offset;call #t~mem125 := read~int(~irpStack~4.base, 8 + ~irpStack~4.offset, 4);~powerType~0 := #t~mem125;havoc #t~mem125;call #t~mem126 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call #t~mem127 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call write~int(#t~mem126, ~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem127, ~#powerState~0.base, ~#powerState~0.offset, 4);havoc #t~mem126;havoc #t~mem127;call #t~mem128 := read~int(~irpStack~4.base, 1 + ~irpStack~4.offset, 1); {35635#true} is VALID [2022-04-27 15:16:25,761 INFO L290 TraceCheckUtils]: 1: Hoare triple {35635#true} assume 2 == #t~mem128 % 256;havoc #t~mem128; {35635#true} is VALID [2022-04-27 15:16:25,761 INFO L290 TraceCheckUtils]: 2: Hoare triple {35635#true} assume 1 == ~powerType~0;call #t~mem132 := read~int(~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem132, ~devExt~4.base, 48 + ~devExt~4.offset, 4);havoc #t~mem132; {35635#true} is VALID [2022-04-27 15:16:25,761 INFO L290 TraceCheckUtils]: 3: Hoare triple {35635#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {35635#true} is VALID [2022-04-27 15:16:25,761 INFO L290 TraceCheckUtils]: 4: Hoare triple {35635#true} call #t~mem133 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem133) % 256 <= 127 then (1 + #t~mem133) % 256 else (1 + #t~mem133) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem133;call #t~mem134.base, #t~mem134.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem134.base, 36 + #t~mem134.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem134.base, #t~mem134.offset;call #t~mem135.base, #t~mem135.offset := read~$Pointer$(~devExt~4.base, 8 + ~devExt~4.offset, 4); {35635#true} is VALID [2022-04-27 15:16:25,761 INFO L272 TraceCheckUtils]: 5: Hoare triple {35635#true} call #t~ret136 := PoCallDriver(#t~mem135.base, #t~mem135.offset, ~Irp.base, ~Irp.offset); {35715#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:25,761 INFO L290 TraceCheckUtils]: 6: Hoare triple {35715#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {35635#true} is VALID [2022-04-27 15:16:25,762 INFO L290 TraceCheckUtils]: 7: Hoare triple {35635#true} assume !(0 != ~compRegistered~0); {35635#true} is VALID [2022-04-27 15:16:25,762 INFO L290 TraceCheckUtils]: 8: Hoare triple {35635#true} assume !(0 == ~__BLAST_NONDET~16); {35635#true} is VALID [2022-04-27 15:16:25,762 INFO L290 TraceCheckUtils]: 9: Hoare triple {35635#true} assume 1 == ~__BLAST_NONDET~16; {35635#true} is VALID [2022-04-27 15:16:25,762 INFO L290 TraceCheckUtils]: 10: Hoare triple {35635#true} ~returnVal~0 := -1073741823; {35635#true} is VALID [2022-04-27 15:16:25,762 INFO L290 TraceCheckUtils]: 11: Hoare triple {35635#true} assume !(~s~0 == ~NP~0); {35635#true} is VALID [2022-04-27 15:16:25,762 INFO L290 TraceCheckUtils]: 12: Hoare triple {35635#true} assume !(~s~0 == ~MPR1~0); {35635#true} is VALID [2022-04-27 15:16:25,762 INFO L290 TraceCheckUtils]: 13: Hoare triple {35635#true} assume ~s~0 == ~SKIP1~0;~s~0 := ~SKIP2~0;~lowerDriverReturn~0 := ~returnVal~0; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,762 INFO L290 TraceCheckUtils]: 14: Hoare triple {35714#(<= ~SKIP2~0 ~s~0)} #res := ~returnVal~0; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,763 INFO L290 TraceCheckUtils]: 15: Hoare triple {35714#(<= ~SKIP2~0 ~s~0)} assume true; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,763 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {35714#(<= ~SKIP2~0 ~s~0)} {35635#true} #1268#return; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,763 INFO L290 TraceCheckUtils]: 17: Hoare triple {35714#(<= ~SKIP2~0 ~s~0)} assume -2147483648 <= #t~ret136 && #t~ret136 <= 2147483647;~tmp~3 := #t~ret136;havoc #t~mem135.base, #t~mem135.offset;havoc #t~ret136;#res := ~tmp~3;call ULTIMATE.dealloc(~#powerState~0.base, ~#powerState~0.offset);havoc ~#powerState~0.base, ~#powerState~0.offset; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,764 INFO L290 TraceCheckUtils]: 18: Hoare triple {35714#(<= ~SKIP2~0 ~s~0)} assume true; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,765 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {35714#(<= ~SKIP2~0 ~s~0)} {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} #1232#return; {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} is VALID [2022-04-27 15:16:25,766 INFO L272 TraceCheckUtils]: 0: Hoare triple {35635#true} call ULTIMATE.init(); {35688#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:16:25,766 INFO L290 TraceCheckUtils]: 1: Hoare triple {35688#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {35635#true} is VALID [2022-04-27 15:16:25,766 INFO L290 TraceCheckUtils]: 2: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,766 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {35635#true} {35635#true} #1270#return; {35635#true} is VALID [2022-04-27 15:16:25,766 INFO L272 TraceCheckUtils]: 4: Hoare triple {35635#true} call #t~ret213 := main(); {35635#true} is VALID [2022-04-27 15:16:25,766 INFO L290 TraceCheckUtils]: 5: Hoare triple {35635#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {35635#true} is VALID [2022-04-27 15:16:25,767 INFO L272 TraceCheckUtils]: 6: Hoare triple {35635#true} call _BLAST_init(); {35689#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:25,768 INFO L290 TraceCheckUtils]: 7: Hoare triple {35689#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,768 INFO L290 TraceCheckUtils]: 8: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} assume true; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,768 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} {35635#true} #1216#return; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,769 INFO L272 TraceCheckUtils]: 10: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {35690#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:16:25,769 INFO L290 TraceCheckUtils]: 11: Hoare triple {35690#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {35635#true} is VALID [2022-04-27 15:16:25,769 INFO L272 TraceCheckUtils]: 12: Hoare triple {35635#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {35635#true} is VALID [2022-04-27 15:16:25,769 INFO L290 TraceCheckUtils]: 13: Hoare triple {35635#true} ~cond := #in~cond; {35635#true} is VALID [2022-04-27 15:16:25,769 INFO L290 TraceCheckUtils]: 14: Hoare triple {35635#true} assume !(0 == ~cond); {35635#true} is VALID [2022-04-27 15:16:25,769 INFO L290 TraceCheckUtils]: 15: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,769 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {35635#true} {35635#true} #1254#return; {35635#true} is VALID [2022-04-27 15:16:25,769 INFO L290 TraceCheckUtils]: 17: Hoare triple {35635#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {35635#true} is VALID [2022-04-27 15:16:25,770 INFO L290 TraceCheckUtils]: 18: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,770 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {35635#true} {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} #1218#return; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,770 INFO L290 TraceCheckUtils]: 20: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,771 INFO L290 TraceCheckUtils]: 21: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,771 INFO L290 TraceCheckUtils]: 22: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,772 INFO L272 TraceCheckUtils]: 23: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {35695#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:16:25,772 INFO L290 TraceCheckUtils]: 24: Hoare triple {35695#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {35635#true} is VALID [2022-04-27 15:16:25,773 INFO L272 TraceCheckUtils]: 25: Hoare triple {35635#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {35695#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:16:25,773 INFO L290 TraceCheckUtils]: 26: Hoare triple {35695#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {35635#true} is VALID [2022-04-27 15:16:25,774 INFO L290 TraceCheckUtils]: 27: Hoare triple {35635#true} assume !(0 == ~__BLAST_NONDET~5); {35635#true} is VALID [2022-04-27 15:16:25,774 INFO L290 TraceCheckUtils]: 28: Hoare triple {35635#true} #res := -1073741823; {35635#true} is VALID [2022-04-27 15:16:25,774 INFO L290 TraceCheckUtils]: 29: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,774 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {35635#true} {35635#true} #1176#return; {35635#true} is VALID [2022-04-27 15:16:25,774 INFO L290 TraceCheckUtils]: 31: Hoare triple {35635#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {35635#true} is VALID [2022-04-27 15:16:25,774 INFO L290 TraceCheckUtils]: 32: Hoare triple {35635#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {35635#true} is VALID [2022-04-27 15:16:25,774 INFO L290 TraceCheckUtils]: 33: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,774 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {35635#true} {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} #1220#return; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,775 INFO L290 TraceCheckUtils]: 35: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,775 INFO L272 TraceCheckUtils]: 36: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} call stub_driver_init(); {35701#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:25,776 INFO L290 TraceCheckUtils]: 37: Hoare triple {35701#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {35635#true} is VALID [2022-04-27 15:16:25,776 INFO L290 TraceCheckUtils]: 38: Hoare triple {35635#true} assume true; {35635#true} is VALID [2022-04-27 15:16:25,776 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {35635#true} {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} #1222#return; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,776 INFO L290 TraceCheckUtils]: 40: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} assume !!(~status~5 >= 0); {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,776 INFO L290 TraceCheckUtils]: 41: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} assume !(0 == ~__BLAST_NONDET~0); {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,777 INFO L290 TraceCheckUtils]: 42: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} assume !(1 == ~__BLAST_NONDET~0); {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,777 INFO L290 TraceCheckUtils]: 43: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} assume !(2 == ~__BLAST_NONDET~0); {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,777 INFO L290 TraceCheckUtils]: 44: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} assume !(3 == ~__BLAST_NONDET~0); {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,778 INFO L290 TraceCheckUtils]: 45: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} assume 4 == ~__BLAST_NONDET~0; {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} is VALID [2022-04-27 15:16:25,779 INFO L272 TraceCheckUtils]: 46: Hoare triple {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} call #t~ret175 := KbFilter_Power(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {35702#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:25,779 INFO L290 TraceCheckUtils]: 47: Hoare triple {35702#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~4.base, ~irpStack~4.offset;havoc ~devExt~4.base, ~devExt~4.offset;call ~#powerState~0.base, ~#powerState~0.offset := #Ultimate.allocOnStack(4);havoc ~powerType~0;havoc ~tmp~3;call #t~mem123.base, #t~mem123.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~4.base, ~devExt~4.offset := #t~mem123.base, #t~mem123.offset;havoc #t~mem123.base, #t~mem123.offset;call #t~mem124.base, #t~mem124.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~4.base, ~irpStack~4.offset := #t~mem124.base, #t~mem124.offset;havoc #t~mem124.base, #t~mem124.offset;call #t~mem125 := read~int(~irpStack~4.base, 8 + ~irpStack~4.offset, 4);~powerType~0 := #t~mem125;havoc #t~mem125;call #t~mem126 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call #t~mem127 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call write~int(#t~mem126, ~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem127, ~#powerState~0.base, ~#powerState~0.offset, 4);havoc #t~mem126;havoc #t~mem127;call #t~mem128 := read~int(~irpStack~4.base, 1 + ~irpStack~4.offset, 1); {35635#true} is VALID [2022-04-27 15:16:25,779 INFO L290 TraceCheckUtils]: 48: Hoare triple {35635#true} assume 2 == #t~mem128 % 256;havoc #t~mem128; {35635#true} is VALID [2022-04-27 15:16:25,779 INFO L290 TraceCheckUtils]: 49: Hoare triple {35635#true} assume 1 == ~powerType~0;call #t~mem132 := read~int(~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem132, ~devExt~4.base, 48 + ~devExt~4.offset, 4);havoc #t~mem132; {35635#true} is VALID [2022-04-27 15:16:25,779 INFO L290 TraceCheckUtils]: 50: Hoare triple {35635#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {35635#true} is VALID [2022-04-27 15:16:25,779 INFO L290 TraceCheckUtils]: 51: Hoare triple {35635#true} call #t~mem133 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem133) % 256 <= 127 then (1 + #t~mem133) % 256 else (1 + #t~mem133) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem133;call #t~mem134.base, #t~mem134.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem134.base, 36 + #t~mem134.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem134.base, #t~mem134.offset;call #t~mem135.base, #t~mem135.offset := read~$Pointer$(~devExt~4.base, 8 + ~devExt~4.offset, 4); {35635#true} is VALID [2022-04-27 15:16:25,780 INFO L272 TraceCheckUtils]: 52: Hoare triple {35635#true} call #t~ret136 := PoCallDriver(#t~mem135.base, #t~mem135.offset, ~Irp.base, ~Irp.offset); {35715#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:25,780 INFO L290 TraceCheckUtils]: 53: Hoare triple {35715#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {35635#true} is VALID [2022-04-27 15:16:25,780 INFO L290 TraceCheckUtils]: 54: Hoare triple {35635#true} assume !(0 != ~compRegistered~0); {35635#true} is VALID [2022-04-27 15:16:25,780 INFO L290 TraceCheckUtils]: 55: Hoare triple {35635#true} assume !(0 == ~__BLAST_NONDET~16); {35635#true} is VALID [2022-04-27 15:16:25,780 INFO L290 TraceCheckUtils]: 56: Hoare triple {35635#true} assume 1 == ~__BLAST_NONDET~16; {35635#true} is VALID [2022-04-27 15:16:25,780 INFO L290 TraceCheckUtils]: 57: Hoare triple {35635#true} ~returnVal~0 := -1073741823; {35635#true} is VALID [2022-04-27 15:16:25,780 INFO L290 TraceCheckUtils]: 58: Hoare triple {35635#true} assume !(~s~0 == ~NP~0); {35635#true} is VALID [2022-04-27 15:16:25,780 INFO L290 TraceCheckUtils]: 59: Hoare triple {35635#true} assume !(~s~0 == ~MPR1~0); {35635#true} is VALID [2022-04-27 15:16:25,780 INFO L290 TraceCheckUtils]: 60: Hoare triple {35635#true} assume ~s~0 == ~SKIP1~0;~s~0 := ~SKIP2~0;~lowerDriverReturn~0 := ~returnVal~0; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,781 INFO L290 TraceCheckUtils]: 61: Hoare triple {35714#(<= ~SKIP2~0 ~s~0)} #res := ~returnVal~0; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,781 INFO L290 TraceCheckUtils]: 62: Hoare triple {35714#(<= ~SKIP2~0 ~s~0)} assume true; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,781 INFO L284 TraceCheckUtils]: 63: Hoare quadruple {35714#(<= ~SKIP2~0 ~s~0)} {35635#true} #1268#return; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,782 INFO L290 TraceCheckUtils]: 64: Hoare triple {35714#(<= ~SKIP2~0 ~s~0)} assume -2147483648 <= #t~ret136 && #t~ret136 <= 2147483647;~tmp~3 := #t~ret136;havoc #t~mem135.base, #t~mem135.offset;havoc #t~ret136;#res := ~tmp~3;call ULTIMATE.dealloc(~#powerState~0.base, ~#powerState~0.offset);havoc ~#powerState~0.base, ~#powerState~0.offset; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,782 INFO L290 TraceCheckUtils]: 65: Hoare triple {35714#(<= ~SKIP2~0 ~s~0)} assume true; {35714#(<= ~SKIP2~0 ~s~0)} is VALID [2022-04-27 15:16:25,783 INFO L284 TraceCheckUtils]: 66: Hoare quadruple {35714#(<= ~SKIP2~0 ~s~0)} {35643#(and (= 2 ~DC~0) (<= 4 ~SKIP2~0))} #1232#return; {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} is VALID [2022-04-27 15:16:25,783 INFO L290 TraceCheckUtils]: 67: Hoare triple {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} assume -2147483648 <= #t~ret175 && #t~ret175 <= 2147483647;~status~5 := #t~ret175;havoc #t~ret175; {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} is VALID [2022-04-27 15:16:25,783 INFO L290 TraceCheckUtils]: 68: Hoare triple {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} assume 0 != ~we_should_unload~0; {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} is VALID [2022-04-27 15:16:25,784 INFO L290 TraceCheckUtils]: 69: Hoare triple {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} assume !(1 == ~pended~0); {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} is VALID [2022-04-27 15:16:25,784 INFO L290 TraceCheckUtils]: 70: Hoare triple {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} assume !(1 == ~pended~0); {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} is VALID [2022-04-27 15:16:25,784 INFO L290 TraceCheckUtils]: 71: Hoare triple {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} assume !(~s~0 == ~UNLOADED~0); {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} is VALID [2022-04-27 15:16:25,785 INFO L290 TraceCheckUtils]: 72: Hoare triple {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} assume !(-1 == ~status~5); {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} is VALID [2022-04-27 15:16:25,785 INFO L290 TraceCheckUtils]: 73: Hoare triple {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} assume !(~s~0 != ~SKIP2~0); {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} is VALID [2022-04-27 15:16:25,785 INFO L290 TraceCheckUtils]: 74: Hoare triple {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} assume !(1 == ~pended~0); {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} is VALID [2022-04-27 15:16:25,786 INFO L290 TraceCheckUtils]: 75: Hoare triple {35687#(and (= 2 ~DC~0) (not (= 2 ~s~0)))} assume ~s~0 == ~DC~0; {35636#false} is VALID [2022-04-27 15:16:25,786 INFO L290 TraceCheckUtils]: 76: Hoare triple {35636#false} assume 259 == ~status~5; {35636#false} is VALID [2022-04-27 15:16:25,786 INFO L272 TraceCheckUtils]: 77: Hoare triple {35636#false} call errorFn(); {35636#false} is VALID [2022-04-27 15:16:25,786 INFO L290 TraceCheckUtils]: 78: Hoare triple {35636#false} assume !false; {35636#false} is VALID [2022-04-27 15:16:25,786 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:16:25,786 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:16:25,786 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2118205190] [2022-04-27 15:16:25,786 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2118205190] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:16:25,786 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:16:25,786 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [12] imperfect sequences [] total 12 [2022-04-27 15:16:25,786 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1564539059] [2022-04-27 15:16:25,787 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:16:25,788 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 12 states have (on average 4.916666666666667) internal successors, (59), 5 states have internal predecessors, (59), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) Word has length 79 [2022-04-27 15:16:25,788 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:16:25,788 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 12 states, 12 states have (on average 4.916666666666667) internal successors, (59), 5 states have internal predecessors, (59), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:16:25,853 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 79 edges. 79 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:16:25,854 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2022-04-27 15:16:25,854 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:16:25,854 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2022-04-27 15:16:25,854 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=31, Invalid=101, Unknown=0, NotChecked=0, Total=132 [2022-04-27 15:16:25,855 INFO L87 Difference]: Start difference. First operand 338 states and 432 transitions. Second operand has 12 states, 12 states have (on average 4.916666666666667) internal successors, (59), 5 states have internal predecessors, (59), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:16:28,035 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:16:36,589 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:16:36,589 INFO L93 Difference]: Finished difference Result 429 states and 546 transitions. [2022-04-27 15:16:36,589 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2022-04-27 15:16:36,590 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 12 states have (on average 4.916666666666667) internal successors, (59), 5 states have internal predecessors, (59), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) Word has length 79 [2022-04-27 15:16:36,590 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:16:36,590 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 12 states, 12 states have (on average 4.916666666666667) internal successors, (59), 5 states have internal predecessors, (59), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:16:36,592 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 21 states to 21 states and 471 transitions. [2022-04-27 15:16:36,593 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 12 states, 12 states have (on average 4.916666666666667) internal successors, (59), 5 states have internal predecessors, (59), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:16:36,605 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 21 states to 21 states and 471 transitions. [2022-04-27 15:16:36,605 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 21 states and 471 transitions. [2022-04-27 15:16:37,153 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 471 edges. 471 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:16:37,159 INFO L225 Difference]: With dead ends: 429 [2022-04-27 15:16:37,160 INFO L226 Difference]: Without dead ends: 376 [2022-04-27 15:16:37,160 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 46 GetRequests, 18 SyntacticMatches, 1 SemanticMatches, 27 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 148 ImplicationChecksByTransitivity, 0.7s TimeCoverageRelationStatistics Valid=210, Invalid=602, Unknown=0, NotChecked=0, Total=812 [2022-04-27 15:16:37,160 INFO L413 NwaCegarLoop]: 277 mSDtfsCounter, 1046 mSDsluCounter, 247 mSDsCounter, 0 mSdLazyCounter, 1159 mSolverCounterSat, 339 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1061 SdHoareTripleChecker+Valid, 524 SdHoareTripleChecker+Invalid, 1499 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 339 IncrementalHoareTripleChecker+Valid, 1159 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.4s IncrementalHoareTripleChecker+Time [2022-04-27 15:16:37,161 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1061 Valid, 524 Invalid, 1499 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [339 Valid, 1159 Invalid, 1 Unknown, 0 Unchecked, 5.4s Time] [2022-04-27 15:16:37,161 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 376 states. [2022-04-27 15:16:37,303 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 376 to 329. [2022-04-27 15:16:37,304 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:16:37,304 INFO L82 GeneralOperation]: Start isEquivalent. First operand 376 states. Second operand has 329 states, 262 states have (on average 1.3244274809160306) internal successors, (347), 266 states have internal predecessors, (347), 36 states have call successors, (36), 29 states have call predecessors, (36), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:16:37,305 INFO L74 IsIncluded]: Start isIncluded. First operand 376 states. Second operand has 329 states, 262 states have (on average 1.3244274809160306) internal successors, (347), 266 states have internal predecessors, (347), 36 states have call successors, (36), 29 states have call predecessors, (36), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:16:37,305 INFO L87 Difference]: Start difference. First operand 376 states. Second operand has 329 states, 262 states have (on average 1.3244274809160306) internal successors, (347), 266 states have internal predecessors, (347), 36 states have call successors, (36), 29 states have call predecessors, (36), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:16:37,310 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:16:37,310 INFO L93 Difference]: Finished difference Result 376 states and 482 transitions. [2022-04-27 15:16:37,310 INFO L276 IsEmpty]: Start isEmpty. Operand 376 states and 482 transitions. [2022-04-27 15:16:37,311 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:16:37,311 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:16:37,311 INFO L74 IsIncluded]: Start isIncluded. First operand has 329 states, 262 states have (on average 1.3244274809160306) internal successors, (347), 266 states have internal predecessors, (347), 36 states have call successors, (36), 29 states have call predecessors, (36), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) Second operand 376 states. [2022-04-27 15:16:37,312 INFO L87 Difference]: Start difference. First operand has 329 states, 262 states have (on average 1.3244274809160306) internal successors, (347), 266 states have internal predecessors, (347), 36 states have call successors, (36), 29 states have call predecessors, (36), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) Second operand 376 states. [2022-04-27 15:16:37,317 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:16:37,317 INFO L93 Difference]: Finished difference Result 376 states and 482 transitions. [2022-04-27 15:16:37,317 INFO L276 IsEmpty]: Start isEmpty. Operand 376 states and 482 transitions. [2022-04-27 15:16:37,318 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:16:37,318 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:16:37,318 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:16:37,318 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:16:37,318 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 329 states, 262 states have (on average 1.3244274809160306) internal successors, (347), 266 states have internal predecessors, (347), 36 states have call successors, (36), 29 states have call predecessors, (36), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:16:37,323 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 329 states to 329 states and 418 transitions. [2022-04-27 15:16:37,323 INFO L78 Accepts]: Start accepts. Automaton has 329 states and 418 transitions. Word has length 79 [2022-04-27 15:16:37,323 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:16:37,324 INFO L495 AbstractCegarLoop]: Abstraction has 329 states and 418 transitions. [2022-04-27 15:16:37,324 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 12 states have (on average 4.916666666666667) internal successors, (59), 5 states have internal predecessors, (59), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:16:37,324 INFO L276 IsEmpty]: Start isEmpty. Operand 329 states and 418 transitions. [2022-04-27 15:16:37,324 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 85 [2022-04-27 15:16:37,325 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:16:37,325 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:16:37,325 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18 [2022-04-27 15:16:37,325 INFO L420 AbstractCegarLoop]: === Iteration 20 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:16:37,325 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:16:37,325 INFO L85 PathProgramCache]: Analyzing trace with hash -1773831806, now seen corresponding path program 1 times [2022-04-27 15:16:37,325 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:16:37,325 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [936065135] [2022-04-27 15:16:37,325 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:16:37,325 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:16:37,382 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:37,447 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:16:37,450 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:37,455 INFO L290 TraceCheckUtils]: 0: Hoare triple {37571#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {37523#true} is VALID [2022-04-27 15:16:37,455 INFO L290 TraceCheckUtils]: 1: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,455 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {37523#true} {37523#true} #1270#return; {37523#true} is VALID [2022-04-27 15:16:37,474 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:16:37,476 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:37,480 INFO L290 TraceCheckUtils]: 0: Hoare triple {37572#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {37523#true} is VALID [2022-04-27 15:16:37,480 INFO L290 TraceCheckUtils]: 1: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,481 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {37523#true} {37523#true} #1216#return; {37523#true} is VALID [2022-04-27 15:16:37,487 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:16:37,492 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:37,503 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:16:37,503 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:37,508 INFO L290 TraceCheckUtils]: 0: Hoare triple {37523#true} ~cond := #in~cond; {37523#true} is VALID [2022-04-27 15:16:37,508 INFO L290 TraceCheckUtils]: 1: Hoare triple {37523#true} assume !(0 == ~cond); {37523#true} is VALID [2022-04-27 15:16:37,508 INFO L290 TraceCheckUtils]: 2: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,508 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {37523#true} {37523#true} #1254#return; {37523#true} is VALID [2022-04-27 15:16:37,508 INFO L290 TraceCheckUtils]: 0: Hoare triple {37573#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {37523#true} is VALID [2022-04-27 15:16:37,508 INFO L272 TraceCheckUtils]: 1: Hoare triple {37523#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {37523#true} is VALID [2022-04-27 15:16:37,508 INFO L290 TraceCheckUtils]: 2: Hoare triple {37523#true} ~cond := #in~cond; {37523#true} is VALID [2022-04-27 15:16:37,508 INFO L290 TraceCheckUtils]: 3: Hoare triple {37523#true} assume !(0 == ~cond); {37523#true} is VALID [2022-04-27 15:16:37,508 INFO L290 TraceCheckUtils]: 4: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,508 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {37523#true} {37523#true} #1254#return; {37523#true} is VALID [2022-04-27 15:16:37,509 INFO L290 TraceCheckUtils]: 6: Hoare triple {37523#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {37523#true} is VALID [2022-04-27 15:16:37,509 INFO L290 TraceCheckUtils]: 7: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,509 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {37523#true} {37523#true} #1218#return; {37523#true} is VALID [2022-04-27 15:16:37,518 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:16:37,521 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:37,527 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:16:37,528 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:37,533 INFO L290 TraceCheckUtils]: 0: Hoare triple {37578#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {37523#true} is VALID [2022-04-27 15:16:37,534 INFO L290 TraceCheckUtils]: 1: Hoare triple {37523#true} assume !(0 == ~__BLAST_NONDET~5); {37523#true} is VALID [2022-04-27 15:16:37,534 INFO L290 TraceCheckUtils]: 2: Hoare triple {37523#true} #res := -1073741823; {37523#true} is VALID [2022-04-27 15:16:37,534 INFO L290 TraceCheckUtils]: 3: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,534 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {37523#true} {37523#true} #1176#return; {37523#true} is VALID [2022-04-27 15:16:37,534 INFO L290 TraceCheckUtils]: 0: Hoare triple {37578#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {37523#true} is VALID [2022-04-27 15:16:37,535 INFO L272 TraceCheckUtils]: 1: Hoare triple {37523#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {37578#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:16:37,535 INFO L290 TraceCheckUtils]: 2: Hoare triple {37578#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {37523#true} is VALID [2022-04-27 15:16:37,535 INFO L290 TraceCheckUtils]: 3: Hoare triple {37523#true} assume !(0 == ~__BLAST_NONDET~5); {37523#true} is VALID [2022-04-27 15:16:37,535 INFO L290 TraceCheckUtils]: 4: Hoare triple {37523#true} #res := -1073741823; {37523#true} is VALID [2022-04-27 15:16:37,535 INFO L290 TraceCheckUtils]: 5: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,535 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {37523#true} {37523#true} #1176#return; {37523#true} is VALID [2022-04-27 15:16:37,535 INFO L290 TraceCheckUtils]: 7: Hoare triple {37523#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {37523#true} is VALID [2022-04-27 15:16:37,535 INFO L290 TraceCheckUtils]: 8: Hoare triple {37523#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {37523#true} is VALID [2022-04-27 15:16:37,535 INFO L290 TraceCheckUtils]: 9: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,535 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {37523#true} {37523#true} #1220#return; {37523#true} is VALID [2022-04-27 15:16:37,547 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:16:37,548 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:37,552 INFO L290 TraceCheckUtils]: 0: Hoare triple {37584#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {37523#true} is VALID [2022-04-27 15:16:37,552 INFO L290 TraceCheckUtils]: 1: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,552 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {37523#true} {37523#true} #1222#return; {37523#true} is VALID [2022-04-27 15:16:37,552 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 49 [2022-04-27 15:16:37,554 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:37,558 INFO L290 TraceCheckUtils]: 0: Hoare triple {37573#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {37523#true} is VALID [2022-04-27 15:16:37,559 INFO L290 TraceCheckUtils]: 1: Hoare triple {37523#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {37523#true} is VALID [2022-04-27 15:16:37,559 INFO L290 TraceCheckUtils]: 2: Hoare triple {37523#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {37523#true} is VALID [2022-04-27 15:16:37,559 INFO L290 TraceCheckUtils]: 3: Hoare triple {37523#true} assume #res.base == dest.base && #res.offset == dest.offset; {37523#true} is VALID [2022-04-27 15:16:37,559 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {37523#true} {37523#true} #1186#return; {37523#true} is VALID [2022-04-27 15:16:37,564 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 62 [2022-04-27 15:16:37,566 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:37,570 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:16:37,571 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:37,576 INFO L290 TraceCheckUtils]: 0: Hoare triple {37585#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {37523#true} is VALID [2022-04-27 15:16:37,576 INFO L290 TraceCheckUtils]: 1: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,576 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {37523#true} {37523#true} #1174#return; {37523#true} is VALID [2022-04-27 15:16:37,576 INFO L290 TraceCheckUtils]: 0: Hoare triple {37585#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {37523#true} is VALID [2022-04-27 15:16:37,576 INFO L272 TraceCheckUtils]: 1: Hoare triple {37523#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {37585#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:16:37,577 INFO L290 TraceCheckUtils]: 2: Hoare triple {37585#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {37523#true} is VALID [2022-04-27 15:16:37,577 INFO L290 TraceCheckUtils]: 3: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,577 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {37523#true} {37523#true} #1174#return; {37523#true} is VALID [2022-04-27 15:16:37,577 INFO L290 TraceCheckUtils]: 5: Hoare triple {37523#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {37523#true} is VALID [2022-04-27 15:16:37,577 INFO L290 TraceCheckUtils]: 6: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,577 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {37523#true} {37523#true} #1210#return; {37523#true} is VALID [2022-04-27 15:16:37,583 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 73 [2022-04-27 15:16:37,584 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:37,590 INFO L290 TraceCheckUtils]: 0: Hoare triple {37589#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} is VALID [2022-04-27 15:16:37,590 INFO L290 TraceCheckUtils]: 1: Hoare triple {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} assume true; {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} is VALID [2022-04-27 15:16:37,591 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} {37523#true} #1212#return; {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} is VALID [2022-04-27 15:16:37,592 INFO L272 TraceCheckUtils]: 0: Hoare triple {37523#true} call ULTIMATE.init(); {37571#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:16:37,592 INFO L290 TraceCheckUtils]: 1: Hoare triple {37571#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {37523#true} is VALID [2022-04-27 15:16:37,592 INFO L290 TraceCheckUtils]: 2: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,592 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {37523#true} {37523#true} #1270#return; {37523#true} is VALID [2022-04-27 15:16:37,592 INFO L272 TraceCheckUtils]: 4: Hoare triple {37523#true} call #t~ret213 := main(); {37523#true} is VALID [2022-04-27 15:16:37,592 INFO L290 TraceCheckUtils]: 5: Hoare triple {37523#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {37523#true} is VALID [2022-04-27 15:16:37,593 INFO L272 TraceCheckUtils]: 6: Hoare triple {37523#true} call _BLAST_init(); {37572#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:37,593 INFO L290 TraceCheckUtils]: 7: Hoare triple {37572#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {37523#true} is VALID [2022-04-27 15:16:37,593 INFO L290 TraceCheckUtils]: 8: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,593 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {37523#true} {37523#true} #1216#return; {37523#true} is VALID [2022-04-27 15:16:37,594 INFO L272 TraceCheckUtils]: 10: Hoare triple {37523#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {37573#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:16:37,594 INFO L290 TraceCheckUtils]: 11: Hoare triple {37573#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {37523#true} is VALID [2022-04-27 15:16:37,594 INFO L272 TraceCheckUtils]: 12: Hoare triple {37523#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {37523#true} is VALID [2022-04-27 15:16:37,594 INFO L290 TraceCheckUtils]: 13: Hoare triple {37523#true} ~cond := #in~cond; {37523#true} is VALID [2022-04-27 15:16:37,594 INFO L290 TraceCheckUtils]: 14: Hoare triple {37523#true} assume !(0 == ~cond); {37523#true} is VALID [2022-04-27 15:16:37,594 INFO L290 TraceCheckUtils]: 15: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,594 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {37523#true} {37523#true} #1254#return; {37523#true} is VALID [2022-04-27 15:16:37,594 INFO L290 TraceCheckUtils]: 17: Hoare triple {37523#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {37523#true} is VALID [2022-04-27 15:16:37,594 INFO L290 TraceCheckUtils]: 18: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,594 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {37523#true} {37523#true} #1218#return; {37523#true} is VALID [2022-04-27 15:16:37,594 INFO L290 TraceCheckUtils]: 20: Hoare triple {37523#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {37523#true} is VALID [2022-04-27 15:16:37,594 INFO L290 TraceCheckUtils]: 21: Hoare triple {37523#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {37523#true} is VALID [2022-04-27 15:16:37,594 INFO L290 TraceCheckUtils]: 22: Hoare triple {37523#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {37523#true} is VALID [2022-04-27 15:16:37,595 INFO L272 TraceCheckUtils]: 23: Hoare triple {37523#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {37578#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:16:37,595 INFO L290 TraceCheckUtils]: 24: Hoare triple {37578#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {37523#true} is VALID [2022-04-27 15:16:37,596 INFO L272 TraceCheckUtils]: 25: Hoare triple {37523#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {37578#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:16:37,596 INFO L290 TraceCheckUtils]: 26: Hoare triple {37578#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {37523#true} is VALID [2022-04-27 15:16:37,596 INFO L290 TraceCheckUtils]: 27: Hoare triple {37523#true} assume !(0 == ~__BLAST_NONDET~5); {37523#true} is VALID [2022-04-27 15:16:37,596 INFO L290 TraceCheckUtils]: 28: Hoare triple {37523#true} #res := -1073741823; {37523#true} is VALID [2022-04-27 15:16:37,596 INFO L290 TraceCheckUtils]: 29: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,596 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {37523#true} {37523#true} #1176#return; {37523#true} is VALID [2022-04-27 15:16:37,596 INFO L290 TraceCheckUtils]: 31: Hoare triple {37523#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {37523#true} is VALID [2022-04-27 15:16:37,596 INFO L290 TraceCheckUtils]: 32: Hoare triple {37523#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {37523#true} is VALID [2022-04-27 15:16:37,597 INFO L290 TraceCheckUtils]: 33: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,597 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {37523#true} {37523#true} #1220#return; {37523#true} is VALID [2022-04-27 15:16:37,597 INFO L290 TraceCheckUtils]: 35: Hoare triple {37523#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {37523#true} is VALID [2022-04-27 15:16:37,597 INFO L272 TraceCheckUtils]: 36: Hoare triple {37523#true} call stub_driver_init(); {37584#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:37,597 INFO L290 TraceCheckUtils]: 37: Hoare triple {37584#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {37523#true} is VALID [2022-04-27 15:16:37,597 INFO L290 TraceCheckUtils]: 38: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,597 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {37523#true} {37523#true} #1222#return; {37523#true} is VALID [2022-04-27 15:16:37,597 INFO L290 TraceCheckUtils]: 40: Hoare triple {37523#true} assume !!(~status~5 >= 0); {37523#true} is VALID [2022-04-27 15:16:37,597 INFO L290 TraceCheckUtils]: 41: Hoare triple {37523#true} assume !(0 == ~__BLAST_NONDET~0); {37523#true} is VALID [2022-04-27 15:16:37,598 INFO L290 TraceCheckUtils]: 42: Hoare triple {37523#true} assume !(1 == ~__BLAST_NONDET~0); {37523#true} is VALID [2022-04-27 15:16:37,598 INFO L290 TraceCheckUtils]: 43: Hoare triple {37523#true} assume !(2 == ~__BLAST_NONDET~0); {37523#true} is VALID [2022-04-27 15:16:37,598 INFO L290 TraceCheckUtils]: 44: Hoare triple {37523#true} assume 3 == ~__BLAST_NONDET~0; {37523#true} is VALID [2022-04-27 15:16:37,598 INFO L272 TraceCheckUtils]: 45: Hoare triple {37523#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {37523#true} is VALID [2022-04-27 15:16:37,598 INFO L290 TraceCheckUtils]: 46: Hoare triple {37523#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {37523#true} is VALID [2022-04-27 15:16:37,598 INFO L290 TraceCheckUtils]: 47: Hoare triple {37523#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {37523#true} is VALID [2022-04-27 15:16:37,598 INFO L290 TraceCheckUtils]: 48: Hoare triple {37523#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {37523#true} is VALID [2022-04-27 15:16:37,599 INFO L272 TraceCheckUtils]: 49: Hoare triple {37523#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {37573#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:16:37,599 INFO L290 TraceCheckUtils]: 50: Hoare triple {37573#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {37523#true} is VALID [2022-04-27 15:16:37,599 INFO L290 TraceCheckUtils]: 51: Hoare triple {37523#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {37523#true} is VALID [2022-04-27 15:16:37,599 INFO L290 TraceCheckUtils]: 52: Hoare triple {37523#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {37523#true} is VALID [2022-04-27 15:16:37,599 INFO L290 TraceCheckUtils]: 53: Hoare triple {37523#true} assume #res.base == dest.base && #res.offset == dest.offset; {37523#true} is VALID [2022-04-27 15:16:37,599 INFO L284 TraceCheckUtils]: 54: Hoare quadruple {37523#true} {37523#true} #1186#return; {37523#true} is VALID [2022-04-27 15:16:37,599 INFO L290 TraceCheckUtils]: 55: Hoare triple {37523#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {37523#true} is VALID [2022-04-27 15:16:37,599 INFO L290 TraceCheckUtils]: 56: Hoare triple {37523#true} assume !(~s~0 != ~NP~0); {37523#true} is VALID [2022-04-27 15:16:37,599 INFO L290 TraceCheckUtils]: 57: Hoare triple {37523#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {37523#true} is VALID [2022-04-27 15:16:37,600 INFO L290 TraceCheckUtils]: 58: Hoare triple {37523#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {37523#true} is VALID [2022-04-27 15:16:37,600 INFO L272 TraceCheckUtils]: 59: Hoare triple {37523#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {37523#true} is VALID [2022-04-27 15:16:37,600 INFO L290 TraceCheckUtils]: 60: Hoare triple {37523#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {37523#true} is VALID [2022-04-27 15:16:37,600 INFO L290 TraceCheckUtils]: 61: Hoare triple {37523#true} assume 0 != ~compRegistered~0; {37523#true} is VALID [2022-04-27 15:16:37,600 INFO L272 TraceCheckUtils]: 62: Hoare triple {37523#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {37585#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:16:37,600 INFO L290 TraceCheckUtils]: 63: Hoare triple {37585#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {37523#true} is VALID [2022-04-27 15:16:37,601 INFO L272 TraceCheckUtils]: 64: Hoare triple {37523#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {37585#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:16:37,601 INFO L290 TraceCheckUtils]: 65: Hoare triple {37585#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {37523#true} is VALID [2022-04-27 15:16:37,601 INFO L290 TraceCheckUtils]: 66: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,601 INFO L284 TraceCheckUtils]: 67: Hoare quadruple {37523#true} {37523#true} #1174#return; {37523#true} is VALID [2022-04-27 15:16:37,601 INFO L290 TraceCheckUtils]: 68: Hoare triple {37523#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {37523#true} is VALID [2022-04-27 15:16:37,601 INFO L290 TraceCheckUtils]: 69: Hoare triple {37523#true} assume true; {37523#true} is VALID [2022-04-27 15:16:37,601 INFO L284 TraceCheckUtils]: 70: Hoare quadruple {37523#true} {37523#true} #1210#return; {37523#true} is VALID [2022-04-27 15:16:37,601 INFO L290 TraceCheckUtils]: 71: Hoare triple {37523#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {37523#true} is VALID [2022-04-27 15:16:37,601 INFO L290 TraceCheckUtils]: 72: Hoare triple {37523#true} assume -1073741802 == ~compRetStatus~0; {37523#true} is VALID [2022-04-27 15:16:37,602 INFO L272 TraceCheckUtils]: 73: Hoare triple {37523#true} call stubMoreProcessingRequired(); {37589#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:16:37,602 INFO L290 TraceCheckUtils]: 74: Hoare triple {37589#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} is VALID [2022-04-27 15:16:37,602 INFO L290 TraceCheckUtils]: 75: Hoare triple {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} assume true; {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} is VALID [2022-04-27 15:16:37,602 INFO L284 TraceCheckUtils]: 76: Hoare quadruple {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} {37523#true} #1212#return; {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} is VALID [2022-04-27 15:16:37,603 INFO L290 TraceCheckUtils]: 77: Hoare triple {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} assume 0 == ~__BLAST_NONDET~11; {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} is VALID [2022-04-27 15:16:37,603 INFO L290 TraceCheckUtils]: 78: Hoare triple {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} ~returnVal2~0 := 0; {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} is VALID [2022-04-27 15:16:37,603 INFO L290 TraceCheckUtils]: 79: Hoare triple {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} assume !(~s~0 == ~NP~0); {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} is VALID [2022-04-27 15:16:37,604 INFO L290 TraceCheckUtils]: 80: Hoare triple {37570#(= (+ ~MPR1~0 (* (- 1) ~s~0)) 0)} assume !(~s~0 == ~MPR1~0); {37524#false} is VALID [2022-04-27 15:16:37,604 INFO L290 TraceCheckUtils]: 81: Hoare triple {37524#false} assume !(~s~0 == ~SKIP1~0); {37524#false} is VALID [2022-04-27 15:16:37,604 INFO L272 TraceCheckUtils]: 82: Hoare triple {37524#false} call errorFn(); {37524#false} is VALID [2022-04-27 15:16:37,604 INFO L290 TraceCheckUtils]: 83: Hoare triple {37524#false} assume !false; {37524#false} is VALID [2022-04-27 15:16:37,605 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:16:37,605 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:16:37,605 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [936065135] [2022-04-27 15:16:37,605 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [936065135] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:16:37,605 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:16:37,605 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2022-04-27 15:16:37,605 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [801733893] [2022-04-27 15:16:37,605 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:16:37,606 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 5.8) internal successors, (58), 3 states have internal predecessors, (58), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) Word has length 84 [2022-04-27 15:16:37,606 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:16:37,607 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 10 states, 10 states have (on average 5.8) internal successors, (58), 3 states have internal predecessors, (58), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) [2022-04-27 15:16:37,666 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 84 edges. 84 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:16:37,666 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2022-04-27 15:16:37,667 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:16:37,667 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2022-04-27 15:16:37,667 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=27, Invalid=63, Unknown=0, NotChecked=0, Total=90 [2022-04-27 15:16:37,667 INFO L87 Difference]: Start difference. First operand 329 states and 418 transitions. Second operand has 10 states, 10 states have (on average 5.8) internal successors, (58), 3 states have internal predecessors, (58), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) [2022-04-27 15:16:40,121 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.53s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:16:43,757 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.61s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:16:47,690 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.91s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:16:52,231 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:16:52,231 INFO L93 Difference]: Finished difference Result 416 states and 527 transitions. [2022-04-27 15:16:52,231 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2022-04-27 15:16:52,231 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 5.8) internal successors, (58), 3 states have internal predecessors, (58), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) Word has length 84 [2022-04-27 15:16:52,231 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:16:52,231 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 5.8) internal successors, (58), 3 states have internal predecessors, (58), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) [2022-04-27 15:16:52,234 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 17 states to 17 states and 452 transitions. [2022-04-27 15:16:52,234 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 5.8) internal successors, (58), 3 states have internal predecessors, (58), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) [2022-04-27 15:16:52,236 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 17 states to 17 states and 452 transitions. [2022-04-27 15:16:52,236 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 17 states and 452 transitions. [2022-04-27 15:16:52,707 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 452 edges. 452 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:16:52,713 INFO L225 Difference]: With dead ends: 416 [2022-04-27 15:16:52,713 INFO L226 Difference]: Without dead ends: 357 [2022-04-27 15:16:52,714 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 40 GetRequests, 22 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 56 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=114, Invalid=266, Unknown=0, NotChecked=0, Total=380 [2022-04-27 15:16:52,714 INFO L413 NwaCegarLoop]: 265 mSDtfsCounter, 492 mSDsluCounter, 227 mSDsCounter, 0 mSdLazyCounter, 833 mSolverCounterSat, 190 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 7.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 495 SdHoareTripleChecker+Valid, 492 SdHoareTripleChecker+Invalid, 1023 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 190 IncrementalHoareTripleChecker+Valid, 833 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 7.1s IncrementalHoareTripleChecker+Time [2022-04-27 15:16:52,714 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [495 Valid, 492 Invalid, 1023 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [190 Valid, 833 Invalid, 0 Unknown, 0 Unchecked, 7.1s Time] [2022-04-27 15:16:52,715 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 357 states. [2022-04-27 15:16:52,872 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 357 to 327. [2022-04-27 15:16:52,872 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:16:52,874 INFO L82 GeneralOperation]: Start isEquivalent. First operand 357 states. Second operand has 327 states, 261 states have (on average 1.314176245210728) internal successors, (343), 264 states have internal predecessors, (343), 35 states have call successors, (35), 29 states have call predecessors, (35), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:16:52,874 INFO L74 IsIncluded]: Start isIncluded. First operand 357 states. Second operand has 327 states, 261 states have (on average 1.314176245210728) internal successors, (343), 264 states have internal predecessors, (343), 35 states have call successors, (35), 29 states have call predecessors, (35), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:16:52,874 INFO L87 Difference]: Start difference. First operand 357 states. Second operand has 327 states, 261 states have (on average 1.314176245210728) internal successors, (343), 264 states have internal predecessors, (343), 35 states have call successors, (35), 29 states have call predecessors, (35), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:16:52,879 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:16:52,879 INFO L93 Difference]: Finished difference Result 357 states and 452 transitions. [2022-04-27 15:16:52,879 INFO L276 IsEmpty]: Start isEmpty. Operand 357 states and 452 transitions. [2022-04-27 15:16:52,879 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:16:52,879 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:16:52,880 INFO L74 IsIncluded]: Start isIncluded. First operand has 327 states, 261 states have (on average 1.314176245210728) internal successors, (343), 264 states have internal predecessors, (343), 35 states have call successors, (35), 29 states have call predecessors, (35), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) Second operand 357 states. [2022-04-27 15:16:52,880 INFO L87 Difference]: Start difference. First operand has 327 states, 261 states have (on average 1.314176245210728) internal successors, (343), 264 states have internal predecessors, (343), 35 states have call successors, (35), 29 states have call predecessors, (35), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) Second operand 357 states. [2022-04-27 15:16:52,884 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:16:52,885 INFO L93 Difference]: Finished difference Result 357 states and 452 transitions. [2022-04-27 15:16:52,885 INFO L276 IsEmpty]: Start isEmpty. Operand 357 states and 452 transitions. [2022-04-27 15:16:52,885 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:16:52,885 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:16:52,885 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:16:52,885 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:16:52,886 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 327 states, 261 states have (on average 1.314176245210728) internal successors, (343), 264 states have internal predecessors, (343), 35 states have call successors, (35), 29 states have call predecessors, (35), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:16:52,892 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 327 states to 327 states and 413 transitions. [2022-04-27 15:16:52,892 INFO L78 Accepts]: Start accepts. Automaton has 327 states and 413 transitions. Word has length 84 [2022-04-27 15:16:52,892 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:16:52,892 INFO L495 AbstractCegarLoop]: Abstraction has 327 states and 413 transitions. [2022-04-27 15:16:52,892 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 10 states have (on average 5.8) internal successors, (58), 3 states have internal predecessors, (58), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) [2022-04-27 15:16:52,892 INFO L276 IsEmpty]: Start isEmpty. Operand 327 states and 413 transitions. [2022-04-27 15:16:52,893 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 81 [2022-04-27 15:16:52,893 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:16:52,893 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:16:52,893 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19 [2022-04-27 15:16:52,894 INFO L420 AbstractCegarLoop]: === Iteration 21 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:16:52,894 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:16:52,894 INFO L85 PathProgramCache]: Analyzing trace with hash -1690581556, now seen corresponding path program 1 times [2022-04-27 15:16:52,894 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:16:52,894 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1796244860] [2022-04-27 15:16:52,894 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:16:52,894 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:16:52,943 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:53,027 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:16:53,029 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:53,033 INFO L290 TraceCheckUtils]: 0: Hoare triple {39385#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {39333#true} is VALID [2022-04-27 15:16:53,034 INFO L290 TraceCheckUtils]: 1: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,034 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {39333#true} {39333#true} #1270#return; {39333#true} is VALID [2022-04-27 15:16:53,051 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:16:53,055 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:53,067 INFO L290 TraceCheckUtils]: 0: Hoare triple {39386#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {39387#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} is VALID [2022-04-27 15:16:53,068 INFO L290 TraceCheckUtils]: 1: Hoare triple {39387#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} assume true; {39387#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} is VALID [2022-04-27 15:16:53,068 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {39387#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} {39333#true} #1216#return; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,074 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:16:53,081 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:53,088 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:16:53,089 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:53,093 INFO L290 TraceCheckUtils]: 0: Hoare triple {39333#true} ~cond := #in~cond; {39333#true} is VALID [2022-04-27 15:16:53,093 INFO L290 TraceCheckUtils]: 1: Hoare triple {39333#true} assume !(0 == ~cond); {39333#true} is VALID [2022-04-27 15:16:53,093 INFO L290 TraceCheckUtils]: 2: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,093 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {39333#true} {39333#true} #1254#return; {39333#true} is VALID [2022-04-27 15:16:53,094 INFO L290 TraceCheckUtils]: 0: Hoare triple {39388#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {39333#true} is VALID [2022-04-27 15:16:53,094 INFO L272 TraceCheckUtils]: 1: Hoare triple {39333#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {39333#true} is VALID [2022-04-27 15:16:53,094 INFO L290 TraceCheckUtils]: 2: Hoare triple {39333#true} ~cond := #in~cond; {39333#true} is VALID [2022-04-27 15:16:53,094 INFO L290 TraceCheckUtils]: 3: Hoare triple {39333#true} assume !(0 == ~cond); {39333#true} is VALID [2022-04-27 15:16:53,094 INFO L290 TraceCheckUtils]: 4: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,094 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {39333#true} {39333#true} #1254#return; {39333#true} is VALID [2022-04-27 15:16:53,094 INFO L290 TraceCheckUtils]: 6: Hoare triple {39333#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {39333#true} is VALID [2022-04-27 15:16:53,094 INFO L290 TraceCheckUtils]: 7: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,095 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {39333#true} {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1218#return; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,103 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:16:53,107 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:53,115 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:16:53,116 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:53,121 INFO L290 TraceCheckUtils]: 0: Hoare triple {39393#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {39333#true} is VALID [2022-04-27 15:16:53,121 INFO L290 TraceCheckUtils]: 1: Hoare triple {39333#true} assume !(0 == ~__BLAST_NONDET~5); {39333#true} is VALID [2022-04-27 15:16:53,121 INFO L290 TraceCheckUtils]: 2: Hoare triple {39333#true} #res := -1073741823; {39333#true} is VALID [2022-04-27 15:16:53,121 INFO L290 TraceCheckUtils]: 3: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,121 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {39333#true} {39333#true} #1176#return; {39333#true} is VALID [2022-04-27 15:16:53,121 INFO L290 TraceCheckUtils]: 0: Hoare triple {39393#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {39333#true} is VALID [2022-04-27 15:16:53,122 INFO L272 TraceCheckUtils]: 1: Hoare triple {39333#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {39393#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:16:53,122 INFO L290 TraceCheckUtils]: 2: Hoare triple {39393#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {39333#true} is VALID [2022-04-27 15:16:53,122 INFO L290 TraceCheckUtils]: 3: Hoare triple {39333#true} assume !(0 == ~__BLAST_NONDET~5); {39333#true} is VALID [2022-04-27 15:16:53,123 INFO L290 TraceCheckUtils]: 4: Hoare triple {39333#true} #res := -1073741823; {39333#true} is VALID [2022-04-27 15:16:53,123 INFO L290 TraceCheckUtils]: 5: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,123 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {39333#true} {39333#true} #1176#return; {39333#true} is VALID [2022-04-27 15:16:53,123 INFO L290 TraceCheckUtils]: 7: Hoare triple {39333#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {39333#true} is VALID [2022-04-27 15:16:53,123 INFO L290 TraceCheckUtils]: 8: Hoare triple {39333#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {39333#true} is VALID [2022-04-27 15:16:53,123 INFO L290 TraceCheckUtils]: 9: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,123 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {39333#true} {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1220#return; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,135 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:16:53,137 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:53,142 INFO L290 TraceCheckUtils]: 0: Hoare triple {39399#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {39333#true} is VALID [2022-04-27 15:16:53,142 INFO L290 TraceCheckUtils]: 1: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,142 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {39333#true} {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1222#return; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,155 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 46 [2022-04-27 15:16:53,161 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:53,177 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2022-04-27 15:16:53,180 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:16:53,195 INFO L290 TraceCheckUtils]: 0: Hoare triple {39412#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {39333#true} is VALID [2022-04-27 15:16:53,195 INFO L290 TraceCheckUtils]: 1: Hoare triple {39333#true} assume !(0 != ~compRegistered~0); {39333#true} is VALID [2022-04-27 15:16:53,195 INFO L290 TraceCheckUtils]: 2: Hoare triple {39333#true} assume !(0 == ~__BLAST_NONDET~16); {39333#true} is VALID [2022-04-27 15:16:53,195 INFO L290 TraceCheckUtils]: 3: Hoare triple {39333#true} assume 1 == ~__BLAST_NONDET~16; {39333#true} is VALID [2022-04-27 15:16:53,195 INFO L290 TraceCheckUtils]: 4: Hoare triple {39333#true} ~returnVal~0 := -1073741823; {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} is VALID [2022-04-27 15:16:53,195 INFO L290 TraceCheckUtils]: 5: Hoare triple {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} assume !(~s~0 == ~NP~0); {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} is VALID [2022-04-27 15:16:53,196 INFO L290 TraceCheckUtils]: 6: Hoare triple {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} assume ~s~0 == ~MPR1~0; {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} is VALID [2022-04-27 15:16:53,196 INFO L290 TraceCheckUtils]: 7: Hoare triple {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} assume 259 == ~returnVal~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal~0; {39334#false} is VALID [2022-04-27 15:16:53,196 INFO L290 TraceCheckUtils]: 8: Hoare triple {39334#false} #res := ~returnVal~0; {39334#false} is VALID [2022-04-27 15:16:53,196 INFO L290 TraceCheckUtils]: 9: Hoare triple {39334#false} assume true; {39334#false} is VALID [2022-04-27 15:16:53,196 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {39334#false} {39333#true} #1268#return; {39334#false} is VALID [2022-04-27 15:16:53,196 INFO L290 TraceCheckUtils]: 0: Hoare triple {39400#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~4.base, ~irpStack~4.offset;havoc ~devExt~4.base, ~devExt~4.offset;call ~#powerState~0.base, ~#powerState~0.offset := #Ultimate.allocOnStack(4);havoc ~powerType~0;havoc ~tmp~3;call #t~mem123.base, #t~mem123.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~4.base, ~devExt~4.offset := #t~mem123.base, #t~mem123.offset;havoc #t~mem123.base, #t~mem123.offset;call #t~mem124.base, #t~mem124.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~4.base, ~irpStack~4.offset := #t~mem124.base, #t~mem124.offset;havoc #t~mem124.base, #t~mem124.offset;call #t~mem125 := read~int(~irpStack~4.base, 8 + ~irpStack~4.offset, 4);~powerType~0 := #t~mem125;havoc #t~mem125;call #t~mem126 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call #t~mem127 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call write~int(#t~mem126, ~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem127, ~#powerState~0.base, ~#powerState~0.offset, 4);havoc #t~mem126;havoc #t~mem127;call #t~mem128 := read~int(~irpStack~4.base, 1 + ~irpStack~4.offset, 1); {39333#true} is VALID [2022-04-27 15:16:53,196 INFO L290 TraceCheckUtils]: 1: Hoare triple {39333#true} assume 2 == #t~mem128 % 256;havoc #t~mem128; {39333#true} is VALID [2022-04-27 15:16:53,197 INFO L290 TraceCheckUtils]: 2: Hoare triple {39333#true} assume 1 == ~powerType~0;call #t~mem132 := read~int(~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem132, ~devExt~4.base, 48 + ~devExt~4.offset, 4);havoc #t~mem132; {39333#true} is VALID [2022-04-27 15:16:53,197 INFO L290 TraceCheckUtils]: 3: Hoare triple {39333#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {39333#true} is VALID [2022-04-27 15:16:53,197 INFO L290 TraceCheckUtils]: 4: Hoare triple {39333#true} call #t~mem133 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem133) % 256 <= 127 then (1 + #t~mem133) % 256 else (1 + #t~mem133) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem133;call #t~mem134.base, #t~mem134.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem134.base, 36 + #t~mem134.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem134.base, #t~mem134.offset;call #t~mem135.base, #t~mem135.offset := read~$Pointer$(~devExt~4.base, 8 + ~devExt~4.offset, 4); {39333#true} is VALID [2022-04-27 15:16:53,197 INFO L272 TraceCheckUtils]: 5: Hoare triple {39333#true} call #t~ret136 := PoCallDriver(#t~mem135.base, #t~mem135.offset, ~Irp.base, ~Irp.offset); {39412#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:53,197 INFO L290 TraceCheckUtils]: 6: Hoare triple {39412#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {39333#true} is VALID [2022-04-27 15:16:53,197 INFO L290 TraceCheckUtils]: 7: Hoare triple {39333#true} assume !(0 != ~compRegistered~0); {39333#true} is VALID [2022-04-27 15:16:53,197 INFO L290 TraceCheckUtils]: 8: Hoare triple {39333#true} assume !(0 == ~__BLAST_NONDET~16); {39333#true} is VALID [2022-04-27 15:16:53,198 INFO L290 TraceCheckUtils]: 9: Hoare triple {39333#true} assume 1 == ~__BLAST_NONDET~16; {39333#true} is VALID [2022-04-27 15:16:53,198 INFO L290 TraceCheckUtils]: 10: Hoare triple {39333#true} ~returnVal~0 := -1073741823; {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} is VALID [2022-04-27 15:16:53,198 INFO L290 TraceCheckUtils]: 11: Hoare triple {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} assume !(~s~0 == ~NP~0); {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} is VALID [2022-04-27 15:16:53,198 INFO L290 TraceCheckUtils]: 12: Hoare triple {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} assume ~s~0 == ~MPR1~0; {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} is VALID [2022-04-27 15:16:53,199 INFO L290 TraceCheckUtils]: 13: Hoare triple {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} assume 259 == ~returnVal~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal~0; {39334#false} is VALID [2022-04-27 15:16:53,199 INFO L290 TraceCheckUtils]: 14: Hoare triple {39334#false} #res := ~returnVal~0; {39334#false} is VALID [2022-04-27 15:16:53,199 INFO L290 TraceCheckUtils]: 15: Hoare triple {39334#false} assume true; {39334#false} is VALID [2022-04-27 15:16:53,199 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {39334#false} {39333#true} #1268#return; {39334#false} is VALID [2022-04-27 15:16:53,199 INFO L290 TraceCheckUtils]: 17: Hoare triple {39334#false} assume -2147483648 <= #t~ret136 && #t~ret136 <= 2147483647;~tmp~3 := #t~ret136;havoc #t~mem135.base, #t~mem135.offset;havoc #t~ret136;#res := ~tmp~3;call ULTIMATE.dealloc(~#powerState~0.base, ~#powerState~0.offset);havoc ~#powerState~0.base, ~#powerState~0.offset; {39334#false} is VALID [2022-04-27 15:16:53,199 INFO L290 TraceCheckUtils]: 18: Hoare triple {39334#false} assume true; {39334#false} is VALID [2022-04-27 15:16:53,199 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {39334#false} {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1232#return; {39334#false} is VALID [2022-04-27 15:16:53,200 INFO L272 TraceCheckUtils]: 0: Hoare triple {39333#true} call ULTIMATE.init(); {39385#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:16:53,200 INFO L290 TraceCheckUtils]: 1: Hoare triple {39385#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {39333#true} is VALID [2022-04-27 15:16:53,200 INFO L290 TraceCheckUtils]: 2: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,200 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {39333#true} {39333#true} #1270#return; {39333#true} is VALID [2022-04-27 15:16:53,200 INFO L272 TraceCheckUtils]: 4: Hoare triple {39333#true} call #t~ret213 := main(); {39333#true} is VALID [2022-04-27 15:16:53,200 INFO L290 TraceCheckUtils]: 5: Hoare triple {39333#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {39333#true} is VALID [2022-04-27 15:16:53,201 INFO L272 TraceCheckUtils]: 6: Hoare triple {39333#true} call _BLAST_init(); {39386#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:53,202 INFO L290 TraceCheckUtils]: 7: Hoare triple {39386#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {39387#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} is VALID [2022-04-27 15:16:53,202 INFO L290 TraceCheckUtils]: 8: Hoare triple {39387#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} assume true; {39387#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} is VALID [2022-04-27 15:16:53,202 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {39387#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} {39333#true} #1216#return; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,203 INFO L272 TraceCheckUtils]: 10: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {39388#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:16:53,203 INFO L290 TraceCheckUtils]: 11: Hoare triple {39388#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {39333#true} is VALID [2022-04-27 15:16:53,203 INFO L272 TraceCheckUtils]: 12: Hoare triple {39333#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {39333#true} is VALID [2022-04-27 15:16:53,203 INFO L290 TraceCheckUtils]: 13: Hoare triple {39333#true} ~cond := #in~cond; {39333#true} is VALID [2022-04-27 15:16:53,203 INFO L290 TraceCheckUtils]: 14: Hoare triple {39333#true} assume !(0 == ~cond); {39333#true} is VALID [2022-04-27 15:16:53,203 INFO L290 TraceCheckUtils]: 15: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,203 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {39333#true} {39333#true} #1254#return; {39333#true} is VALID [2022-04-27 15:16:53,203 INFO L290 TraceCheckUtils]: 17: Hoare triple {39333#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {39333#true} is VALID [2022-04-27 15:16:53,203 INFO L290 TraceCheckUtils]: 18: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,204 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {39333#true} {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1218#return; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,204 INFO L290 TraceCheckUtils]: 20: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,205 INFO L290 TraceCheckUtils]: 21: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,205 INFO L290 TraceCheckUtils]: 22: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,206 INFO L272 TraceCheckUtils]: 23: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {39393#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:16:53,206 INFO L290 TraceCheckUtils]: 24: Hoare triple {39393#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {39333#true} is VALID [2022-04-27 15:16:53,207 INFO L272 TraceCheckUtils]: 25: Hoare triple {39333#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {39393#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:16:53,207 INFO L290 TraceCheckUtils]: 26: Hoare triple {39393#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {39333#true} is VALID [2022-04-27 15:16:53,207 INFO L290 TraceCheckUtils]: 27: Hoare triple {39333#true} assume !(0 == ~__BLAST_NONDET~5); {39333#true} is VALID [2022-04-27 15:16:53,207 INFO L290 TraceCheckUtils]: 28: Hoare triple {39333#true} #res := -1073741823; {39333#true} is VALID [2022-04-27 15:16:53,207 INFO L290 TraceCheckUtils]: 29: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,207 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {39333#true} {39333#true} #1176#return; {39333#true} is VALID [2022-04-27 15:16:53,207 INFO L290 TraceCheckUtils]: 31: Hoare triple {39333#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {39333#true} is VALID [2022-04-27 15:16:53,207 INFO L290 TraceCheckUtils]: 32: Hoare triple {39333#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {39333#true} is VALID [2022-04-27 15:16:53,207 INFO L290 TraceCheckUtils]: 33: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,208 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {39333#true} {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1220#return; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,208 INFO L290 TraceCheckUtils]: 35: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,209 INFO L272 TraceCheckUtils]: 36: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} call stub_driver_init(); {39399#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:53,209 INFO L290 TraceCheckUtils]: 37: Hoare triple {39399#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {39333#true} is VALID [2022-04-27 15:16:53,209 INFO L290 TraceCheckUtils]: 38: Hoare triple {39333#true} assume true; {39333#true} is VALID [2022-04-27 15:16:53,209 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {39333#true} {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1222#return; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,209 INFO L290 TraceCheckUtils]: 40: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume !!(~status~5 >= 0); {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,210 INFO L290 TraceCheckUtils]: 41: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume !(0 == ~__BLAST_NONDET~0); {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,210 INFO L290 TraceCheckUtils]: 42: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume !(1 == ~__BLAST_NONDET~0); {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,210 INFO L290 TraceCheckUtils]: 43: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume !(2 == ~__BLAST_NONDET~0); {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,210 INFO L290 TraceCheckUtils]: 44: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume !(3 == ~__BLAST_NONDET~0); {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,211 INFO L290 TraceCheckUtils]: 45: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume 4 == ~__BLAST_NONDET~0; {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:16:53,211 INFO L272 TraceCheckUtils]: 46: Hoare triple {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} call #t~ret175 := KbFilter_Power(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {39400#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:53,212 INFO L290 TraceCheckUtils]: 47: Hoare triple {39400#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~4.base, ~irpStack~4.offset;havoc ~devExt~4.base, ~devExt~4.offset;call ~#powerState~0.base, ~#powerState~0.offset := #Ultimate.allocOnStack(4);havoc ~powerType~0;havoc ~tmp~3;call #t~mem123.base, #t~mem123.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~4.base, ~devExt~4.offset := #t~mem123.base, #t~mem123.offset;havoc #t~mem123.base, #t~mem123.offset;call #t~mem124.base, #t~mem124.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~4.base, ~irpStack~4.offset := #t~mem124.base, #t~mem124.offset;havoc #t~mem124.base, #t~mem124.offset;call #t~mem125 := read~int(~irpStack~4.base, 8 + ~irpStack~4.offset, 4);~powerType~0 := #t~mem125;havoc #t~mem125;call #t~mem126 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call #t~mem127 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call write~int(#t~mem126, ~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem127, ~#powerState~0.base, ~#powerState~0.offset, 4);havoc #t~mem126;havoc #t~mem127;call #t~mem128 := read~int(~irpStack~4.base, 1 + ~irpStack~4.offset, 1); {39333#true} is VALID [2022-04-27 15:16:53,212 INFO L290 TraceCheckUtils]: 48: Hoare triple {39333#true} assume 2 == #t~mem128 % 256;havoc #t~mem128; {39333#true} is VALID [2022-04-27 15:16:53,212 INFO L290 TraceCheckUtils]: 49: Hoare triple {39333#true} assume 1 == ~powerType~0;call #t~mem132 := read~int(~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem132, ~devExt~4.base, 48 + ~devExt~4.offset, 4);havoc #t~mem132; {39333#true} is VALID [2022-04-27 15:16:53,212 INFO L290 TraceCheckUtils]: 50: Hoare triple {39333#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {39333#true} is VALID [2022-04-27 15:16:53,212 INFO L290 TraceCheckUtils]: 51: Hoare triple {39333#true} call #t~mem133 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem133) % 256 <= 127 then (1 + #t~mem133) % 256 else (1 + #t~mem133) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem133;call #t~mem134.base, #t~mem134.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem134.base, 36 + #t~mem134.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem134.base, #t~mem134.offset;call #t~mem135.base, #t~mem135.offset := read~$Pointer$(~devExt~4.base, 8 + ~devExt~4.offset, 4); {39333#true} is VALID [2022-04-27 15:16:53,212 INFO L272 TraceCheckUtils]: 52: Hoare triple {39333#true} call #t~ret136 := PoCallDriver(#t~mem135.base, #t~mem135.offset, ~Irp.base, ~Irp.offset); {39412#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:16:53,212 INFO L290 TraceCheckUtils]: 53: Hoare triple {39412#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {39333#true} is VALID [2022-04-27 15:16:53,212 INFO L290 TraceCheckUtils]: 54: Hoare triple {39333#true} assume !(0 != ~compRegistered~0); {39333#true} is VALID [2022-04-27 15:16:53,213 INFO L290 TraceCheckUtils]: 55: Hoare triple {39333#true} assume !(0 == ~__BLAST_NONDET~16); {39333#true} is VALID [2022-04-27 15:16:53,213 INFO L290 TraceCheckUtils]: 56: Hoare triple {39333#true} assume 1 == ~__BLAST_NONDET~16; {39333#true} is VALID [2022-04-27 15:16:53,213 INFO L290 TraceCheckUtils]: 57: Hoare triple {39333#true} ~returnVal~0 := -1073741823; {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} is VALID [2022-04-27 15:16:53,213 INFO L290 TraceCheckUtils]: 58: Hoare triple {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} assume !(~s~0 == ~NP~0); {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} is VALID [2022-04-27 15:16:53,213 INFO L290 TraceCheckUtils]: 59: Hoare triple {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} assume ~s~0 == ~MPR1~0; {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 60: Hoare triple {39413#(<= (+ 1073741823 PoCallDriver_~returnVal~0) 0)} assume 259 == ~returnVal~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal~0; {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 61: Hoare triple {39334#false} #res := ~returnVal~0; {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 62: Hoare triple {39334#false} assume true; {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L284 TraceCheckUtils]: 63: Hoare quadruple {39334#false} {39333#true} #1268#return; {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 64: Hoare triple {39334#false} assume -2147483648 <= #t~ret136 && #t~ret136 <= 2147483647;~tmp~3 := #t~ret136;havoc #t~mem135.base, #t~mem135.offset;havoc #t~ret136;#res := ~tmp~3;call ULTIMATE.dealloc(~#powerState~0.base, ~#powerState~0.offset);havoc ~#powerState~0.base, ~#powerState~0.offset; {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 65: Hoare triple {39334#false} assume true; {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L284 TraceCheckUtils]: 66: Hoare quadruple {39334#false} {39341#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1232#return; {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 67: Hoare triple {39334#false} assume -2147483648 <= #t~ret175 && #t~ret175 <= 2147483647;~status~5 := #t~ret175;havoc #t~ret175; {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 68: Hoare triple {39334#false} assume 0 != ~we_should_unload~0; {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 69: Hoare triple {39334#false} assume !(1 == ~pended~0); {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 70: Hoare triple {39334#false} assume !(1 == ~pended~0); {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 71: Hoare triple {39334#false} assume !(~s~0 == ~UNLOADED~0); {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 72: Hoare triple {39334#false} assume !(-1 == ~status~5); {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 73: Hoare triple {39334#false} assume ~s~0 != ~SKIP2~0; {39334#false} is VALID [2022-04-27 15:16:53,214 INFO L290 TraceCheckUtils]: 74: Hoare triple {39334#false} assume !(~s~0 != ~IPC~0); {39334#false} is VALID [2022-04-27 15:16:53,215 INFO L290 TraceCheckUtils]: 75: Hoare triple {39334#false} assume !(1 == ~pended~0); {39334#false} is VALID [2022-04-27 15:16:53,215 INFO L290 TraceCheckUtils]: 76: Hoare triple {39334#false} assume ~s~0 == ~DC~0; {39334#false} is VALID [2022-04-27 15:16:53,215 INFO L290 TraceCheckUtils]: 77: Hoare triple {39334#false} assume 259 == ~status~5; {39334#false} is VALID [2022-04-27 15:16:53,215 INFO L272 TraceCheckUtils]: 78: Hoare triple {39334#false} call errorFn(); {39334#false} is VALID [2022-04-27 15:16:53,215 INFO L290 TraceCheckUtils]: 79: Hoare triple {39334#false} assume !false; {39334#false} is VALID [2022-04-27 15:16:53,215 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:16:53,215 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:16:53,215 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1796244860] [2022-04-27 15:16:53,215 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1796244860] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:16:53,215 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:16:53,215 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [12] imperfect sequences [] total 12 [2022-04-27 15:16:53,216 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [911708709] [2022-04-27 15:16:53,216 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:16:53,216 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 12 states have (on average 5.0) internal successors, (60), 5 states have internal predecessors, (60), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) Word has length 80 [2022-04-27 15:16:53,216 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:16:53,216 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 12 states, 12 states have (on average 5.0) internal successors, (60), 5 states have internal predecessors, (60), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:16:53,278 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 80 edges. 80 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:16:53,278 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2022-04-27 15:16:53,278 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:16:53,279 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2022-04-27 15:16:53,279 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=32, Invalid=100, Unknown=0, NotChecked=0, Total=132 [2022-04-27 15:16:53,279 INFO L87 Difference]: Start difference. First operand 327 states and 413 transitions. Second operand has 12 states, 12 states have (on average 5.0) internal successors, (60), 5 states have internal predecessors, (60), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:16:55,395 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:16:58,492 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.33s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:17:02,940 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:17:02,941 INFO L93 Difference]: Finished difference Result 371 states and 465 transitions. [2022-04-27 15:17:02,941 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2022-04-27 15:17:02,941 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 12 states have (on average 5.0) internal successors, (60), 5 states have internal predecessors, (60), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) Word has length 80 [2022-04-27 15:17:02,941 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:17:02,941 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 12 states, 12 states have (on average 5.0) internal successors, (60), 5 states have internal predecessors, (60), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:17:02,946 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 13 states to 13 states and 400 transitions. [2022-04-27 15:17:02,947 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 12 states, 12 states have (on average 5.0) internal successors, (60), 5 states have internal predecessors, (60), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:17:02,950 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 13 states to 13 states and 400 transitions. [2022-04-27 15:17:02,950 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 13 states and 400 transitions. [2022-04-27 15:17:03,429 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 400 edges. 400 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:17:03,435 INFO L225 Difference]: With dead ends: 371 [2022-04-27 15:17:03,435 INFO L226 Difference]: Without dead ends: 346 [2022-04-27 15:17:03,436 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 38 GetRequests, 19 SyntacticMatches, 0 SemanticMatches, 19 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 61 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=127, Invalid=293, Unknown=0, NotChecked=0, Total=420 [2022-04-27 15:17:03,436 INFO L413 NwaCegarLoop]: 258 mSDtfsCounter, 1209 mSDsluCounter, 220 mSDsCounter, 0 mSdLazyCounter, 702 mSolverCounterSat, 400 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1219 SdHoareTripleChecker+Valid, 478 SdHoareTripleChecker+Invalid, 1103 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 400 IncrementalHoareTripleChecker+Valid, 702 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.7s IncrementalHoareTripleChecker+Time [2022-04-27 15:17:03,436 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1219 Valid, 478 Invalid, 1103 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [400 Valid, 702 Invalid, 1 Unknown, 0 Unchecked, 5.7s Time] [2022-04-27 15:17:03,437 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 346 states. [2022-04-27 15:17:03,621 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 346 to 326. [2022-04-27 15:17:03,621 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:17:03,621 INFO L82 GeneralOperation]: Start isEquivalent. First operand 346 states. Second operand has 326 states, 260 states have (on average 1.3115384615384615) internal successors, (341), 263 states have internal predecessors, (341), 35 states have call successors, (35), 29 states have call predecessors, (35), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:17:03,622 INFO L74 IsIncluded]: Start isIncluded. First operand 346 states. Second operand has 326 states, 260 states have (on average 1.3115384615384615) internal successors, (341), 263 states have internal predecessors, (341), 35 states have call successors, (35), 29 states have call predecessors, (35), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:17:03,622 INFO L87 Difference]: Start difference. First operand 346 states. Second operand has 326 states, 260 states have (on average 1.3115384615384615) internal successors, (341), 263 states have internal predecessors, (341), 35 states have call successors, (35), 29 states have call predecessors, (35), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:17:03,629 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:17:03,629 INFO L93 Difference]: Finished difference Result 346 states and 438 transitions. [2022-04-27 15:17:03,629 INFO L276 IsEmpty]: Start isEmpty. Operand 346 states and 438 transitions. [2022-04-27 15:17:03,630 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:17:03,630 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:17:03,630 INFO L74 IsIncluded]: Start isIncluded. First operand has 326 states, 260 states have (on average 1.3115384615384615) internal successors, (341), 263 states have internal predecessors, (341), 35 states have call successors, (35), 29 states have call predecessors, (35), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) Second operand 346 states. [2022-04-27 15:17:03,630 INFO L87 Difference]: Start difference. First operand has 326 states, 260 states have (on average 1.3115384615384615) internal successors, (341), 263 states have internal predecessors, (341), 35 states have call successors, (35), 29 states have call predecessors, (35), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) Second operand 346 states. [2022-04-27 15:17:03,637 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:17:03,638 INFO L93 Difference]: Finished difference Result 346 states and 438 transitions. [2022-04-27 15:17:03,638 INFO L276 IsEmpty]: Start isEmpty. Operand 346 states and 438 transitions. [2022-04-27 15:17:03,638 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:17:03,638 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:17:03,638 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:17:03,638 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:17:03,639 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 326 states, 260 states have (on average 1.3115384615384615) internal successors, (341), 263 states have internal predecessors, (341), 35 states have call successors, (35), 29 states have call predecessors, (35), 30 states have return successors, (35), 33 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:17:03,644 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 326 states to 326 states and 411 transitions. [2022-04-27 15:17:03,645 INFO L78 Accepts]: Start accepts. Automaton has 326 states and 411 transitions. Word has length 80 [2022-04-27 15:17:03,645 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:17:03,645 INFO L495 AbstractCegarLoop]: Abstraction has 326 states and 411 transitions. [2022-04-27 15:17:03,645 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 12 states have (on average 5.0) internal successors, (60), 5 states have internal predecessors, (60), 3 states have call successors, (11), 9 states have call predecessors, (11), 3 states have return successors, (9), 3 states have call predecessors, (9), 2 states have call successors, (9) [2022-04-27 15:17:03,645 INFO L276 IsEmpty]: Start isEmpty. Operand 326 states and 411 transitions. [2022-04-27 15:17:03,646 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 81 [2022-04-27 15:17:03,646 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:17:03,646 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:17:03,646 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable20 [2022-04-27 15:17:03,646 INFO L420 AbstractCegarLoop]: === Iteration 22 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:17:03,646 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:17:03,646 INFO L85 PathProgramCache]: Analyzing trace with hash 664933900, now seen corresponding path program 1 times [2022-04-27 15:17:03,646 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:17:03,646 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1827398241] [2022-04-27 15:17:03,646 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:17:03,647 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:17:03,695 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:03,769 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:17:03,771 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:03,776 INFO L290 TraceCheckUtils]: 0: Hoare triple {41120#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {41068#true} is VALID [2022-04-27 15:17:03,777 INFO L290 TraceCheckUtils]: 1: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:03,777 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {41068#true} {41068#true} #1270#return; {41068#true} is VALID [2022-04-27 15:17:03,803 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:17:03,806 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:03,821 INFO L290 TraceCheckUtils]: 0: Hoare triple {41121#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {41122#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} is VALID [2022-04-27 15:17:03,821 INFO L290 TraceCheckUtils]: 1: Hoare triple {41122#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} assume true; {41122#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} is VALID [2022-04-27 15:17:03,822 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {41122#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} {41068#true} #1216#return; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:03,830 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:17:03,838 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:03,846 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:17:03,846 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:03,851 INFO L290 TraceCheckUtils]: 0: Hoare triple {41068#true} ~cond := #in~cond; {41068#true} is VALID [2022-04-27 15:17:03,851 INFO L290 TraceCheckUtils]: 1: Hoare triple {41068#true} assume !(0 == ~cond); {41068#true} is VALID [2022-04-27 15:17:03,851 INFO L290 TraceCheckUtils]: 2: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:03,851 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {41068#true} {41068#true} #1254#return; {41068#true} is VALID [2022-04-27 15:17:03,851 INFO L290 TraceCheckUtils]: 0: Hoare triple {41123#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {41068#true} is VALID [2022-04-27 15:17:03,851 INFO L272 TraceCheckUtils]: 1: Hoare triple {41068#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {41068#true} is VALID [2022-04-27 15:17:03,851 INFO L290 TraceCheckUtils]: 2: Hoare triple {41068#true} ~cond := #in~cond; {41068#true} is VALID [2022-04-27 15:17:03,851 INFO L290 TraceCheckUtils]: 3: Hoare triple {41068#true} assume !(0 == ~cond); {41068#true} is VALID [2022-04-27 15:17:03,851 INFO L290 TraceCheckUtils]: 4: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:03,851 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {41068#true} {41068#true} #1254#return; {41068#true} is VALID [2022-04-27 15:17:03,851 INFO L290 TraceCheckUtils]: 6: Hoare triple {41068#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {41068#true} is VALID [2022-04-27 15:17:03,851 INFO L290 TraceCheckUtils]: 7: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:03,852 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {41068#true} {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1218#return; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:03,862 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:17:03,866 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:03,872 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:17:03,873 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:03,878 INFO L290 TraceCheckUtils]: 0: Hoare triple {41128#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {41068#true} is VALID [2022-04-27 15:17:03,878 INFO L290 TraceCheckUtils]: 1: Hoare triple {41068#true} assume !(0 == ~__BLAST_NONDET~5); {41068#true} is VALID [2022-04-27 15:17:03,878 INFO L290 TraceCheckUtils]: 2: Hoare triple {41068#true} #res := -1073741823; {41068#true} is VALID [2022-04-27 15:17:03,879 INFO L290 TraceCheckUtils]: 3: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:03,879 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {41068#true} {41068#true} #1176#return; {41068#true} is VALID [2022-04-27 15:17:03,879 INFO L290 TraceCheckUtils]: 0: Hoare triple {41128#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {41068#true} is VALID [2022-04-27 15:17:03,880 INFO L272 TraceCheckUtils]: 1: Hoare triple {41068#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {41128#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:17:03,880 INFO L290 TraceCheckUtils]: 2: Hoare triple {41128#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {41068#true} is VALID [2022-04-27 15:17:03,880 INFO L290 TraceCheckUtils]: 3: Hoare triple {41068#true} assume !(0 == ~__BLAST_NONDET~5); {41068#true} is VALID [2022-04-27 15:17:03,880 INFO L290 TraceCheckUtils]: 4: Hoare triple {41068#true} #res := -1073741823; {41068#true} is VALID [2022-04-27 15:17:03,880 INFO L290 TraceCheckUtils]: 5: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:03,880 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {41068#true} {41068#true} #1176#return; {41068#true} is VALID [2022-04-27 15:17:03,880 INFO L290 TraceCheckUtils]: 7: Hoare triple {41068#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {41068#true} is VALID [2022-04-27 15:17:03,880 INFO L290 TraceCheckUtils]: 8: Hoare triple {41068#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {41068#true} is VALID [2022-04-27 15:17:03,880 INFO L290 TraceCheckUtils]: 9: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:03,881 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {41068#true} {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1220#return; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:03,895 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:17:03,896 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:03,901 INFO L290 TraceCheckUtils]: 0: Hoare triple {41134#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {41068#true} is VALID [2022-04-27 15:17:03,902 INFO L290 TraceCheckUtils]: 1: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:03,902 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {41068#true} {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1222#return; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:03,917 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 46 [2022-04-27 15:17:03,924 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:03,960 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 5 [2022-04-27 15:17:03,963 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:03,990 INFO L290 TraceCheckUtils]: 0: Hoare triple {41149#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,990 INFO L290 TraceCheckUtils]: 1: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume !(0 != ~compRegistered~0); {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,990 INFO L290 TraceCheckUtils]: 2: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume !(0 == ~__BLAST_NONDET~16); {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,991 INFO L290 TraceCheckUtils]: 3: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume !(1 == ~__BLAST_NONDET~16); {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,991 INFO L290 TraceCheckUtils]: 4: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} ~returnVal~0 := 259; {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,991 INFO L290 TraceCheckUtils]: 5: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume !(~s~0 == ~NP~0); {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,992 INFO L290 TraceCheckUtils]: 6: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~MPR1~0; {41151#(= ~MPR1~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,992 INFO L290 TraceCheckUtils]: 7: Hoare triple {41151#(= ~MPR1~0 |old(~s~0)|)} assume 259 == ~returnVal~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal~0; {41151#(= ~MPR1~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,992 INFO L290 TraceCheckUtils]: 8: Hoare triple {41151#(= ~MPR1~0 |old(~s~0)|)} #res := ~returnVal~0; {41151#(= ~MPR1~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,993 INFO L290 TraceCheckUtils]: 9: Hoare triple {41151#(= ~MPR1~0 |old(~s~0)|)} assume true; {41151#(= ~MPR1~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,994 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {41151#(= ~MPR1~0 |old(~s~0)|)} {41136#(= ~SKIP1~0 ~s~0)} #1268#return; {41148#(= ~MPR1~0 ~SKIP1~0)} is VALID [2022-04-27 15:17:03,994 INFO L290 TraceCheckUtils]: 0: Hoare triple {41135#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~4.base, ~irpStack~4.offset;havoc ~devExt~4.base, ~devExt~4.offset;call ~#powerState~0.base, ~#powerState~0.offset := #Ultimate.allocOnStack(4);havoc ~powerType~0;havoc ~tmp~3;call #t~mem123.base, #t~mem123.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~4.base, ~devExt~4.offset := #t~mem123.base, #t~mem123.offset;havoc #t~mem123.base, #t~mem123.offset;call #t~mem124.base, #t~mem124.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~4.base, ~irpStack~4.offset := #t~mem124.base, #t~mem124.offset;havoc #t~mem124.base, #t~mem124.offset;call #t~mem125 := read~int(~irpStack~4.base, 8 + ~irpStack~4.offset, 4);~powerType~0 := #t~mem125;havoc #t~mem125;call #t~mem126 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call #t~mem127 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call write~int(#t~mem126, ~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem127, ~#powerState~0.base, ~#powerState~0.offset, 4);havoc #t~mem126;havoc #t~mem127;call #t~mem128 := read~int(~irpStack~4.base, 1 + ~irpStack~4.offset, 1); {41068#true} is VALID [2022-04-27 15:17:03,994 INFO L290 TraceCheckUtils]: 1: Hoare triple {41068#true} assume 2 == #t~mem128 % 256;havoc #t~mem128; {41068#true} is VALID [2022-04-27 15:17:03,994 INFO L290 TraceCheckUtils]: 2: Hoare triple {41068#true} assume 1 == ~powerType~0;call #t~mem132 := read~int(~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem132, ~devExt~4.base, 48 + ~devExt~4.offset, 4);havoc #t~mem132; {41068#true} is VALID [2022-04-27 15:17:03,994 INFO L290 TraceCheckUtils]: 3: Hoare triple {41068#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {41136#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:17:03,995 INFO L290 TraceCheckUtils]: 4: Hoare triple {41136#(= ~SKIP1~0 ~s~0)} call #t~mem133 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem133) % 256 <= 127 then (1 + #t~mem133) % 256 else (1 + #t~mem133) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem133;call #t~mem134.base, #t~mem134.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem134.base, 36 + #t~mem134.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem134.base, #t~mem134.offset;call #t~mem135.base, #t~mem135.offset := read~$Pointer$(~devExt~4.base, 8 + ~devExt~4.offset, 4); {41136#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:17:03,996 INFO L272 TraceCheckUtils]: 5: Hoare triple {41136#(= ~SKIP1~0 ~s~0)} call #t~ret136 := PoCallDriver(#t~mem135.base, #t~mem135.offset, ~Irp.base, ~Irp.offset); {41149#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:03,996 INFO L290 TraceCheckUtils]: 6: Hoare triple {41149#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,996 INFO L290 TraceCheckUtils]: 7: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume !(0 != ~compRegistered~0); {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,997 INFO L290 TraceCheckUtils]: 8: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume !(0 == ~__BLAST_NONDET~16); {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,997 INFO L290 TraceCheckUtils]: 9: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume !(1 == ~__BLAST_NONDET~16); {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,997 INFO L290 TraceCheckUtils]: 10: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} ~returnVal~0 := 259; {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,997 INFO L290 TraceCheckUtils]: 11: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume !(~s~0 == ~NP~0); {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,998 INFO L290 TraceCheckUtils]: 12: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~MPR1~0; {41151#(= ~MPR1~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,998 INFO L290 TraceCheckUtils]: 13: Hoare triple {41151#(= ~MPR1~0 |old(~s~0)|)} assume 259 == ~returnVal~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal~0; {41151#(= ~MPR1~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,998 INFO L290 TraceCheckUtils]: 14: Hoare triple {41151#(= ~MPR1~0 |old(~s~0)|)} #res := ~returnVal~0; {41151#(= ~MPR1~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,998 INFO L290 TraceCheckUtils]: 15: Hoare triple {41151#(= ~MPR1~0 |old(~s~0)|)} assume true; {41151#(= ~MPR1~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:03,999 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {41151#(= ~MPR1~0 |old(~s~0)|)} {41136#(= ~SKIP1~0 ~s~0)} #1268#return; {41148#(= ~MPR1~0 ~SKIP1~0)} is VALID [2022-04-27 15:17:04,000 INFO L290 TraceCheckUtils]: 17: Hoare triple {41148#(= ~MPR1~0 ~SKIP1~0)} assume -2147483648 <= #t~ret136 && #t~ret136 <= 2147483647;~tmp~3 := #t~ret136;havoc #t~mem135.base, #t~mem135.offset;havoc #t~ret136;#res := ~tmp~3;call ULTIMATE.dealloc(~#powerState~0.base, ~#powerState~0.offset);havoc ~#powerState~0.base, ~#powerState~0.offset; {41148#(= ~MPR1~0 ~SKIP1~0)} is VALID [2022-04-27 15:17:04,000 INFO L290 TraceCheckUtils]: 18: Hoare triple {41148#(= ~MPR1~0 ~SKIP1~0)} assume true; {41148#(= ~MPR1~0 ~SKIP1~0)} is VALID [2022-04-27 15:17:04,001 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {41148#(= ~MPR1~0 ~SKIP1~0)} {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1232#return; {41069#false} is VALID [2022-04-27 15:17:04,002 INFO L272 TraceCheckUtils]: 0: Hoare triple {41068#true} call ULTIMATE.init(); {41120#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:17:04,002 INFO L290 TraceCheckUtils]: 1: Hoare triple {41120#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {41068#true} is VALID [2022-04-27 15:17:04,002 INFO L290 TraceCheckUtils]: 2: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:04,002 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {41068#true} {41068#true} #1270#return; {41068#true} is VALID [2022-04-27 15:17:04,002 INFO L272 TraceCheckUtils]: 4: Hoare triple {41068#true} call #t~ret213 := main(); {41068#true} is VALID [2022-04-27 15:17:04,002 INFO L290 TraceCheckUtils]: 5: Hoare triple {41068#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {41068#true} is VALID [2022-04-27 15:17:04,003 INFO L272 TraceCheckUtils]: 6: Hoare triple {41068#true} call _BLAST_init(); {41121#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:04,004 INFO L290 TraceCheckUtils]: 7: Hoare triple {41121#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {41122#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} is VALID [2022-04-27 15:17:04,004 INFO L290 TraceCheckUtils]: 8: Hoare triple {41122#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} assume true; {41122#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} is VALID [2022-04-27 15:17:04,004 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {41122#(and (<= 5 ~MPR1~0) (= (+ ~SKIP1~0 (- 3)) 0))} {41068#true} #1216#return; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,005 INFO L272 TraceCheckUtils]: 10: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {41123#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:17:04,005 INFO L290 TraceCheckUtils]: 11: Hoare triple {41123#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {41068#true} is VALID [2022-04-27 15:17:04,005 INFO L272 TraceCheckUtils]: 12: Hoare triple {41068#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {41068#true} is VALID [2022-04-27 15:17:04,005 INFO L290 TraceCheckUtils]: 13: Hoare triple {41068#true} ~cond := #in~cond; {41068#true} is VALID [2022-04-27 15:17:04,005 INFO L290 TraceCheckUtils]: 14: Hoare triple {41068#true} assume !(0 == ~cond); {41068#true} is VALID [2022-04-27 15:17:04,006 INFO L290 TraceCheckUtils]: 15: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:04,006 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {41068#true} {41068#true} #1254#return; {41068#true} is VALID [2022-04-27 15:17:04,006 INFO L290 TraceCheckUtils]: 17: Hoare triple {41068#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {41068#true} is VALID [2022-04-27 15:17:04,006 INFO L290 TraceCheckUtils]: 18: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:04,006 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {41068#true} {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1218#return; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,007 INFO L290 TraceCheckUtils]: 20: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,007 INFO L290 TraceCheckUtils]: 21: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,008 INFO L290 TraceCheckUtils]: 22: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,009 INFO L272 TraceCheckUtils]: 23: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {41128#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:17:04,009 INFO L290 TraceCheckUtils]: 24: Hoare triple {41128#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {41068#true} is VALID [2022-04-27 15:17:04,010 INFO L272 TraceCheckUtils]: 25: Hoare triple {41068#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {41128#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:17:04,010 INFO L290 TraceCheckUtils]: 26: Hoare triple {41128#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {41068#true} is VALID [2022-04-27 15:17:04,010 INFO L290 TraceCheckUtils]: 27: Hoare triple {41068#true} assume !(0 == ~__BLAST_NONDET~5); {41068#true} is VALID [2022-04-27 15:17:04,010 INFO L290 TraceCheckUtils]: 28: Hoare triple {41068#true} #res := -1073741823; {41068#true} is VALID [2022-04-27 15:17:04,010 INFO L290 TraceCheckUtils]: 29: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:04,010 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {41068#true} {41068#true} #1176#return; {41068#true} is VALID [2022-04-27 15:17:04,010 INFO L290 TraceCheckUtils]: 31: Hoare triple {41068#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {41068#true} is VALID [2022-04-27 15:17:04,010 INFO L290 TraceCheckUtils]: 32: Hoare triple {41068#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {41068#true} is VALID [2022-04-27 15:17:04,010 INFO L290 TraceCheckUtils]: 33: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:04,011 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {41068#true} {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1220#return; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,011 INFO L290 TraceCheckUtils]: 35: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,012 INFO L272 TraceCheckUtils]: 36: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} call stub_driver_init(); {41134#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:04,012 INFO L290 TraceCheckUtils]: 37: Hoare triple {41134#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {41068#true} is VALID [2022-04-27 15:17:04,012 INFO L290 TraceCheckUtils]: 38: Hoare triple {41068#true} assume true; {41068#true} is VALID [2022-04-27 15:17:04,013 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {41068#true} {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1222#return; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,013 INFO L290 TraceCheckUtils]: 40: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume !!(~status~5 >= 0); {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,013 INFO L290 TraceCheckUtils]: 41: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume !(0 == ~__BLAST_NONDET~0); {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,013 INFO L290 TraceCheckUtils]: 42: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume !(1 == ~__BLAST_NONDET~0); {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,014 INFO L290 TraceCheckUtils]: 43: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume !(2 == ~__BLAST_NONDET~0); {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,014 INFO L290 TraceCheckUtils]: 44: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume !(3 == ~__BLAST_NONDET~0); {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,014 INFO L290 TraceCheckUtils]: 45: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} assume 4 == ~__BLAST_NONDET~0; {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} is VALID [2022-04-27 15:17:04,015 INFO L272 TraceCheckUtils]: 46: Hoare triple {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} call #t~ret175 := KbFilter_Power(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {41135#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:04,015 INFO L290 TraceCheckUtils]: 47: Hoare triple {41135#(and (= |old(#length)| |#length|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~irpStack~4.base, ~irpStack~4.offset;havoc ~devExt~4.base, ~devExt~4.offset;call ~#powerState~0.base, ~#powerState~0.offset := #Ultimate.allocOnStack(4);havoc ~powerType~0;havoc ~tmp~3;call #t~mem123.base, #t~mem123.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~4.base, ~devExt~4.offset := #t~mem123.base, #t~mem123.offset;havoc #t~mem123.base, #t~mem123.offset;call #t~mem124.base, #t~mem124.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~4.base, ~irpStack~4.offset := #t~mem124.base, #t~mem124.offset;havoc #t~mem124.base, #t~mem124.offset;call #t~mem125 := read~int(~irpStack~4.base, 8 + ~irpStack~4.offset, 4);~powerType~0 := #t~mem125;havoc #t~mem125;call #t~mem126 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call #t~mem127 := read~int(~irpStack~4.base, 12 + ~irpStack~4.offset, 4);call write~int(#t~mem126, ~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem127, ~#powerState~0.base, ~#powerState~0.offset, 4);havoc #t~mem126;havoc #t~mem127;call #t~mem128 := read~int(~irpStack~4.base, 1 + ~irpStack~4.offset, 1); {41068#true} is VALID [2022-04-27 15:17:04,016 INFO L290 TraceCheckUtils]: 48: Hoare triple {41068#true} assume 2 == #t~mem128 % 256;havoc #t~mem128; {41068#true} is VALID [2022-04-27 15:17:04,016 INFO L290 TraceCheckUtils]: 49: Hoare triple {41068#true} assume 1 == ~powerType~0;call #t~mem132 := read~int(~#powerState~0.base, ~#powerState~0.offset, 4);call write~int(#t~mem132, ~devExt~4.base, 48 + ~devExt~4.offset, 4);havoc #t~mem132; {41068#true} is VALID [2022-04-27 15:17:04,016 INFO L290 TraceCheckUtils]: 50: Hoare triple {41068#true} assume ~s~0 == ~NP~0;~s~0 := ~SKIP1~0; {41136#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:17:04,016 INFO L290 TraceCheckUtils]: 51: Hoare triple {41136#(= ~SKIP1~0 ~s~0)} call #t~mem133 := read~int(~Irp.base, 35 + ~Irp.offset, 1);call write~int((if (1 + #t~mem133) % 256 <= 127 then (1 + #t~mem133) % 256 else (1 + #t~mem133) % 256 - 256), ~Irp.base, 35 + ~Irp.offset, 1);havoc #t~mem133;call #t~mem134.base, #t~mem134.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);call write~$Pointer$(#t~mem134.base, 36 + #t~mem134.offset, ~Irp.base, 96 + ~Irp.offset, 4);havoc #t~mem134.base, #t~mem134.offset;call #t~mem135.base, #t~mem135.offset := read~$Pointer$(~devExt~4.base, 8 + ~devExt~4.offset, 4); {41136#(= ~SKIP1~0 ~s~0)} is VALID [2022-04-27 15:17:04,017 INFO L272 TraceCheckUtils]: 52: Hoare triple {41136#(= ~SKIP1~0 ~s~0)} call #t~ret136 := PoCallDriver(#t~mem135.base, #t~mem135.offset, ~Irp.base, ~Irp.offset); {41149#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:04,017 INFO L290 TraceCheckUtils]: 53: Hoare triple {41149#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet204 && #t~nondet204 <= 2147483647;~__BLAST_NONDET~16 := #t~nondet204;havoc #t~nondet204;havoc ~compRetStatus~1;havoc ~returnVal~0;~lcontext~1.base, ~lcontext~1.offset := 0, 0;havoc ~tmp~12; {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:04,018 INFO L290 TraceCheckUtils]: 54: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume !(0 != ~compRegistered~0); {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:04,018 INFO L290 TraceCheckUtils]: 55: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume !(0 == ~__BLAST_NONDET~16); {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:04,018 INFO L290 TraceCheckUtils]: 56: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume !(1 == ~__BLAST_NONDET~16); {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:04,018 INFO L290 TraceCheckUtils]: 57: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} ~returnVal~0 := 259; {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:04,019 INFO L290 TraceCheckUtils]: 58: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume !(~s~0 == ~NP~0); {41150#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:04,019 INFO L290 TraceCheckUtils]: 59: Hoare triple {41150#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~MPR1~0; {41151#(= ~MPR1~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:04,019 INFO L290 TraceCheckUtils]: 60: Hoare triple {41151#(= ~MPR1~0 |old(~s~0)|)} assume 259 == ~returnVal~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal~0; {41151#(= ~MPR1~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:04,019 INFO L290 TraceCheckUtils]: 61: Hoare triple {41151#(= ~MPR1~0 |old(~s~0)|)} #res := ~returnVal~0; {41151#(= ~MPR1~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:04,020 INFO L290 TraceCheckUtils]: 62: Hoare triple {41151#(= ~MPR1~0 |old(~s~0)|)} assume true; {41151#(= ~MPR1~0 |old(~s~0)|)} is VALID [2022-04-27 15:17:04,020 INFO L284 TraceCheckUtils]: 63: Hoare quadruple {41151#(= ~MPR1~0 |old(~s~0)|)} {41136#(= ~SKIP1~0 ~s~0)} #1268#return; {41148#(= ~MPR1~0 ~SKIP1~0)} is VALID [2022-04-27 15:17:04,021 INFO L290 TraceCheckUtils]: 64: Hoare triple {41148#(= ~MPR1~0 ~SKIP1~0)} assume -2147483648 <= #t~ret136 && #t~ret136 <= 2147483647;~tmp~3 := #t~ret136;havoc #t~mem135.base, #t~mem135.offset;havoc #t~ret136;#res := ~tmp~3;call ULTIMATE.dealloc(~#powerState~0.base, ~#powerState~0.offset);havoc ~#powerState~0.base, ~#powerState~0.offset; {41148#(= ~MPR1~0 ~SKIP1~0)} is VALID [2022-04-27 15:17:04,021 INFO L290 TraceCheckUtils]: 65: Hoare triple {41148#(= ~MPR1~0 ~SKIP1~0)} assume true; {41148#(= ~MPR1~0 ~SKIP1~0)} is VALID [2022-04-27 15:17:04,022 INFO L284 TraceCheckUtils]: 66: Hoare quadruple {41148#(= ~MPR1~0 ~SKIP1~0)} {41076#(and (not (= ~MPR1~0 3)) (= ~SKIP1~0 3))} #1232#return; {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L290 TraceCheckUtils]: 67: Hoare triple {41069#false} assume -2147483648 <= #t~ret175 && #t~ret175 <= 2147483647;~status~5 := #t~ret175;havoc #t~ret175; {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L290 TraceCheckUtils]: 68: Hoare triple {41069#false} assume 0 != ~we_should_unload~0; {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L290 TraceCheckUtils]: 69: Hoare triple {41069#false} assume !(1 == ~pended~0); {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L290 TraceCheckUtils]: 70: Hoare triple {41069#false} assume !(1 == ~pended~0); {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L290 TraceCheckUtils]: 71: Hoare triple {41069#false} assume !(~s~0 == ~UNLOADED~0); {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L290 TraceCheckUtils]: 72: Hoare triple {41069#false} assume !(-1 == ~status~5); {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L290 TraceCheckUtils]: 73: Hoare triple {41069#false} assume ~s~0 != ~SKIP2~0; {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L290 TraceCheckUtils]: 74: Hoare triple {41069#false} assume !(~s~0 != ~IPC~0); {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L290 TraceCheckUtils]: 75: Hoare triple {41069#false} assume !(1 == ~pended~0); {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L290 TraceCheckUtils]: 76: Hoare triple {41069#false} assume ~s~0 == ~DC~0; {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L290 TraceCheckUtils]: 77: Hoare triple {41069#false} assume 259 == ~status~5; {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L272 TraceCheckUtils]: 78: Hoare triple {41069#false} call errorFn(); {41069#false} is VALID [2022-04-27 15:17:04,022 INFO L290 TraceCheckUtils]: 79: Hoare triple {41069#false} assume !false; {41069#false} is VALID [2022-04-27 15:17:04,023 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:17:04,023 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:17:04,023 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1827398241] [2022-04-27 15:17:04,023 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1827398241] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:17:04,023 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:17:04,023 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [15] imperfect sequences [] total 15 [2022-04-27 15:17:04,023 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1684693459] [2022-04-27 15:17:04,023 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:17:04,024 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 15 states have (on average 4.0) internal successors, (60), 8 states have internal predecessors, (60), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) Word has length 80 [2022-04-27 15:17:04,024 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:17:04,024 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 15 states, 15 states have (on average 4.0) internal successors, (60), 8 states have internal predecessors, (60), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) [2022-04-27 15:17:04,092 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 80 edges. 80 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:17:04,092 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2022-04-27 15:17:04,092 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:17:04,092 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2022-04-27 15:17:04,092 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=43, Invalid=167, Unknown=0, NotChecked=0, Total=210 [2022-04-27 15:17:04,093 INFO L87 Difference]: Start difference. First operand 326 states and 411 transitions. Second operand has 15 states, 15 states have (on average 4.0) internal successors, (60), 8 states have internal predecessors, (60), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) [2022-04-27 15:17:06,362 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:17:13,928 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.20s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:17:18,100 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:17:18,100 INFO L93 Difference]: Finished difference Result 353 states and 444 transitions. [2022-04-27 15:17:18,100 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2022-04-27 15:17:18,101 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 15 states have (on average 4.0) internal successors, (60), 8 states have internal predecessors, (60), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) Word has length 80 [2022-04-27 15:17:18,101 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:17:18,101 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 15 states, 15 states have (on average 4.0) internal successors, (60), 8 states have internal predecessors, (60), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) [2022-04-27 15:17:18,103 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18 states to 18 states and 402 transitions. [2022-04-27 15:17:18,103 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 15 states, 15 states have (on average 4.0) internal successors, (60), 8 states have internal predecessors, (60), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) [2022-04-27 15:17:18,106 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18 states to 18 states and 402 transitions. [2022-04-27 15:17:18,106 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 18 states and 402 transitions. [2022-04-27 15:17:18,576 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 402 edges. 402 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:17:18,579 INFO L225 Difference]: With dead ends: 353 [2022-04-27 15:17:18,579 INFO L226 Difference]: Without dead ends: 205 [2022-04-27 15:17:18,580 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 43 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 28 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 144 ImplicationChecksByTransitivity, 0.6s TimeCoverageRelationStatistics Valid=198, Invalid=672, Unknown=0, NotChecked=0, Total=870 [2022-04-27 15:17:18,580 INFO L413 NwaCegarLoop]: 233 mSDtfsCounter, 676 mSDsluCounter, 276 mSDsCounter, 0 mSdLazyCounter, 1377 mSolverCounterSat, 233 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 8.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 682 SdHoareTripleChecker+Valid, 509 SdHoareTripleChecker+Invalid, 1611 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 233 IncrementalHoareTripleChecker+Valid, 1377 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 8.2s IncrementalHoareTripleChecker+Time [2022-04-27 15:17:18,581 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [682 Valid, 509 Invalid, 1611 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [233 Valid, 1377 Invalid, 1 Unknown, 0 Unchecked, 8.2s Time] [2022-04-27 15:17:18,581 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 205 states. [2022-04-27 15:17:18,722 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 205 to 186. [2022-04-27 15:17:18,722 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:17:18,723 INFO L82 GeneralOperation]: Start isEquivalent. First operand 205 states. Second operand has 186 states, 141 states have (on average 1.2411347517730495) internal successors, (175), 144 states have internal predecessors, (175), 23 states have call successors, (23), 21 states have call predecessors, (23), 21 states have return successors, (22), 20 states have call predecessors, (22), 19 states have call successors, (22) [2022-04-27 15:17:18,723 INFO L74 IsIncluded]: Start isIncluded. First operand 205 states. Second operand has 186 states, 141 states have (on average 1.2411347517730495) internal successors, (175), 144 states have internal predecessors, (175), 23 states have call successors, (23), 21 states have call predecessors, (23), 21 states have return successors, (22), 20 states have call predecessors, (22), 19 states have call successors, (22) [2022-04-27 15:17:18,723 INFO L87 Difference]: Start difference. First operand 205 states. Second operand has 186 states, 141 states have (on average 1.2411347517730495) internal successors, (175), 144 states have internal predecessors, (175), 23 states have call successors, (23), 21 states have call predecessors, (23), 21 states have return successors, (22), 20 states have call predecessors, (22), 19 states have call successors, (22) [2022-04-27 15:17:18,726 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:17:18,726 INFO L93 Difference]: Finished difference Result 205 states and 246 transitions. [2022-04-27 15:17:18,726 INFO L276 IsEmpty]: Start isEmpty. Operand 205 states and 246 transitions. [2022-04-27 15:17:18,726 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:17:18,726 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:17:18,726 INFO L74 IsIncluded]: Start isIncluded. First operand has 186 states, 141 states have (on average 1.2411347517730495) internal successors, (175), 144 states have internal predecessors, (175), 23 states have call successors, (23), 21 states have call predecessors, (23), 21 states have return successors, (22), 20 states have call predecessors, (22), 19 states have call successors, (22) Second operand 205 states. [2022-04-27 15:17:18,727 INFO L87 Difference]: Start difference. First operand has 186 states, 141 states have (on average 1.2411347517730495) internal successors, (175), 144 states have internal predecessors, (175), 23 states have call successors, (23), 21 states have call predecessors, (23), 21 states have return successors, (22), 20 states have call predecessors, (22), 19 states have call successors, (22) Second operand 205 states. [2022-04-27 15:17:18,729 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:17:18,729 INFO L93 Difference]: Finished difference Result 205 states and 246 transitions. [2022-04-27 15:17:18,729 INFO L276 IsEmpty]: Start isEmpty. Operand 205 states and 246 transitions. [2022-04-27 15:17:18,729 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:17:18,729 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:17:18,729 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:17:18,730 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:17:18,730 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 186 states, 141 states have (on average 1.2411347517730495) internal successors, (175), 144 states have internal predecessors, (175), 23 states have call successors, (23), 21 states have call predecessors, (23), 21 states have return successors, (22), 20 states have call predecessors, (22), 19 states have call successors, (22) [2022-04-27 15:17:18,732 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 186 states to 186 states and 220 transitions. [2022-04-27 15:17:18,732 INFO L78 Accepts]: Start accepts. Automaton has 186 states and 220 transitions. Word has length 80 [2022-04-27 15:17:18,732 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:17:18,732 INFO L495 AbstractCegarLoop]: Abstraction has 186 states and 220 transitions. [2022-04-27 15:17:18,732 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 15 states have (on average 4.0) internal successors, (60), 8 states have internal predecessors, (60), 4 states have call successors, (11), 9 states have call predecessors, (11), 4 states have return successors, (9), 4 states have call predecessors, (9), 3 states have call successors, (9) [2022-04-27 15:17:18,733 INFO L276 IsEmpty]: Start isEmpty. Operand 186 states and 220 transitions. [2022-04-27 15:17:18,733 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 89 [2022-04-27 15:17:18,733 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:17:18,733 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:17:18,733 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable21 [2022-04-27 15:17:18,733 INFO L420 AbstractCegarLoop]: === Iteration 23 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:17:18,733 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:17:18,734 INFO L85 PathProgramCache]: Analyzing trace with hash 1299022194, now seen corresponding path program 1 times [2022-04-27 15:17:18,734 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:17:18,734 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1612714201] [2022-04-27 15:17:18,734 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:17:18,734 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:17:18,799 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:18,874 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:17:18,875 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:18,880 INFO L290 TraceCheckUtils]: 0: Hoare triple {42391#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {42334#true} is VALID [2022-04-27 15:17:18,880 INFO L290 TraceCheckUtils]: 1: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:18,880 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {42334#true} {42334#true} #1270#return; {42334#true} is VALID [2022-04-27 15:17:18,902 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:17:18,903 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:18,907 INFO L290 TraceCheckUtils]: 0: Hoare triple {42392#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {42334#true} is VALID [2022-04-27 15:17:18,907 INFO L290 TraceCheckUtils]: 1: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:18,907 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {42334#true} {42334#true} #1216#return; {42334#true} is VALID [2022-04-27 15:17:18,915 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:17:18,920 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:18,932 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:17:18,933 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:18,937 INFO L290 TraceCheckUtils]: 0: Hoare triple {42334#true} ~cond := #in~cond; {42334#true} is VALID [2022-04-27 15:17:18,937 INFO L290 TraceCheckUtils]: 1: Hoare triple {42334#true} assume !(0 == ~cond); {42334#true} is VALID [2022-04-27 15:17:18,937 INFO L290 TraceCheckUtils]: 2: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:18,937 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {42334#true} {42334#true} #1254#return; {42334#true} is VALID [2022-04-27 15:17:18,937 INFO L290 TraceCheckUtils]: 0: Hoare triple {42393#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {42334#true} is VALID [2022-04-27 15:17:18,937 INFO L272 TraceCheckUtils]: 1: Hoare triple {42334#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {42334#true} is VALID [2022-04-27 15:17:18,937 INFO L290 TraceCheckUtils]: 2: Hoare triple {42334#true} ~cond := #in~cond; {42334#true} is VALID [2022-04-27 15:17:18,937 INFO L290 TraceCheckUtils]: 3: Hoare triple {42334#true} assume !(0 == ~cond); {42334#true} is VALID [2022-04-27 15:17:18,937 INFO L290 TraceCheckUtils]: 4: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:18,937 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {42334#true} {42334#true} #1254#return; {42334#true} is VALID [2022-04-27 15:17:18,937 INFO L290 TraceCheckUtils]: 6: Hoare triple {42334#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {42334#true} is VALID [2022-04-27 15:17:18,937 INFO L290 TraceCheckUtils]: 7: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:18,937 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {42334#true} {42334#true} #1218#return; {42334#true} is VALID [2022-04-27 15:17:18,948 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:17:18,951 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:18,958 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:17:18,959 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:18,964 INFO L290 TraceCheckUtils]: 0: Hoare triple {42398#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {42334#true} is VALID [2022-04-27 15:17:18,964 INFO L290 TraceCheckUtils]: 1: Hoare triple {42334#true} assume !(0 == ~__BLAST_NONDET~5); {42334#true} is VALID [2022-04-27 15:17:18,964 INFO L290 TraceCheckUtils]: 2: Hoare triple {42334#true} #res := -1073741823; {42334#true} is VALID [2022-04-27 15:17:18,964 INFO L290 TraceCheckUtils]: 3: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:18,964 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {42334#true} {42334#true} #1176#return; {42334#true} is VALID [2022-04-27 15:17:18,965 INFO L290 TraceCheckUtils]: 0: Hoare triple {42398#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {42334#true} is VALID [2022-04-27 15:17:18,966 INFO L272 TraceCheckUtils]: 1: Hoare triple {42334#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {42398#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:17:18,966 INFO L290 TraceCheckUtils]: 2: Hoare triple {42398#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {42334#true} is VALID [2022-04-27 15:17:18,966 INFO L290 TraceCheckUtils]: 3: Hoare triple {42334#true} assume !(0 == ~__BLAST_NONDET~5); {42334#true} is VALID [2022-04-27 15:17:18,966 INFO L290 TraceCheckUtils]: 4: Hoare triple {42334#true} #res := -1073741823; {42334#true} is VALID [2022-04-27 15:17:18,966 INFO L290 TraceCheckUtils]: 5: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:18,966 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {42334#true} {42334#true} #1176#return; {42334#true} is VALID [2022-04-27 15:17:18,966 INFO L290 TraceCheckUtils]: 7: Hoare triple {42334#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {42334#true} is VALID [2022-04-27 15:17:18,966 INFO L290 TraceCheckUtils]: 8: Hoare triple {42334#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {42334#true} is VALID [2022-04-27 15:17:18,966 INFO L290 TraceCheckUtils]: 9: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:18,966 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {42334#true} {42334#true} #1220#return; {42334#true} is VALID [2022-04-27 15:17:18,980 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:17:18,981 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:18,985 INFO L290 TraceCheckUtils]: 0: Hoare triple {42404#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {42334#true} is VALID [2022-04-27 15:17:18,985 INFO L290 TraceCheckUtils]: 1: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:18,985 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {42334#true} {42334#true} #1222#return; {42334#true} is VALID [2022-04-27 15:17:18,985 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 49 [2022-04-27 15:17:18,987 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:18,991 INFO L290 TraceCheckUtils]: 0: Hoare triple {42393#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {42334#true} is VALID [2022-04-27 15:17:18,992 INFO L290 TraceCheckUtils]: 1: Hoare triple {42334#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {42334#true} is VALID [2022-04-27 15:17:18,992 INFO L290 TraceCheckUtils]: 2: Hoare triple {42334#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {42334#true} is VALID [2022-04-27 15:17:18,992 INFO L290 TraceCheckUtils]: 3: Hoare triple {42334#true} assume #res.base == dest.base && #res.offset == dest.offset; {42334#true} is VALID [2022-04-27 15:17:18,992 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {42334#true} {42334#true} #1186#return; {42334#true} is VALID [2022-04-27 15:17:19,000 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 59 [2022-04-27 15:17:19,008 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:19,052 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:17:19,054 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:19,059 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:17:19,060 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:19,064 INFO L290 TraceCheckUtils]: 0: Hoare triple {42416#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {42334#true} is VALID [2022-04-27 15:17:19,064 INFO L290 TraceCheckUtils]: 1: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,064 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {42334#true} {42334#true} #1174#return; {42334#true} is VALID [2022-04-27 15:17:19,064 INFO L290 TraceCheckUtils]: 0: Hoare triple {42416#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {42334#true} is VALID [2022-04-27 15:17:19,065 INFO L272 TraceCheckUtils]: 1: Hoare triple {42334#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {42416#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:19,065 INFO L290 TraceCheckUtils]: 2: Hoare triple {42416#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {42334#true} is VALID [2022-04-27 15:17:19,065 INFO L290 TraceCheckUtils]: 3: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,065 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {42334#true} {42334#true} #1174#return; {42334#true} is VALID [2022-04-27 15:17:19,065 INFO L290 TraceCheckUtils]: 5: Hoare triple {42334#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {42334#true} is VALID [2022-04-27 15:17:19,065 INFO L290 TraceCheckUtils]: 6: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,065 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {42334#true} {42334#true} #1210#return; {42334#true} is VALID [2022-04-27 15:17:19,065 INFO L290 TraceCheckUtils]: 0: Hoare triple {42405#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {42334#true} is VALID [2022-04-27 15:17:19,066 INFO L290 TraceCheckUtils]: 1: Hoare triple {42334#true} assume 0 != ~compRegistered~0; {42334#true} is VALID [2022-04-27 15:17:19,066 INFO L272 TraceCheckUtils]: 2: Hoare triple {42334#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {42416#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:19,066 INFO L290 TraceCheckUtils]: 3: Hoare triple {42416#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {42334#true} is VALID [2022-04-27 15:17:19,067 INFO L272 TraceCheckUtils]: 4: Hoare triple {42334#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {42416#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:19,067 INFO L290 TraceCheckUtils]: 5: Hoare triple {42416#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {42334#true} is VALID [2022-04-27 15:17:19,067 INFO L290 TraceCheckUtils]: 6: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,067 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {42334#true} {42334#true} #1174#return; {42334#true} is VALID [2022-04-27 15:17:19,067 INFO L290 TraceCheckUtils]: 8: Hoare triple {42334#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {42334#true} is VALID [2022-04-27 15:17:19,067 INFO L290 TraceCheckUtils]: 9: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,067 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {42334#true} {42334#true} #1210#return; {42334#true} is VALID [2022-04-27 15:17:19,067 INFO L290 TraceCheckUtils]: 11: Hoare triple {42334#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {42334#true} is VALID [2022-04-27 15:17:19,067 INFO L290 TraceCheckUtils]: 12: Hoare triple {42334#true} assume !(-1073741802 == ~compRetStatus~0); {42334#true} is VALID [2022-04-27 15:17:19,067 INFO L290 TraceCheckUtils]: 13: Hoare triple {42334#true} assume 0 == ~__BLAST_NONDET~11; {42334#true} is VALID [2022-04-27 15:17:19,068 INFO L290 TraceCheckUtils]: 14: Hoare triple {42334#true} ~returnVal2~0 := 0; {42414#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:17:19,068 INFO L290 TraceCheckUtils]: 15: Hoare triple {42414#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {42414#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:17:19,069 INFO L290 TraceCheckUtils]: 16: Hoare triple {42414#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} #res := ~returnVal2~0; {42415#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:17:19,069 INFO L290 TraceCheckUtils]: 17: Hoare triple {42415#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} assume true; {42415#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:17:19,070 INFO L284 TraceCheckUtils]: 18: Hoare quadruple {42415#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} {42334#true} #1192#return; {42389#(= |KbFilter_PnP_#t~ret109| 0)} is VALID [2022-04-27 15:17:19,071 INFO L272 TraceCheckUtils]: 0: Hoare triple {42334#true} call ULTIMATE.init(); {42391#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:17:19,071 INFO L290 TraceCheckUtils]: 1: Hoare triple {42391#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {42334#true} is VALID [2022-04-27 15:17:19,071 INFO L290 TraceCheckUtils]: 2: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,071 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {42334#true} {42334#true} #1270#return; {42334#true} is VALID [2022-04-27 15:17:19,071 INFO L272 TraceCheckUtils]: 4: Hoare triple {42334#true} call #t~ret213 := main(); {42334#true} is VALID [2022-04-27 15:17:19,071 INFO L290 TraceCheckUtils]: 5: Hoare triple {42334#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {42334#true} is VALID [2022-04-27 15:17:19,072 INFO L272 TraceCheckUtils]: 6: Hoare triple {42334#true} call _BLAST_init(); {42392#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:19,072 INFO L290 TraceCheckUtils]: 7: Hoare triple {42392#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {42334#true} is VALID [2022-04-27 15:17:19,072 INFO L290 TraceCheckUtils]: 8: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,072 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {42334#true} {42334#true} #1216#return; {42334#true} is VALID [2022-04-27 15:17:19,073 INFO L272 TraceCheckUtils]: 10: Hoare triple {42334#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {42393#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:17:19,073 INFO L290 TraceCheckUtils]: 11: Hoare triple {42393#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {42334#true} is VALID [2022-04-27 15:17:19,073 INFO L272 TraceCheckUtils]: 12: Hoare triple {42334#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {42334#true} is VALID [2022-04-27 15:17:19,073 INFO L290 TraceCheckUtils]: 13: Hoare triple {42334#true} ~cond := #in~cond; {42334#true} is VALID [2022-04-27 15:17:19,073 INFO L290 TraceCheckUtils]: 14: Hoare triple {42334#true} assume !(0 == ~cond); {42334#true} is VALID [2022-04-27 15:17:19,073 INFO L290 TraceCheckUtils]: 15: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,073 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {42334#true} {42334#true} #1254#return; {42334#true} is VALID [2022-04-27 15:17:19,073 INFO L290 TraceCheckUtils]: 17: Hoare triple {42334#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {42334#true} is VALID [2022-04-27 15:17:19,073 INFO L290 TraceCheckUtils]: 18: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,074 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {42334#true} {42334#true} #1218#return; {42334#true} is VALID [2022-04-27 15:17:19,074 INFO L290 TraceCheckUtils]: 20: Hoare triple {42334#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {42334#true} is VALID [2022-04-27 15:17:19,074 INFO L290 TraceCheckUtils]: 21: Hoare triple {42334#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {42334#true} is VALID [2022-04-27 15:17:19,074 INFO L290 TraceCheckUtils]: 22: Hoare triple {42334#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {42334#true} is VALID [2022-04-27 15:17:19,074 INFO L272 TraceCheckUtils]: 23: Hoare triple {42334#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {42398#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:17:19,075 INFO L290 TraceCheckUtils]: 24: Hoare triple {42398#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {42334#true} is VALID [2022-04-27 15:17:19,076 INFO L272 TraceCheckUtils]: 25: Hoare triple {42334#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {42398#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:17:19,076 INFO L290 TraceCheckUtils]: 26: Hoare triple {42398#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {42334#true} is VALID [2022-04-27 15:17:19,076 INFO L290 TraceCheckUtils]: 27: Hoare triple {42334#true} assume !(0 == ~__BLAST_NONDET~5); {42334#true} is VALID [2022-04-27 15:17:19,076 INFO L290 TraceCheckUtils]: 28: Hoare triple {42334#true} #res := -1073741823; {42334#true} is VALID [2022-04-27 15:17:19,076 INFO L290 TraceCheckUtils]: 29: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,076 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {42334#true} {42334#true} #1176#return; {42334#true} is VALID [2022-04-27 15:17:19,076 INFO L290 TraceCheckUtils]: 31: Hoare triple {42334#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {42334#true} is VALID [2022-04-27 15:17:19,076 INFO L290 TraceCheckUtils]: 32: Hoare triple {42334#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {42334#true} is VALID [2022-04-27 15:17:19,076 INFO L290 TraceCheckUtils]: 33: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,076 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {42334#true} {42334#true} #1220#return; {42334#true} is VALID [2022-04-27 15:17:19,076 INFO L290 TraceCheckUtils]: 35: Hoare triple {42334#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {42334#true} is VALID [2022-04-27 15:17:19,077 INFO L272 TraceCheckUtils]: 36: Hoare triple {42334#true} call stub_driver_init(); {42404#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:19,077 INFO L290 TraceCheckUtils]: 37: Hoare triple {42404#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {42334#true} is VALID [2022-04-27 15:17:19,077 INFO L290 TraceCheckUtils]: 38: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,077 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {42334#true} {42334#true} #1222#return; {42334#true} is VALID [2022-04-27 15:17:19,077 INFO L290 TraceCheckUtils]: 40: Hoare triple {42334#true} assume !!(~status~5 >= 0); {42334#true} is VALID [2022-04-27 15:17:19,077 INFO L290 TraceCheckUtils]: 41: Hoare triple {42334#true} assume !(0 == ~__BLAST_NONDET~0); {42334#true} is VALID [2022-04-27 15:17:19,077 INFO L290 TraceCheckUtils]: 42: Hoare triple {42334#true} assume !(1 == ~__BLAST_NONDET~0); {42334#true} is VALID [2022-04-27 15:17:19,077 INFO L290 TraceCheckUtils]: 43: Hoare triple {42334#true} assume !(2 == ~__BLAST_NONDET~0); {42334#true} is VALID [2022-04-27 15:17:19,077 INFO L290 TraceCheckUtils]: 44: Hoare triple {42334#true} assume 3 == ~__BLAST_NONDET~0; {42334#true} is VALID [2022-04-27 15:17:19,077 INFO L272 TraceCheckUtils]: 45: Hoare triple {42334#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {42334#true} is VALID [2022-04-27 15:17:19,077 INFO L290 TraceCheckUtils]: 46: Hoare triple {42334#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {42334#true} is VALID [2022-04-27 15:17:19,077 INFO L290 TraceCheckUtils]: 47: Hoare triple {42334#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {42334#true} is VALID [2022-04-27 15:17:19,078 INFO L290 TraceCheckUtils]: 48: Hoare triple {42334#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {42334#true} is VALID [2022-04-27 15:17:19,078 INFO L272 TraceCheckUtils]: 49: Hoare triple {42334#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {42393#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:17:19,078 INFO L290 TraceCheckUtils]: 50: Hoare triple {42393#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {42334#true} is VALID [2022-04-27 15:17:19,078 INFO L290 TraceCheckUtils]: 51: Hoare triple {42334#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {42334#true} is VALID [2022-04-27 15:17:19,078 INFO L290 TraceCheckUtils]: 52: Hoare triple {42334#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {42334#true} is VALID [2022-04-27 15:17:19,079 INFO L290 TraceCheckUtils]: 53: Hoare triple {42334#true} assume #res.base == dest.base && #res.offset == dest.offset; {42334#true} is VALID [2022-04-27 15:17:19,079 INFO L284 TraceCheckUtils]: 54: Hoare quadruple {42334#true} {42334#true} #1186#return; {42334#true} is VALID [2022-04-27 15:17:19,079 INFO L290 TraceCheckUtils]: 55: Hoare triple {42334#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {42334#true} is VALID [2022-04-27 15:17:19,079 INFO L290 TraceCheckUtils]: 56: Hoare triple {42334#true} assume !(~s~0 != ~NP~0); {42334#true} is VALID [2022-04-27 15:17:19,079 INFO L290 TraceCheckUtils]: 57: Hoare triple {42334#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {42334#true} is VALID [2022-04-27 15:17:19,079 INFO L290 TraceCheckUtils]: 58: Hoare triple {42334#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {42334#true} is VALID [2022-04-27 15:17:19,079 INFO L272 TraceCheckUtils]: 59: Hoare triple {42334#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {42405#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:19,080 INFO L290 TraceCheckUtils]: 60: Hoare triple {42405#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {42334#true} is VALID [2022-04-27 15:17:19,080 INFO L290 TraceCheckUtils]: 61: Hoare triple {42334#true} assume 0 != ~compRegistered~0; {42334#true} is VALID [2022-04-27 15:17:19,080 INFO L272 TraceCheckUtils]: 62: Hoare triple {42334#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {42416#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:19,080 INFO L290 TraceCheckUtils]: 63: Hoare triple {42416#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {42334#true} is VALID [2022-04-27 15:17:19,081 INFO L272 TraceCheckUtils]: 64: Hoare triple {42334#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {42416#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:19,081 INFO L290 TraceCheckUtils]: 65: Hoare triple {42416#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {42334#true} is VALID [2022-04-27 15:17:19,081 INFO L290 TraceCheckUtils]: 66: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,081 INFO L284 TraceCheckUtils]: 67: Hoare quadruple {42334#true} {42334#true} #1174#return; {42334#true} is VALID [2022-04-27 15:17:19,081 INFO L290 TraceCheckUtils]: 68: Hoare triple {42334#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {42334#true} is VALID [2022-04-27 15:17:19,081 INFO L290 TraceCheckUtils]: 69: Hoare triple {42334#true} assume true; {42334#true} is VALID [2022-04-27 15:17:19,081 INFO L284 TraceCheckUtils]: 70: Hoare quadruple {42334#true} {42334#true} #1210#return; {42334#true} is VALID [2022-04-27 15:17:19,081 INFO L290 TraceCheckUtils]: 71: Hoare triple {42334#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {42334#true} is VALID [2022-04-27 15:17:19,081 INFO L290 TraceCheckUtils]: 72: Hoare triple {42334#true} assume !(-1073741802 == ~compRetStatus~0); {42334#true} is VALID [2022-04-27 15:17:19,082 INFO L290 TraceCheckUtils]: 73: Hoare triple {42334#true} assume 0 == ~__BLAST_NONDET~11; {42334#true} is VALID [2022-04-27 15:17:19,082 INFO L290 TraceCheckUtils]: 74: Hoare triple {42334#true} ~returnVal2~0 := 0; {42414#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:17:19,082 INFO L290 TraceCheckUtils]: 75: Hoare triple {42414#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {42414#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:17:19,083 INFO L290 TraceCheckUtils]: 76: Hoare triple {42414#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} #res := ~returnVal2~0; {42415#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:17:19,083 INFO L290 TraceCheckUtils]: 77: Hoare triple {42415#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} assume true; {42415#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:17:19,084 INFO L284 TraceCheckUtils]: 78: Hoare quadruple {42415#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} {42334#true} #1192#return; {42389#(= |KbFilter_PnP_#t~ret109| 0)} is VALID [2022-04-27 15:17:19,084 INFO L290 TraceCheckUtils]: 79: Hoare triple {42389#(= |KbFilter_PnP_#t~ret109| 0)} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {42390#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:17:19,084 INFO L290 TraceCheckUtils]: 80: Hoare triple {42390#(= KbFilter_PnP_~status~3 0)} assume !(259 == ~status~3); {42390#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:17:19,084 INFO L290 TraceCheckUtils]: 81: Hoare triple {42390#(= KbFilter_PnP_~status~3 0)} assume !(~status~3 >= 0); {42335#false} is VALID [2022-04-27 15:17:19,085 INFO L290 TraceCheckUtils]: 82: Hoare triple {42335#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {42335#false} is VALID [2022-04-27 15:17:19,085 INFO L272 TraceCheckUtils]: 83: Hoare triple {42335#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {42335#false} is VALID [2022-04-27 15:17:19,085 INFO L290 TraceCheckUtils]: 84: Hoare triple {42335#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {42335#false} is VALID [2022-04-27 15:17:19,085 INFO L290 TraceCheckUtils]: 85: Hoare triple {42335#false} assume !(~s~0 == ~NP~0); {42335#false} is VALID [2022-04-27 15:17:19,085 INFO L272 TraceCheckUtils]: 86: Hoare triple {42335#false} call errorFn(); {42335#false} is VALID [2022-04-27 15:17:19,085 INFO L290 TraceCheckUtils]: 87: Hoare triple {42335#false} assume !false; {42335#false} is VALID [2022-04-27 15:17:19,085 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:17:19,085 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:17:19,085 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1612714201] [2022-04-27 15:17:19,085 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1612714201] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:17:19,085 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:17:19,085 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [13] imperfect sequences [] total 13 [2022-04-27 15:17:19,086 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1181948867] [2022-04-27 15:17:19,086 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:17:19,087 INFO L78 Accepts]: Start accepts. Automaton has has 13 states, 13 states have (on average 4.769230769230769) internal successors, (62), 5 states have internal predecessors, (62), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) Word has length 88 [2022-04-27 15:17:19,088 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:17:19,088 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 13 states, 13 states have (on average 4.769230769230769) internal successors, (62), 5 states have internal predecessors, (62), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) [2022-04-27 15:17:19,156 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 88 edges. 88 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:17:19,157 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 13 states [2022-04-27 15:17:19,157 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:17:19,157 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 13 interpolants. [2022-04-27 15:17:19,157 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=34, Invalid=122, Unknown=0, NotChecked=0, Total=156 [2022-04-27 15:17:19,157 INFO L87 Difference]: Start difference. First operand 186 states and 220 transitions. Second operand has 13 states, 13 states have (on average 4.769230769230769) internal successors, (62), 5 states have internal predecessors, (62), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) [2022-04-27 15:17:22,629 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.35s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:17:24,645 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:17:26,662 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.02s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:17:31,536 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:17:33,552 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.02s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:17:35,576 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:17:37,595 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.02s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:17:45,804 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:17:45,804 INFO L93 Difference]: Finished difference Result 300 states and 368 transitions. [2022-04-27 15:17:45,804 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2022-04-27 15:17:45,804 INFO L78 Accepts]: Start accepts. Automaton has has 13 states, 13 states have (on average 4.769230769230769) internal successors, (62), 5 states have internal predecessors, (62), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) Word has length 88 [2022-04-27 15:17:45,804 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:17:45,804 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 13 states, 13 states have (on average 4.769230769230769) internal successors, (62), 5 states have internal predecessors, (62), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) [2022-04-27 15:17:45,806 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 15 states to 15 states and 270 transitions. [2022-04-27 15:17:45,806 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 13 states, 13 states have (on average 4.769230769230769) internal successors, (62), 5 states have internal predecessors, (62), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) [2022-04-27 15:17:45,808 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 15 states to 15 states and 270 transitions. [2022-04-27 15:17:45,808 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 15 states and 270 transitions. [2022-04-27 15:17:46,105 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 270 edges. 270 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:17:46,109 INFO L225 Difference]: With dead ends: 300 [2022-04-27 15:17:46,109 INFO L226 Difference]: Without dead ends: 237 [2022-04-27 15:17:46,109 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 40 GetRequests, 20 SyntacticMatches, 0 SemanticMatches, 20 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 50 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=100, Invalid=362, Unknown=0, NotChecked=0, Total=462 [2022-04-27 15:17:46,109 INFO L413 NwaCegarLoop]: 137 mSDtfsCounter, 229 mSDsluCounter, 293 mSDsCounter, 0 mSdLazyCounter, 816 mSolverCounterSat, 129 mSolverCounterUnsat, 6 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 17.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 234 SdHoareTripleChecker+Valid, 430 SdHoareTripleChecker+Invalid, 951 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 129 IncrementalHoareTripleChecker+Valid, 816 IncrementalHoareTripleChecker+Invalid, 6 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 17.6s IncrementalHoareTripleChecker+Time [2022-04-27 15:17:46,110 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [234 Valid, 430 Invalid, 951 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [129 Valid, 816 Invalid, 6 Unknown, 0 Unchecked, 17.6s Time] [2022-04-27 15:17:46,110 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 237 states. [2022-04-27 15:17:46,238 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 237 to 199. [2022-04-27 15:17:46,238 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:17:46,238 INFO L82 GeneralOperation]: Start isEquivalent. First operand 237 states. Second operand has 199 states, 152 states have (on average 1.2236842105263157) internal successors, (186), 155 states have internal predecessors, (186), 23 states have call successors, (23), 21 states have call predecessors, (23), 23 states have return successors, (24), 22 states have call predecessors, (24), 19 states have call successors, (24) [2022-04-27 15:17:46,238 INFO L74 IsIncluded]: Start isIncluded. First operand 237 states. Second operand has 199 states, 152 states have (on average 1.2236842105263157) internal successors, (186), 155 states have internal predecessors, (186), 23 states have call successors, (23), 21 states have call predecessors, (23), 23 states have return successors, (24), 22 states have call predecessors, (24), 19 states have call successors, (24) [2022-04-27 15:17:46,239 INFO L87 Difference]: Start difference. First operand 237 states. Second operand has 199 states, 152 states have (on average 1.2236842105263157) internal successors, (186), 155 states have internal predecessors, (186), 23 states have call successors, (23), 21 states have call predecessors, (23), 23 states have return successors, (24), 22 states have call predecessors, (24), 19 states have call successors, (24) [2022-04-27 15:17:46,241 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:17:46,241 INFO L93 Difference]: Finished difference Result 237 states and 284 transitions. [2022-04-27 15:17:46,242 INFO L276 IsEmpty]: Start isEmpty. Operand 237 states and 284 transitions. [2022-04-27 15:17:46,242 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:17:46,242 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:17:46,242 INFO L74 IsIncluded]: Start isIncluded. First operand has 199 states, 152 states have (on average 1.2236842105263157) internal successors, (186), 155 states have internal predecessors, (186), 23 states have call successors, (23), 21 states have call predecessors, (23), 23 states have return successors, (24), 22 states have call predecessors, (24), 19 states have call successors, (24) Second operand 237 states. [2022-04-27 15:17:46,242 INFO L87 Difference]: Start difference. First operand has 199 states, 152 states have (on average 1.2236842105263157) internal successors, (186), 155 states have internal predecessors, (186), 23 states have call successors, (23), 21 states have call predecessors, (23), 23 states have return successors, (24), 22 states have call predecessors, (24), 19 states have call successors, (24) Second operand 237 states. [2022-04-27 15:17:46,245 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:17:46,245 INFO L93 Difference]: Finished difference Result 237 states and 284 transitions. [2022-04-27 15:17:46,245 INFO L276 IsEmpty]: Start isEmpty. Operand 237 states and 284 transitions. [2022-04-27 15:17:46,245 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:17:46,246 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:17:46,246 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:17:46,246 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:17:46,246 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 199 states, 152 states have (on average 1.2236842105263157) internal successors, (186), 155 states have internal predecessors, (186), 23 states have call successors, (23), 21 states have call predecessors, (23), 23 states have return successors, (24), 22 states have call predecessors, (24), 19 states have call successors, (24) [2022-04-27 15:17:46,248 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 199 states to 199 states and 233 transitions. [2022-04-27 15:17:46,248 INFO L78 Accepts]: Start accepts. Automaton has 199 states and 233 transitions. Word has length 88 [2022-04-27 15:17:46,248 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:17:46,248 INFO L495 AbstractCegarLoop]: Abstraction has 199 states and 233 transitions. [2022-04-27 15:17:46,249 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 13 states, 13 states have (on average 4.769230769230769) internal successors, (62), 5 states have internal predecessors, (62), 2 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 2 states have call predecessors, (11), 1 states have call successors, (11) [2022-04-27 15:17:46,249 INFO L276 IsEmpty]: Start isEmpty. Operand 199 states and 233 transitions. [2022-04-27 15:17:46,249 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 90 [2022-04-27 15:17:46,249 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:17:46,249 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:17:46,249 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable22 [2022-04-27 15:17:46,249 INFO L420 AbstractCegarLoop]: === Iteration 24 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:17:46,250 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:17:46,250 INFO L85 PathProgramCache]: Analyzing trace with hash -1324935307, now seen corresponding path program 1 times [2022-04-27 15:17:46,250 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:17:46,250 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1165654754] [2022-04-27 15:17:46,250 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:17:46,250 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:17:46,303 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:46,395 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:17:46,396 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:46,402 INFO L290 TraceCheckUtils]: 0: Hoare triple {43660#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {43604#true} is VALID [2022-04-27 15:17:46,402 INFO L290 TraceCheckUtils]: 1: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,403 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {43604#true} {43604#true} #1270#return; {43604#true} is VALID [2022-04-27 15:17:46,425 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:17:46,426 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:46,432 INFO L290 TraceCheckUtils]: 0: Hoare triple {43661#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {43604#true} is VALID [2022-04-27 15:17:46,432 INFO L290 TraceCheckUtils]: 1: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,432 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {43604#true} {43604#true} #1216#return; {43604#true} is VALID [2022-04-27 15:17:46,438 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:17:46,443 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:46,451 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:17:46,453 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:46,458 INFO L290 TraceCheckUtils]: 0: Hoare triple {43604#true} ~cond := #in~cond; {43604#true} is VALID [2022-04-27 15:17:46,458 INFO L290 TraceCheckUtils]: 1: Hoare triple {43604#true} assume !(0 == ~cond); {43604#true} is VALID [2022-04-27 15:17:46,458 INFO L290 TraceCheckUtils]: 2: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,458 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {43604#true} {43604#true} #1254#return; {43604#true} is VALID [2022-04-27 15:17:46,459 INFO L290 TraceCheckUtils]: 0: Hoare triple {43662#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {43604#true} is VALID [2022-04-27 15:17:46,459 INFO L272 TraceCheckUtils]: 1: Hoare triple {43604#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {43604#true} is VALID [2022-04-27 15:17:46,459 INFO L290 TraceCheckUtils]: 2: Hoare triple {43604#true} ~cond := #in~cond; {43604#true} is VALID [2022-04-27 15:17:46,459 INFO L290 TraceCheckUtils]: 3: Hoare triple {43604#true} assume !(0 == ~cond); {43604#true} is VALID [2022-04-27 15:17:46,459 INFO L290 TraceCheckUtils]: 4: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,459 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {43604#true} {43604#true} #1254#return; {43604#true} is VALID [2022-04-27 15:17:46,459 INFO L290 TraceCheckUtils]: 6: Hoare triple {43604#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {43604#true} is VALID [2022-04-27 15:17:46,459 INFO L290 TraceCheckUtils]: 7: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,459 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {43604#true} {43604#true} #1218#return; {43604#true} is VALID [2022-04-27 15:17:46,468 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:17:46,472 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:46,479 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:17:46,480 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:46,487 INFO L290 TraceCheckUtils]: 0: Hoare triple {43667#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {43604#true} is VALID [2022-04-27 15:17:46,487 INFO L290 TraceCheckUtils]: 1: Hoare triple {43604#true} assume !(0 == ~__BLAST_NONDET~5); {43604#true} is VALID [2022-04-27 15:17:46,487 INFO L290 TraceCheckUtils]: 2: Hoare triple {43604#true} #res := -1073741823; {43604#true} is VALID [2022-04-27 15:17:46,487 INFO L290 TraceCheckUtils]: 3: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,487 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {43604#true} {43604#true} #1176#return; {43604#true} is VALID [2022-04-27 15:17:46,487 INFO L290 TraceCheckUtils]: 0: Hoare triple {43667#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {43604#true} is VALID [2022-04-27 15:17:46,488 INFO L272 TraceCheckUtils]: 1: Hoare triple {43604#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {43667#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:17:46,489 INFO L290 TraceCheckUtils]: 2: Hoare triple {43667#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {43604#true} is VALID [2022-04-27 15:17:46,489 INFO L290 TraceCheckUtils]: 3: Hoare triple {43604#true} assume !(0 == ~__BLAST_NONDET~5); {43604#true} is VALID [2022-04-27 15:17:46,489 INFO L290 TraceCheckUtils]: 4: Hoare triple {43604#true} #res := -1073741823; {43604#true} is VALID [2022-04-27 15:17:46,489 INFO L290 TraceCheckUtils]: 5: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,489 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {43604#true} {43604#true} #1176#return; {43604#true} is VALID [2022-04-27 15:17:46,489 INFO L290 TraceCheckUtils]: 7: Hoare triple {43604#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {43604#true} is VALID [2022-04-27 15:17:46,489 INFO L290 TraceCheckUtils]: 8: Hoare triple {43604#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {43604#true} is VALID [2022-04-27 15:17:46,489 INFO L290 TraceCheckUtils]: 9: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,490 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {43604#true} {43621#(= ~myStatus~0 (- 1073741637))} #1220#return; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,502 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:17:46,504 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:46,510 INFO L290 TraceCheckUtils]: 0: Hoare triple {43673#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {43604#true} is VALID [2022-04-27 15:17:46,510 INFO L290 TraceCheckUtils]: 1: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,510 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {43604#true} {43621#(= ~myStatus~0 (- 1073741637))} #1222#return; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,510 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 49 [2022-04-27 15:17:46,513 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:46,520 INFO L290 TraceCheckUtils]: 0: Hoare triple {43662#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {43604#true} is VALID [2022-04-27 15:17:46,520 INFO L290 TraceCheckUtils]: 1: Hoare triple {43604#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {43604#true} is VALID [2022-04-27 15:17:46,520 INFO L290 TraceCheckUtils]: 2: Hoare triple {43604#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {43604#true} is VALID [2022-04-27 15:17:46,520 INFO L290 TraceCheckUtils]: 3: Hoare triple {43604#true} assume #res.base == dest.base && #res.offset == dest.offset; {43604#true} is VALID [2022-04-27 15:17:46,521 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {43604#true} {43621#(= ~myStatus~0 (- 1073741637))} #1186#return; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,529 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 59 [2022-04-27 15:17:46,533 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:46,548 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:17:46,549 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:46,555 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:17:46,556 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:46,562 INFO L290 TraceCheckUtils]: 0: Hoare triple {43683#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {43604#true} is VALID [2022-04-27 15:17:46,562 INFO L290 TraceCheckUtils]: 1: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,562 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {43604#true} {43604#true} #1174#return; {43604#true} is VALID [2022-04-27 15:17:46,562 INFO L290 TraceCheckUtils]: 0: Hoare triple {43683#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {43604#true} is VALID [2022-04-27 15:17:46,563 INFO L272 TraceCheckUtils]: 1: Hoare triple {43604#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {43683#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:46,563 INFO L290 TraceCheckUtils]: 2: Hoare triple {43683#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {43604#true} is VALID [2022-04-27 15:17:46,563 INFO L290 TraceCheckUtils]: 3: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,563 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {43604#true} {43604#true} #1174#return; {43604#true} is VALID [2022-04-27 15:17:46,563 INFO L290 TraceCheckUtils]: 5: Hoare triple {43604#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {43604#true} is VALID [2022-04-27 15:17:46,563 INFO L290 TraceCheckUtils]: 6: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,563 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {43604#true} {43604#true} #1210#return; {43604#true} is VALID [2022-04-27 15:17:46,563 INFO L290 TraceCheckUtils]: 0: Hoare triple {43674#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {43604#true} is VALID [2022-04-27 15:17:46,563 INFO L290 TraceCheckUtils]: 1: Hoare triple {43604#true} assume 0 != ~compRegistered~0; {43604#true} is VALID [2022-04-27 15:17:46,564 INFO L272 TraceCheckUtils]: 2: Hoare triple {43604#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {43683#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:46,564 INFO L290 TraceCheckUtils]: 3: Hoare triple {43683#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {43604#true} is VALID [2022-04-27 15:17:46,564 INFO L272 TraceCheckUtils]: 4: Hoare triple {43604#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {43683#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:46,565 INFO L290 TraceCheckUtils]: 5: Hoare triple {43683#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {43604#true} is VALID [2022-04-27 15:17:46,565 INFO L290 TraceCheckUtils]: 6: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,565 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {43604#true} {43604#true} #1174#return; {43604#true} is VALID [2022-04-27 15:17:46,565 INFO L290 TraceCheckUtils]: 8: Hoare triple {43604#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {43604#true} is VALID [2022-04-27 15:17:46,565 INFO L290 TraceCheckUtils]: 9: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,565 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {43604#true} {43604#true} #1210#return; {43604#true} is VALID [2022-04-27 15:17:46,565 INFO L290 TraceCheckUtils]: 11: Hoare triple {43604#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {43604#true} is VALID [2022-04-27 15:17:46,565 INFO L290 TraceCheckUtils]: 12: Hoare triple {43604#true} assume !(-1073741802 == ~compRetStatus~0); {43604#true} is VALID [2022-04-27 15:17:46,565 INFO L290 TraceCheckUtils]: 13: Hoare triple {43604#true} assume 0 == ~__BLAST_NONDET~11; {43604#true} is VALID [2022-04-27 15:17:46,565 INFO L290 TraceCheckUtils]: 14: Hoare triple {43604#true} ~returnVal2~0 := 0; {43604#true} is VALID [2022-04-27 15:17:46,565 INFO L290 TraceCheckUtils]: 15: Hoare triple {43604#true} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {43604#true} is VALID [2022-04-27 15:17:46,565 INFO L290 TraceCheckUtils]: 16: Hoare triple {43604#true} #res := ~returnVal2~0; {43604#true} is VALID [2022-04-27 15:17:46,565 INFO L290 TraceCheckUtils]: 17: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,566 INFO L284 TraceCheckUtils]: 18: Hoare quadruple {43604#true} {43621#(= ~myStatus~0 (- 1073741637))} #1192#return; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,567 INFO L272 TraceCheckUtils]: 0: Hoare triple {43604#true} call ULTIMATE.init(); {43660#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:17:46,567 INFO L290 TraceCheckUtils]: 1: Hoare triple {43660#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {43604#true} is VALID [2022-04-27 15:17:46,567 INFO L290 TraceCheckUtils]: 2: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,567 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {43604#true} {43604#true} #1270#return; {43604#true} is VALID [2022-04-27 15:17:46,567 INFO L272 TraceCheckUtils]: 4: Hoare triple {43604#true} call #t~ret213 := main(); {43604#true} is VALID [2022-04-27 15:17:46,567 INFO L290 TraceCheckUtils]: 5: Hoare triple {43604#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {43604#true} is VALID [2022-04-27 15:17:46,568 INFO L272 TraceCheckUtils]: 6: Hoare triple {43604#true} call _BLAST_init(); {43661#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:46,568 INFO L290 TraceCheckUtils]: 7: Hoare triple {43661#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {43604#true} is VALID [2022-04-27 15:17:46,568 INFO L290 TraceCheckUtils]: 8: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,568 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {43604#true} {43604#true} #1216#return; {43604#true} is VALID [2022-04-27 15:17:46,569 INFO L272 TraceCheckUtils]: 10: Hoare triple {43604#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {43662#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:17:46,569 INFO L290 TraceCheckUtils]: 11: Hoare triple {43662#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {43604#true} is VALID [2022-04-27 15:17:46,569 INFO L272 TraceCheckUtils]: 12: Hoare triple {43604#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {43604#true} is VALID [2022-04-27 15:17:46,569 INFO L290 TraceCheckUtils]: 13: Hoare triple {43604#true} ~cond := #in~cond; {43604#true} is VALID [2022-04-27 15:17:46,569 INFO L290 TraceCheckUtils]: 14: Hoare triple {43604#true} assume !(0 == ~cond); {43604#true} is VALID [2022-04-27 15:17:46,569 INFO L290 TraceCheckUtils]: 15: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,569 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {43604#true} {43604#true} #1254#return; {43604#true} is VALID [2022-04-27 15:17:46,570 INFO L290 TraceCheckUtils]: 17: Hoare triple {43604#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {43604#true} is VALID [2022-04-27 15:17:46,570 INFO L290 TraceCheckUtils]: 18: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,570 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {43604#true} {43604#true} #1218#return; {43604#true} is VALID [2022-04-27 15:17:46,570 INFO L290 TraceCheckUtils]: 20: Hoare triple {43604#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {43604#true} is VALID [2022-04-27 15:17:46,570 INFO L290 TraceCheckUtils]: 21: Hoare triple {43604#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {43604#true} is VALID [2022-04-27 15:17:46,570 INFO L290 TraceCheckUtils]: 22: Hoare triple {43604#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,571 INFO L272 TraceCheckUtils]: 23: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {43667#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:17:46,571 INFO L290 TraceCheckUtils]: 24: Hoare triple {43667#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {43604#true} is VALID [2022-04-27 15:17:46,572 INFO L272 TraceCheckUtils]: 25: Hoare triple {43604#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {43667#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:17:46,572 INFO L290 TraceCheckUtils]: 26: Hoare triple {43667#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {43604#true} is VALID [2022-04-27 15:17:46,572 INFO L290 TraceCheckUtils]: 27: Hoare triple {43604#true} assume !(0 == ~__BLAST_NONDET~5); {43604#true} is VALID [2022-04-27 15:17:46,572 INFO L290 TraceCheckUtils]: 28: Hoare triple {43604#true} #res := -1073741823; {43604#true} is VALID [2022-04-27 15:17:46,572 INFO L290 TraceCheckUtils]: 29: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,572 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {43604#true} {43604#true} #1176#return; {43604#true} is VALID [2022-04-27 15:17:46,572 INFO L290 TraceCheckUtils]: 31: Hoare triple {43604#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {43604#true} is VALID [2022-04-27 15:17:46,572 INFO L290 TraceCheckUtils]: 32: Hoare triple {43604#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {43604#true} is VALID [2022-04-27 15:17:46,572 INFO L290 TraceCheckUtils]: 33: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,573 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {43604#true} {43621#(= ~myStatus~0 (- 1073741637))} #1220#return; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,573 INFO L290 TraceCheckUtils]: 35: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,574 INFO L272 TraceCheckUtils]: 36: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} call stub_driver_init(); {43673#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:46,574 INFO L290 TraceCheckUtils]: 37: Hoare triple {43673#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {43604#true} is VALID [2022-04-27 15:17:46,574 INFO L290 TraceCheckUtils]: 38: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,574 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {43604#true} {43621#(= ~myStatus~0 (- 1073741637))} #1222#return; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,574 INFO L290 TraceCheckUtils]: 40: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume !!(~status~5 >= 0); {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,575 INFO L290 TraceCheckUtils]: 41: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume !(0 == ~__BLAST_NONDET~0); {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,575 INFO L290 TraceCheckUtils]: 42: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume !(1 == ~__BLAST_NONDET~0); {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,575 INFO L290 TraceCheckUtils]: 43: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume !(2 == ~__BLAST_NONDET~0); {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,575 INFO L290 TraceCheckUtils]: 44: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume 3 == ~__BLAST_NONDET~0; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,576 INFO L272 TraceCheckUtils]: 45: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,576 INFO L290 TraceCheckUtils]: 46: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,576 INFO L290 TraceCheckUtils]: 47: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume 0 == #t~mem81 % 256;havoc #t~mem81; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,577 INFO L290 TraceCheckUtils]: 48: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,577 INFO L272 TraceCheckUtils]: 49: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {43662#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:17:46,578 INFO L290 TraceCheckUtils]: 50: Hoare triple {43662#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {43604#true} is VALID [2022-04-27 15:17:46,578 INFO L290 TraceCheckUtils]: 51: Hoare triple {43604#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {43604#true} is VALID [2022-04-27 15:17:46,578 INFO L290 TraceCheckUtils]: 52: Hoare triple {43604#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {43604#true} is VALID [2022-04-27 15:17:46,578 INFO L290 TraceCheckUtils]: 53: Hoare triple {43604#true} assume #res.base == dest.base && #res.offset == dest.offset; {43604#true} is VALID [2022-04-27 15:17:46,578 INFO L284 TraceCheckUtils]: 54: Hoare quadruple {43604#true} {43621#(= ~myStatus~0 (- 1073741637))} #1186#return; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,579 INFO L290 TraceCheckUtils]: 55: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,579 INFO L290 TraceCheckUtils]: 56: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume !(~s~0 != ~NP~0); {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,579 INFO L290 TraceCheckUtils]: 57: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,579 INFO L290 TraceCheckUtils]: 58: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,580 INFO L272 TraceCheckUtils]: 59: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {43674#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:46,580 INFO L290 TraceCheckUtils]: 60: Hoare triple {43674#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {43604#true} is VALID [2022-04-27 15:17:46,580 INFO L290 TraceCheckUtils]: 61: Hoare triple {43604#true} assume 0 != ~compRegistered~0; {43604#true} is VALID [2022-04-27 15:17:46,581 INFO L272 TraceCheckUtils]: 62: Hoare triple {43604#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {43683#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:46,581 INFO L290 TraceCheckUtils]: 63: Hoare triple {43683#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L272 TraceCheckUtils]: 64: Hoare triple {43604#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {43683#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:46,582 INFO L290 TraceCheckUtils]: 65: Hoare triple {43683#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L290 TraceCheckUtils]: 66: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L284 TraceCheckUtils]: 67: Hoare quadruple {43604#true} {43604#true} #1174#return; {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L290 TraceCheckUtils]: 68: Hoare triple {43604#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L290 TraceCheckUtils]: 69: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L284 TraceCheckUtils]: 70: Hoare quadruple {43604#true} {43604#true} #1210#return; {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L290 TraceCheckUtils]: 71: Hoare triple {43604#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L290 TraceCheckUtils]: 72: Hoare triple {43604#true} assume !(-1073741802 == ~compRetStatus~0); {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L290 TraceCheckUtils]: 73: Hoare triple {43604#true} assume 0 == ~__BLAST_NONDET~11; {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L290 TraceCheckUtils]: 74: Hoare triple {43604#true} ~returnVal2~0 := 0; {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L290 TraceCheckUtils]: 75: Hoare triple {43604#true} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L290 TraceCheckUtils]: 76: Hoare triple {43604#true} #res := ~returnVal2~0; {43604#true} is VALID [2022-04-27 15:17:46,582 INFO L290 TraceCheckUtils]: 77: Hoare triple {43604#true} assume true; {43604#true} is VALID [2022-04-27 15:17:46,583 INFO L284 TraceCheckUtils]: 78: Hoare quadruple {43604#true} {43621#(= ~myStatus~0 (- 1073741637))} #1192#return; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,583 INFO L290 TraceCheckUtils]: 79: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,593 INFO L290 TraceCheckUtils]: 80: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume !(259 == ~status~3); {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,594 INFO L290 TraceCheckUtils]: 81: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume ~status~3 >= 0; {43621#(= ~myStatus~0 (- 1073741637))} is VALID [2022-04-27 15:17:46,594 INFO L290 TraceCheckUtils]: 82: Hoare triple {43621#(= ~myStatus~0 (- 1073741637))} assume ~myStatus~0 >= 0;call write~int(1, ~devExt~3.base, 52 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 54 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 53 + ~devExt~3.offset, 1); {43605#false} is VALID [2022-04-27 15:17:46,594 INFO L290 TraceCheckUtils]: 83: Hoare triple {43605#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {43605#false} is VALID [2022-04-27 15:17:46,594 INFO L272 TraceCheckUtils]: 84: Hoare triple {43605#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {43605#false} is VALID [2022-04-27 15:17:46,594 INFO L290 TraceCheckUtils]: 85: Hoare triple {43605#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {43605#false} is VALID [2022-04-27 15:17:46,595 INFO L290 TraceCheckUtils]: 86: Hoare triple {43605#false} assume !(~s~0 == ~NP~0); {43605#false} is VALID [2022-04-27 15:17:46,595 INFO L272 TraceCheckUtils]: 87: Hoare triple {43605#false} call errorFn(); {43605#false} is VALID [2022-04-27 15:17:46,595 INFO L290 TraceCheckUtils]: 88: Hoare triple {43605#false} assume !false; {43605#false} is VALID [2022-04-27 15:17:46,595 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:17:46,595 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:17:46,595 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1165654754] [2022-04-27 15:17:46,595 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1165654754] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:17:46,595 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:17:46,595 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2022-04-27 15:17:46,595 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [961065237] [2022-04-27 15:17:46,595 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:17:46,597 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 6.3) internal successors, (63), 3 states have internal predecessors, (63), 3 states have call successors, (15), 10 states have call predecessors, (15), 1 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) Word has length 89 [2022-04-27 15:17:46,597 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:17:46,597 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 10 states, 10 states have (on average 6.3) internal successors, (63), 3 states have internal predecessors, (63), 3 states have call successors, (15), 10 states have call predecessors, (15), 1 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) [2022-04-27 15:17:46,667 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 89 edges. 89 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:17:46,667 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2022-04-27 15:17:46,667 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:17:46,667 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2022-04-27 15:17:46,667 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=28, Invalid=62, Unknown=0, NotChecked=0, Total=90 [2022-04-27 15:17:46,667 INFO L87 Difference]: Start difference. First operand 199 states and 233 transitions. Second operand has 10 states, 10 states have (on average 6.3) internal successors, (63), 3 states have internal predecessors, (63), 3 states have call successors, (15), 10 states have call predecessors, (15), 1 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) [2022-04-27 15:17:48,764 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:17:52,357 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:17:52,357 INFO L93 Difference]: Finished difference Result 437 states and 522 transitions. [2022-04-27 15:17:52,357 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2022-04-27 15:17:52,357 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 6.3) internal successors, (63), 3 states have internal predecessors, (63), 3 states have call successors, (15), 10 states have call predecessors, (15), 1 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) Word has length 89 [2022-04-27 15:17:52,357 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:17:52,358 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 6.3) internal successors, (63), 3 states have internal predecessors, (63), 3 states have call successors, (15), 10 states have call predecessors, (15), 1 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) [2022-04-27 15:17:52,360 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 15 states to 15 states and 383 transitions. [2022-04-27 15:17:52,360 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 10 states, 10 states have (on average 6.3) internal successors, (63), 3 states have internal predecessors, (63), 3 states have call successors, (15), 10 states have call predecessors, (15), 1 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) [2022-04-27 15:17:52,363 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 15 states to 15 states and 383 transitions. [2022-04-27 15:17:52,363 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 15 states and 383 transitions. [2022-04-27 15:17:52,831 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 383 edges. 383 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:17:52,838 INFO L225 Difference]: With dead ends: 437 [2022-04-27 15:17:52,838 INFO L226 Difference]: Without dead ends: 408 [2022-04-27 15:17:52,839 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 41 GetRequests, 23 SyntacticMatches, 1 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 43 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=109, Invalid=233, Unknown=0, NotChecked=0, Total=342 [2022-04-27 15:17:52,839 INFO L413 NwaCegarLoop]: 144 mSDtfsCounter, 605 mSDsluCounter, 137 mSDsCounter, 0 mSdLazyCounter, 381 mSolverCounterSat, 284 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 611 SdHoareTripleChecker+Valid, 281 SdHoareTripleChecker+Invalid, 666 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 284 IncrementalHoareTripleChecker+Valid, 381 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.4s IncrementalHoareTripleChecker+Time [2022-04-27 15:17:52,840 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [611 Valid, 281 Invalid, 666 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [284 Valid, 381 Invalid, 1 Unknown, 0 Unchecked, 3.4s Time] [2022-04-27 15:17:52,840 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 408 states. [2022-04-27 15:17:53,071 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 408 to 345. [2022-04-27 15:17:53,071 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:17:53,075 INFO L82 GeneralOperation]: Start isEquivalent. First operand 408 states. Second operand has 345 states, 268 states have (on average 1.2350746268656716) internal successors, (331), 272 states have internal predecessors, (331), 36 states have call successors, (36), 34 states have call predecessors, (36), 40 states have return successors, (42), 38 states have call predecessors, (42), 32 states have call successors, (42) [2022-04-27 15:17:53,076 INFO L74 IsIncluded]: Start isIncluded. First operand 408 states. Second operand has 345 states, 268 states have (on average 1.2350746268656716) internal successors, (331), 272 states have internal predecessors, (331), 36 states have call successors, (36), 34 states have call predecessors, (36), 40 states have return successors, (42), 38 states have call predecessors, (42), 32 states have call successors, (42) [2022-04-27 15:17:53,076 INFO L87 Difference]: Start difference. First operand 408 states. Second operand has 345 states, 268 states have (on average 1.2350746268656716) internal successors, (331), 272 states have internal predecessors, (331), 36 states have call successors, (36), 34 states have call predecessors, (36), 40 states have return successors, (42), 38 states have call predecessors, (42), 32 states have call successors, (42) [2022-04-27 15:17:53,082 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:17:53,082 INFO L93 Difference]: Finished difference Result 408 states and 489 transitions. [2022-04-27 15:17:53,082 INFO L276 IsEmpty]: Start isEmpty. Operand 408 states and 489 transitions. [2022-04-27 15:17:53,083 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:17:53,083 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:17:53,084 INFO L74 IsIncluded]: Start isIncluded. First operand has 345 states, 268 states have (on average 1.2350746268656716) internal successors, (331), 272 states have internal predecessors, (331), 36 states have call successors, (36), 34 states have call predecessors, (36), 40 states have return successors, (42), 38 states have call predecessors, (42), 32 states have call successors, (42) Second operand 408 states. [2022-04-27 15:17:53,084 INFO L87 Difference]: Start difference. First operand has 345 states, 268 states have (on average 1.2350746268656716) internal successors, (331), 272 states have internal predecessors, (331), 36 states have call successors, (36), 34 states have call predecessors, (36), 40 states have return successors, (42), 38 states have call predecessors, (42), 32 states have call successors, (42) Second operand 408 states. [2022-04-27 15:17:53,090 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:17:53,090 INFO L93 Difference]: Finished difference Result 408 states and 489 transitions. [2022-04-27 15:17:53,090 INFO L276 IsEmpty]: Start isEmpty. Operand 408 states and 489 transitions. [2022-04-27 15:17:53,091 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:17:53,091 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:17:53,091 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:17:53,091 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:17:53,091 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 345 states, 268 states have (on average 1.2350746268656716) internal successors, (331), 272 states have internal predecessors, (331), 36 states have call successors, (36), 34 states have call predecessors, (36), 40 states have return successors, (42), 38 states have call predecessors, (42), 32 states have call successors, (42) [2022-04-27 15:17:53,096 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 345 states to 345 states and 409 transitions. [2022-04-27 15:17:53,097 INFO L78 Accepts]: Start accepts. Automaton has 345 states and 409 transitions. Word has length 89 [2022-04-27 15:17:53,097 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:17:53,097 INFO L495 AbstractCegarLoop]: Abstraction has 345 states and 409 transitions. [2022-04-27 15:17:53,097 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 10 states have (on average 6.3) internal successors, (63), 3 states have internal predecessors, (63), 3 states have call successors, (15), 10 states have call predecessors, (15), 1 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) [2022-04-27 15:17:53,097 INFO L276 IsEmpty]: Start isEmpty. Operand 345 states and 409 transitions. [2022-04-27 15:17:53,098 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 90 [2022-04-27 15:17:53,098 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:17:53,098 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:17:53,098 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable23 [2022-04-27 15:17:53,098 INFO L420 AbstractCegarLoop]: === Iteration 25 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:17:53,098 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:17:53,099 INFO L85 PathProgramCache]: Analyzing trace with hash 450072055, now seen corresponding path program 1 times [2022-04-27 15:17:53,099 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:17:53,099 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1267984132] [2022-04-27 15:17:53,099 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:17:53,099 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:17:53,165 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:53,229 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:17:53,231 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:53,237 INFO L290 TraceCheckUtils]: 0: Hoare triple {45658#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {45601#true} is VALID [2022-04-27 15:17:53,237 INFO L290 TraceCheckUtils]: 1: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,237 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {45601#true} {45601#true} #1270#return; {45601#true} is VALID [2022-04-27 15:17:53,255 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:17:53,256 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:53,261 INFO L290 TraceCheckUtils]: 0: Hoare triple {45659#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {45601#true} is VALID [2022-04-27 15:17:53,261 INFO L290 TraceCheckUtils]: 1: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,261 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {45601#true} {45601#true} #1216#return; {45601#true} is VALID [2022-04-27 15:17:53,268 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:17:53,272 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:53,279 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:17:53,280 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:53,288 INFO L290 TraceCheckUtils]: 0: Hoare triple {45601#true} ~cond := #in~cond; {45601#true} is VALID [2022-04-27 15:17:53,288 INFO L290 TraceCheckUtils]: 1: Hoare triple {45601#true} assume !(0 == ~cond); {45601#true} is VALID [2022-04-27 15:17:53,289 INFO L290 TraceCheckUtils]: 2: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,289 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {45601#true} {45601#true} #1254#return; {45601#true} is VALID [2022-04-27 15:17:53,289 INFO L290 TraceCheckUtils]: 0: Hoare triple {45660#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {45601#true} is VALID [2022-04-27 15:17:53,289 INFO L272 TraceCheckUtils]: 1: Hoare triple {45601#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {45601#true} is VALID [2022-04-27 15:17:53,289 INFO L290 TraceCheckUtils]: 2: Hoare triple {45601#true} ~cond := #in~cond; {45601#true} is VALID [2022-04-27 15:17:53,289 INFO L290 TraceCheckUtils]: 3: Hoare triple {45601#true} assume !(0 == ~cond); {45601#true} is VALID [2022-04-27 15:17:53,289 INFO L290 TraceCheckUtils]: 4: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,289 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {45601#true} {45601#true} #1254#return; {45601#true} is VALID [2022-04-27 15:17:53,289 INFO L290 TraceCheckUtils]: 6: Hoare triple {45601#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {45601#true} is VALID [2022-04-27 15:17:53,289 INFO L290 TraceCheckUtils]: 7: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,289 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {45601#true} {45601#true} #1218#return; {45601#true} is VALID [2022-04-27 15:17:53,298 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:17:53,302 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:53,315 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:17:53,316 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:53,321 INFO L290 TraceCheckUtils]: 0: Hoare triple {45665#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {45601#true} is VALID [2022-04-27 15:17:53,321 INFO L290 TraceCheckUtils]: 1: Hoare triple {45601#true} assume !(0 == ~__BLAST_NONDET~5); {45601#true} is VALID [2022-04-27 15:17:53,321 INFO L290 TraceCheckUtils]: 2: Hoare triple {45601#true} #res := -1073741823; {45601#true} is VALID [2022-04-27 15:17:53,321 INFO L290 TraceCheckUtils]: 3: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,321 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {45601#true} {45601#true} #1176#return; {45601#true} is VALID [2022-04-27 15:17:53,321 INFO L290 TraceCheckUtils]: 0: Hoare triple {45665#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {45601#true} is VALID [2022-04-27 15:17:53,322 INFO L272 TraceCheckUtils]: 1: Hoare triple {45601#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {45665#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:17:53,322 INFO L290 TraceCheckUtils]: 2: Hoare triple {45665#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {45601#true} is VALID [2022-04-27 15:17:53,322 INFO L290 TraceCheckUtils]: 3: Hoare triple {45601#true} assume !(0 == ~__BLAST_NONDET~5); {45601#true} is VALID [2022-04-27 15:17:53,322 INFO L290 TraceCheckUtils]: 4: Hoare triple {45601#true} #res := -1073741823; {45601#true} is VALID [2022-04-27 15:17:53,322 INFO L290 TraceCheckUtils]: 5: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,322 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {45601#true} {45601#true} #1176#return; {45601#true} is VALID [2022-04-27 15:17:53,322 INFO L290 TraceCheckUtils]: 7: Hoare triple {45601#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {45601#true} is VALID [2022-04-27 15:17:53,323 INFO L290 TraceCheckUtils]: 8: Hoare triple {45601#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {45671#(<= (+ |KbFilter_AddDevice_#res| 1) 0)} is VALID [2022-04-27 15:17:53,323 INFO L290 TraceCheckUtils]: 9: Hoare triple {45671#(<= (+ |KbFilter_AddDevice_#res| 1) 0)} assume true; {45671#(<= (+ |KbFilter_AddDevice_#res| 1) 0)} is VALID [2022-04-27 15:17:53,324 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {45671#(<= (+ |KbFilter_AddDevice_#res| 1) 0)} {45601#true} #1220#return; {45629#(<= (+ 1 |main_#t~ret170|) 0)} is VALID [2022-04-27 15:17:53,336 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2022-04-27 15:17:53,342 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:53,352 INFO L290 TraceCheckUtils]: 0: Hoare triple {45672#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {45601#true} is VALID [2022-04-27 15:17:53,353 INFO L290 TraceCheckUtils]: 1: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,353 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {45601#true} {45630#(<= (+ main_~status~5 1) 0)} #1222#return; {45630#(<= (+ main_~status~5 1) 0)} is VALID [2022-04-27 15:17:53,353 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 49 [2022-04-27 15:17:53,354 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:53,364 INFO L290 TraceCheckUtils]: 0: Hoare triple {45660#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {45601#true} is VALID [2022-04-27 15:17:53,364 INFO L290 TraceCheckUtils]: 1: Hoare triple {45601#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {45601#true} is VALID [2022-04-27 15:17:53,364 INFO L290 TraceCheckUtils]: 2: Hoare triple {45601#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {45601#true} is VALID [2022-04-27 15:17:53,364 INFO L290 TraceCheckUtils]: 3: Hoare triple {45601#true} assume #res.base == dest.base && #res.offset == dest.offset; {45601#true} is VALID [2022-04-27 15:17:53,364 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {45601#true} {45602#false} #1186#return; {45602#false} is VALID [2022-04-27 15:17:53,373 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 59 [2022-04-27 15:17:53,377 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:53,396 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:17:53,400 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:53,408 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:17:53,409 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:17:53,414 INFO L290 TraceCheckUtils]: 0: Hoare triple {45682#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {45601#true} is VALID [2022-04-27 15:17:53,414 INFO L290 TraceCheckUtils]: 1: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,414 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {45601#true} {45601#true} #1174#return; {45601#true} is VALID [2022-04-27 15:17:53,414 INFO L290 TraceCheckUtils]: 0: Hoare triple {45682#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {45601#true} is VALID [2022-04-27 15:17:53,414 INFO L272 TraceCheckUtils]: 1: Hoare triple {45601#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {45682#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:53,415 INFO L290 TraceCheckUtils]: 2: Hoare triple {45682#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {45601#true} is VALID [2022-04-27 15:17:53,415 INFO L290 TraceCheckUtils]: 3: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,415 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {45601#true} {45601#true} #1174#return; {45601#true} is VALID [2022-04-27 15:17:53,415 INFO L290 TraceCheckUtils]: 5: Hoare triple {45601#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {45601#true} is VALID [2022-04-27 15:17:53,415 INFO L290 TraceCheckUtils]: 6: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,415 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {45601#true} {45601#true} #1210#return; {45601#true} is VALID [2022-04-27 15:17:53,415 INFO L290 TraceCheckUtils]: 0: Hoare triple {45673#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {45601#true} is VALID [2022-04-27 15:17:53,415 INFO L290 TraceCheckUtils]: 1: Hoare triple {45601#true} assume 0 != ~compRegistered~0; {45601#true} is VALID [2022-04-27 15:17:53,416 INFO L272 TraceCheckUtils]: 2: Hoare triple {45601#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {45682#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:53,416 INFO L290 TraceCheckUtils]: 3: Hoare triple {45682#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {45601#true} is VALID [2022-04-27 15:17:53,416 INFO L272 TraceCheckUtils]: 4: Hoare triple {45601#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {45682#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:53,416 INFO L290 TraceCheckUtils]: 5: Hoare triple {45682#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {45601#true} is VALID [2022-04-27 15:17:53,416 INFO L290 TraceCheckUtils]: 6: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,416 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {45601#true} {45601#true} #1174#return; {45601#true} is VALID [2022-04-27 15:17:53,416 INFO L290 TraceCheckUtils]: 8: Hoare triple {45601#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {45601#true} is VALID [2022-04-27 15:17:53,417 INFO L290 TraceCheckUtils]: 9: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,417 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {45601#true} {45601#true} #1210#return; {45601#true} is VALID [2022-04-27 15:17:53,417 INFO L290 TraceCheckUtils]: 11: Hoare triple {45601#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {45601#true} is VALID [2022-04-27 15:17:53,417 INFO L290 TraceCheckUtils]: 12: Hoare triple {45601#true} assume !(-1073741802 == ~compRetStatus~0); {45601#true} is VALID [2022-04-27 15:17:53,417 INFO L290 TraceCheckUtils]: 13: Hoare triple {45601#true} assume 0 == ~__BLAST_NONDET~11; {45601#true} is VALID [2022-04-27 15:17:53,417 INFO L290 TraceCheckUtils]: 14: Hoare triple {45601#true} ~returnVal2~0 := 0; {45601#true} is VALID [2022-04-27 15:17:53,417 INFO L290 TraceCheckUtils]: 15: Hoare triple {45601#true} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {45601#true} is VALID [2022-04-27 15:17:53,417 INFO L290 TraceCheckUtils]: 16: Hoare triple {45601#true} #res := ~returnVal2~0; {45601#true} is VALID [2022-04-27 15:17:53,417 INFO L290 TraceCheckUtils]: 17: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,417 INFO L284 TraceCheckUtils]: 18: Hoare quadruple {45601#true} {45602#false} #1192#return; {45602#false} is VALID [2022-04-27 15:17:53,418 INFO L272 TraceCheckUtils]: 0: Hoare triple {45601#true} call ULTIMATE.init(); {45658#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:17:53,418 INFO L290 TraceCheckUtils]: 1: Hoare triple {45658#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {45601#true} is VALID [2022-04-27 15:17:53,418 INFO L290 TraceCheckUtils]: 2: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,418 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {45601#true} {45601#true} #1270#return; {45601#true} is VALID [2022-04-27 15:17:53,418 INFO L272 TraceCheckUtils]: 4: Hoare triple {45601#true} call #t~ret213 := main(); {45601#true} is VALID [2022-04-27 15:17:53,418 INFO L290 TraceCheckUtils]: 5: Hoare triple {45601#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {45601#true} is VALID [2022-04-27 15:17:53,419 INFO L272 TraceCheckUtils]: 6: Hoare triple {45601#true} call _BLAST_init(); {45659#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:53,419 INFO L290 TraceCheckUtils]: 7: Hoare triple {45659#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {45601#true} is VALID [2022-04-27 15:17:53,419 INFO L290 TraceCheckUtils]: 8: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,419 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {45601#true} {45601#true} #1216#return; {45601#true} is VALID [2022-04-27 15:17:53,420 INFO L272 TraceCheckUtils]: 10: Hoare triple {45601#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {45660#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:17:53,420 INFO L290 TraceCheckUtils]: 11: Hoare triple {45660#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {45601#true} is VALID [2022-04-27 15:17:53,420 INFO L272 TraceCheckUtils]: 12: Hoare triple {45601#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {45601#true} is VALID [2022-04-27 15:17:53,420 INFO L290 TraceCheckUtils]: 13: Hoare triple {45601#true} ~cond := #in~cond; {45601#true} is VALID [2022-04-27 15:17:53,420 INFO L290 TraceCheckUtils]: 14: Hoare triple {45601#true} assume !(0 == ~cond); {45601#true} is VALID [2022-04-27 15:17:53,420 INFO L290 TraceCheckUtils]: 15: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,420 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {45601#true} {45601#true} #1254#return; {45601#true} is VALID [2022-04-27 15:17:53,420 INFO L290 TraceCheckUtils]: 17: Hoare triple {45601#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {45601#true} is VALID [2022-04-27 15:17:53,421 INFO L290 TraceCheckUtils]: 18: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,421 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {45601#true} {45601#true} #1218#return; {45601#true} is VALID [2022-04-27 15:17:53,421 INFO L290 TraceCheckUtils]: 20: Hoare triple {45601#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {45601#true} is VALID [2022-04-27 15:17:53,421 INFO L290 TraceCheckUtils]: 21: Hoare triple {45601#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {45601#true} is VALID [2022-04-27 15:17:53,421 INFO L290 TraceCheckUtils]: 22: Hoare triple {45601#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {45601#true} is VALID [2022-04-27 15:17:53,421 INFO L272 TraceCheckUtils]: 23: Hoare triple {45601#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {45665#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:17:53,421 INFO L290 TraceCheckUtils]: 24: Hoare triple {45665#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {45601#true} is VALID [2022-04-27 15:17:53,422 INFO L272 TraceCheckUtils]: 25: Hoare triple {45601#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {45665#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:17:53,422 INFO L290 TraceCheckUtils]: 26: Hoare triple {45665#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {45601#true} is VALID [2022-04-27 15:17:53,422 INFO L290 TraceCheckUtils]: 27: Hoare triple {45601#true} assume !(0 == ~__BLAST_NONDET~5); {45601#true} is VALID [2022-04-27 15:17:53,423 INFO L290 TraceCheckUtils]: 28: Hoare triple {45601#true} #res := -1073741823; {45601#true} is VALID [2022-04-27 15:17:53,423 INFO L290 TraceCheckUtils]: 29: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,423 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {45601#true} {45601#true} #1176#return; {45601#true} is VALID [2022-04-27 15:17:53,423 INFO L290 TraceCheckUtils]: 31: Hoare triple {45601#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {45601#true} is VALID [2022-04-27 15:17:53,423 INFO L290 TraceCheckUtils]: 32: Hoare triple {45601#true} assume !(~status~0 >= 0);#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {45671#(<= (+ |KbFilter_AddDevice_#res| 1) 0)} is VALID [2022-04-27 15:17:53,423 INFO L290 TraceCheckUtils]: 33: Hoare triple {45671#(<= (+ |KbFilter_AddDevice_#res| 1) 0)} assume true; {45671#(<= (+ |KbFilter_AddDevice_#res| 1) 0)} is VALID [2022-04-27 15:17:53,424 INFO L284 TraceCheckUtils]: 34: Hoare quadruple {45671#(<= (+ |KbFilter_AddDevice_#res| 1) 0)} {45601#true} #1220#return; {45629#(<= (+ 1 |main_#t~ret170|) 0)} is VALID [2022-04-27 15:17:53,424 INFO L290 TraceCheckUtils]: 35: Hoare triple {45629#(<= (+ 1 |main_#t~ret170|) 0)} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {45630#(<= (+ main_~status~5 1) 0)} is VALID [2022-04-27 15:17:53,425 INFO L272 TraceCheckUtils]: 36: Hoare triple {45630#(<= (+ main_~status~5 1) 0)} call stub_driver_init(); {45672#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:53,425 INFO L290 TraceCheckUtils]: 37: Hoare triple {45672#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {45601#true} is VALID [2022-04-27 15:17:53,425 INFO L290 TraceCheckUtils]: 38: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,425 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {45601#true} {45630#(<= (+ main_~status~5 1) 0)} #1222#return; {45630#(<= (+ main_~status~5 1) 0)} is VALID [2022-04-27 15:17:53,425 INFO L290 TraceCheckUtils]: 40: Hoare triple {45630#(<= (+ main_~status~5 1) 0)} assume !!(~status~5 >= 0); {45602#false} is VALID [2022-04-27 15:17:53,425 INFO L290 TraceCheckUtils]: 41: Hoare triple {45602#false} assume !(0 == ~__BLAST_NONDET~0); {45602#false} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 42: Hoare triple {45602#false} assume !(1 == ~__BLAST_NONDET~0); {45602#false} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 43: Hoare triple {45602#false} assume !(2 == ~__BLAST_NONDET~0); {45602#false} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 44: Hoare triple {45602#false} assume 3 == ~__BLAST_NONDET~0; {45602#false} is VALID [2022-04-27 15:17:53,426 INFO L272 TraceCheckUtils]: 45: Hoare triple {45602#false} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {45602#false} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 46: Hoare triple {45602#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {45602#false} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 47: Hoare triple {45602#false} assume 0 == #t~mem81 % 256;havoc #t~mem81; {45602#false} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 48: Hoare triple {45602#false} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {45602#false} is VALID [2022-04-27 15:17:53,426 INFO L272 TraceCheckUtils]: 49: Hoare triple {45602#false} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {45660#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 50: Hoare triple {45660#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {45601#true} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 51: Hoare triple {45601#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {45601#true} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 52: Hoare triple {45601#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {45601#true} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 53: Hoare triple {45601#true} assume #res.base == dest.base && #res.offset == dest.offset; {45601#true} is VALID [2022-04-27 15:17:53,426 INFO L284 TraceCheckUtils]: 54: Hoare quadruple {45601#true} {45602#false} #1186#return; {45602#false} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 55: Hoare triple {45602#false} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {45602#false} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 56: Hoare triple {45602#false} assume !(~s~0 != ~NP~0); {45602#false} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 57: Hoare triple {45602#false} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {45602#false} is VALID [2022-04-27 15:17:53,426 INFO L290 TraceCheckUtils]: 58: Hoare triple {45602#false} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {45602#false} is VALID [2022-04-27 15:17:53,427 INFO L272 TraceCheckUtils]: 59: Hoare triple {45602#false} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {45673#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:17:53,427 INFO L290 TraceCheckUtils]: 60: Hoare triple {45673#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {45601#true} is VALID [2022-04-27 15:17:53,427 INFO L290 TraceCheckUtils]: 61: Hoare triple {45601#true} assume 0 != ~compRegistered~0; {45601#true} is VALID [2022-04-27 15:17:53,427 INFO L272 TraceCheckUtils]: 62: Hoare triple {45601#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {45682#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:53,427 INFO L290 TraceCheckUtils]: 63: Hoare triple {45682#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {45601#true} is VALID [2022-04-27 15:17:53,428 INFO L272 TraceCheckUtils]: 64: Hoare triple {45601#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {45682#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:17:53,428 INFO L290 TraceCheckUtils]: 65: Hoare triple {45682#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {45601#true} is VALID [2022-04-27 15:17:53,428 INFO L290 TraceCheckUtils]: 66: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,428 INFO L284 TraceCheckUtils]: 67: Hoare quadruple {45601#true} {45601#true} #1174#return; {45601#true} is VALID [2022-04-27 15:17:53,428 INFO L290 TraceCheckUtils]: 68: Hoare triple {45601#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {45601#true} is VALID [2022-04-27 15:17:53,428 INFO L290 TraceCheckUtils]: 69: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,428 INFO L284 TraceCheckUtils]: 70: Hoare quadruple {45601#true} {45601#true} #1210#return; {45601#true} is VALID [2022-04-27 15:17:53,428 INFO L290 TraceCheckUtils]: 71: Hoare triple {45601#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {45601#true} is VALID [2022-04-27 15:17:53,428 INFO L290 TraceCheckUtils]: 72: Hoare triple {45601#true} assume !(-1073741802 == ~compRetStatus~0); {45601#true} is VALID [2022-04-27 15:17:53,428 INFO L290 TraceCheckUtils]: 73: Hoare triple {45601#true} assume 0 == ~__BLAST_NONDET~11; {45601#true} is VALID [2022-04-27 15:17:53,428 INFO L290 TraceCheckUtils]: 74: Hoare triple {45601#true} ~returnVal2~0 := 0; {45601#true} is VALID [2022-04-27 15:17:53,429 INFO L290 TraceCheckUtils]: 75: Hoare triple {45601#true} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {45601#true} is VALID [2022-04-27 15:17:53,429 INFO L290 TraceCheckUtils]: 76: Hoare triple {45601#true} #res := ~returnVal2~0; {45601#true} is VALID [2022-04-27 15:17:53,429 INFO L290 TraceCheckUtils]: 77: Hoare triple {45601#true} assume true; {45601#true} is VALID [2022-04-27 15:17:53,429 INFO L284 TraceCheckUtils]: 78: Hoare quadruple {45601#true} {45602#false} #1192#return; {45602#false} is VALID [2022-04-27 15:17:53,429 INFO L290 TraceCheckUtils]: 79: Hoare triple {45602#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {45602#false} is VALID [2022-04-27 15:17:53,429 INFO L290 TraceCheckUtils]: 80: Hoare triple {45602#false} assume !(259 == ~status~3); {45602#false} is VALID [2022-04-27 15:17:53,429 INFO L290 TraceCheckUtils]: 81: Hoare triple {45602#false} assume ~status~3 >= 0; {45602#false} is VALID [2022-04-27 15:17:53,429 INFO L290 TraceCheckUtils]: 82: Hoare triple {45602#false} assume !(~myStatus~0 >= 0); {45602#false} is VALID [2022-04-27 15:17:53,429 INFO L290 TraceCheckUtils]: 83: Hoare triple {45602#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {45602#false} is VALID [2022-04-27 15:17:53,429 INFO L272 TraceCheckUtils]: 84: Hoare triple {45602#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {45602#false} is VALID [2022-04-27 15:17:53,429 INFO L290 TraceCheckUtils]: 85: Hoare triple {45602#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {45602#false} is VALID [2022-04-27 15:17:53,429 INFO L290 TraceCheckUtils]: 86: Hoare triple {45602#false} assume !(~s~0 == ~NP~0); {45602#false} is VALID [2022-04-27 15:17:53,429 INFO L272 TraceCheckUtils]: 87: Hoare triple {45602#false} call errorFn(); {45602#false} is VALID [2022-04-27 15:17:53,429 INFO L290 TraceCheckUtils]: 88: Hoare triple {45602#false} assume !false; {45602#false} is VALID [2022-04-27 15:17:53,430 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:17:53,430 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:17:53,430 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1267984132] [2022-04-27 15:17:53,430 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1267984132] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:17:53,430 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:17:53,430 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [12] imperfect sequences [] total 12 [2022-04-27 15:17:53,430 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [301173290] [2022-04-27 15:17:53,430 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:17:53,430 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 12 states have (on average 5.25) internal successors, (63), 4 states have internal predecessors, (63), 3 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 4 states have call predecessors, (11), 3 states have call successors, (11) Word has length 89 [2022-04-27 15:17:53,431 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:17:53,431 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 12 states, 12 states have (on average 5.25) internal successors, (63), 4 states have internal predecessors, (63), 3 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 4 states have call predecessors, (11), 3 states have call successors, (11) [2022-04-27 15:17:53,496 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 89 edges. 89 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:17:53,496 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2022-04-27 15:17:53,496 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:17:53,496 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2022-04-27 15:17:53,496 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=32, Invalid=100, Unknown=0, NotChecked=0, Total=132 [2022-04-27 15:17:53,497 INFO L87 Difference]: Start difference. First operand 345 states and 409 transitions. Second operand has 12 states, 12 states have (on average 5.25) internal successors, (63), 4 states have internal predecessors, (63), 3 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 4 states have call predecessors, (11), 3 states have call successors, (11) [2022-04-27 15:17:56,937 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.31s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:18:01,608 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:18:03,626 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.02s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:18:05,646 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:18:12,463 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.98s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:18:21,065 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:21,065 INFO L93 Difference]: Finished difference Result 657 states and 796 transitions. [2022-04-27 15:18:21,065 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-04-27 15:18:21,065 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 12 states have (on average 5.25) internal successors, (63), 4 states have internal predecessors, (63), 3 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 4 states have call predecessors, (11), 3 states have call successors, (11) Word has length 89 [2022-04-27 15:18:21,065 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:18:21,065 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 12 states, 12 states have (on average 5.25) internal successors, (63), 4 states have internal predecessors, (63), 3 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 4 states have call predecessors, (11), 3 states have call successors, (11) [2022-04-27 15:18:21,067 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 12 states to 12 states and 311 transitions. [2022-04-27 15:18:21,067 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 12 states, 12 states have (on average 5.25) internal successors, (63), 4 states have internal predecessors, (63), 3 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 4 states have call predecessors, (11), 3 states have call successors, (11) [2022-04-27 15:18:21,069 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 12 states to 12 states and 311 transitions. [2022-04-27 15:18:21,069 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 12 states and 311 transitions. [2022-04-27 15:18:21,366 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 311 edges. 311 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:18:21,374 INFO L225 Difference]: With dead ends: 657 [2022-04-27 15:18:21,374 INFO L226 Difference]: Without dead ends: 399 [2022-04-27 15:18:21,374 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 33 GetRequests, 19 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=66, Invalid=174, Unknown=0, NotChecked=0, Total=240 [2022-04-27 15:18:21,375 INFO L413 NwaCegarLoop]: 140 mSDtfsCounter, 149 mSDsluCounter, 238 mSDsCounter, 0 mSdLazyCounter, 776 mSolverCounterSat, 82 mSolverCounterUnsat, 3 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 14.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 153 SdHoareTripleChecker+Valid, 378 SdHoareTripleChecker+Invalid, 861 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 82 IncrementalHoareTripleChecker+Valid, 776 IncrementalHoareTripleChecker+Invalid, 3 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 14.5s IncrementalHoareTripleChecker+Time [2022-04-27 15:18:21,375 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [153 Valid, 378 Invalid, 861 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [82 Valid, 776 Invalid, 3 Unknown, 0 Unchecked, 14.5s Time] [2022-04-27 15:18:21,375 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 399 states. [2022-04-27 15:18:21,561 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 399 to 337. [2022-04-27 15:18:21,562 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:18:21,562 INFO L82 GeneralOperation]: Start isEquivalent. First operand 399 states. Second operand has 337 states, 262 states have (on average 1.2328244274809161) internal successors, (323), 266 states have internal predecessors, (323), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:18:21,562 INFO L74 IsIncluded]: Start isIncluded. First operand 399 states. Second operand has 337 states, 262 states have (on average 1.2328244274809161) internal successors, (323), 266 states have internal predecessors, (323), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:18:21,563 INFO L87 Difference]: Start difference. First operand 399 states. Second operand has 337 states, 262 states have (on average 1.2328244274809161) internal successors, (323), 266 states have internal predecessors, (323), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:18:21,569 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:21,569 INFO L93 Difference]: Finished difference Result 399 states and 479 transitions. [2022-04-27 15:18:21,569 INFO L276 IsEmpty]: Start isEmpty. Operand 399 states and 479 transitions. [2022-04-27 15:18:21,570 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:18:21,570 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:18:21,570 INFO L74 IsIncluded]: Start isIncluded. First operand has 337 states, 262 states have (on average 1.2328244274809161) internal successors, (323), 266 states have internal predecessors, (323), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) Second operand 399 states. [2022-04-27 15:18:21,570 INFO L87 Difference]: Start difference. First operand has 337 states, 262 states have (on average 1.2328244274809161) internal successors, (323), 266 states have internal predecessors, (323), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) Second operand 399 states. [2022-04-27 15:18:21,576 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:21,576 INFO L93 Difference]: Finished difference Result 399 states and 479 transitions. [2022-04-27 15:18:21,576 INFO L276 IsEmpty]: Start isEmpty. Operand 399 states and 479 transitions. [2022-04-27 15:18:21,577 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:18:21,577 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:18:21,577 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:18:21,577 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:18:21,577 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 337 states, 262 states have (on average 1.2328244274809161) internal successors, (323), 266 states have internal predecessors, (323), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:18:21,582 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 337 states to 337 states and 399 transitions. [2022-04-27 15:18:21,582 INFO L78 Accepts]: Start accepts. Automaton has 337 states and 399 transitions. Word has length 89 [2022-04-27 15:18:21,582 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:18:21,582 INFO L495 AbstractCegarLoop]: Abstraction has 337 states and 399 transitions. [2022-04-27 15:18:21,582 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 12 states have (on average 5.25) internal successors, (63), 4 states have internal predecessors, (63), 3 states have call successors, (15), 9 states have call predecessors, (15), 2 states have return successors, (11), 4 states have call predecessors, (11), 3 states have call successors, (11) [2022-04-27 15:18:21,582 INFO L276 IsEmpty]: Start isEmpty. Operand 337 states and 399 transitions. [2022-04-27 15:18:21,583 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 103 [2022-04-27 15:18:21,583 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:18:21,583 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:18:21,583 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable24 [2022-04-27 15:18:21,583 INFO L420 AbstractCegarLoop]: === Iteration 26 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:18:21,583 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:18:21,583 INFO L85 PathProgramCache]: Analyzing trace with hash -623916271, now seen corresponding path program 1 times [2022-04-27 15:18:21,584 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:18:21,584 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [899735740] [2022-04-27 15:18:21,584 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:18:21,584 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:18:21,833 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:21,907 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:18:21,909 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:21,914 INFO L290 TraceCheckUtils]: 0: Hoare triple {47923#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {47855#true} is VALID [2022-04-27 15:18:21,914 INFO L290 TraceCheckUtils]: 1: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:21,914 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {47855#true} {47855#true} #1270#return; {47855#true} is VALID [2022-04-27 15:18:21,936 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:18:21,937 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:21,943 INFO L290 TraceCheckUtils]: 0: Hoare triple {47924#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {47855#true} is VALID [2022-04-27 15:18:21,943 INFO L290 TraceCheckUtils]: 1: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:21,943 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {47855#true} {47855#true} #1216#return; {47855#true} is VALID [2022-04-27 15:18:21,949 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:18:21,955 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:21,962 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:21,962 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:21,966 INFO L290 TraceCheckUtils]: 0: Hoare triple {47855#true} ~cond := #in~cond; {47855#true} is VALID [2022-04-27 15:18:21,966 INFO L290 TraceCheckUtils]: 1: Hoare triple {47855#true} assume !(0 == ~cond); {47855#true} is VALID [2022-04-27 15:18:21,966 INFO L290 TraceCheckUtils]: 2: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:21,966 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {47855#true} {47855#true} #1254#return; {47855#true} is VALID [2022-04-27 15:18:21,966 INFO L290 TraceCheckUtils]: 0: Hoare triple {47925#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {47855#true} is VALID [2022-04-27 15:18:21,966 INFO L272 TraceCheckUtils]: 1: Hoare triple {47855#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {47855#true} is VALID [2022-04-27 15:18:21,967 INFO L290 TraceCheckUtils]: 2: Hoare triple {47855#true} ~cond := #in~cond; {47855#true} is VALID [2022-04-27 15:18:21,967 INFO L290 TraceCheckUtils]: 3: Hoare triple {47855#true} assume !(0 == ~cond); {47855#true} is VALID [2022-04-27 15:18:21,967 INFO L290 TraceCheckUtils]: 4: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:21,967 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {47855#true} {47855#true} #1254#return; {47855#true} is VALID [2022-04-27 15:18:21,967 INFO L290 TraceCheckUtils]: 6: Hoare triple {47855#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {47855#true} is VALID [2022-04-27 15:18:21,967 INFO L290 TraceCheckUtils]: 7: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:21,967 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {47855#true} {47855#true} #1218#return; {47855#true} is VALID [2022-04-27 15:18:21,975 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:18:21,999 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:22,011 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:22,014 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:22,020 INFO L290 TraceCheckUtils]: 0: Hoare triple {47930#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {47855#true} is VALID [2022-04-27 15:18:22,021 INFO L290 TraceCheckUtils]: 1: Hoare triple {47855#true} assume 0 == ~__BLAST_NONDET~5; {47855#true} is VALID [2022-04-27 15:18:22,021 INFO L290 TraceCheckUtils]: 2: Hoare triple {47855#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {47855#true} is VALID [2022-04-27 15:18:22,021 INFO L290 TraceCheckUtils]: 3: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,021 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {47855#true} {47855#true} #1176#return; {47855#true} is VALID [2022-04-27 15:18:22,021 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:18:22,025 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:22,060 INFO L290 TraceCheckUtils]: 0: Hoare triple {47925#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {47945#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:18:22,061 INFO L290 TraceCheckUtils]: 1: Hoare triple {47945#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {47946#(or (<= |#Ultimate.C_memset_#amount| 0) (< 0 (div |#Ultimate.C_memset_#amount| 4294967296)))} is VALID [2022-04-27 15:18:22,061 INFO L290 TraceCheckUtils]: 2: Hoare triple {47946#(or (<= |#Ultimate.C_memset_#amount| 0) (< 0 (div |#Ultimate.C_memset_#amount| 4294967296)))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {47946#(or (<= |#Ultimate.C_memset_#amount| 0) (< 0 (div |#Ultimate.C_memset_#amount| 4294967296)))} is VALID [2022-04-27 15:18:22,062 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {47946#(or (<= |#Ultimate.C_memset_#amount| 0) (< 0 (div |#Ultimate.C_memset_#amount| 4294967296)))} {47855#true} #1178#return; {47856#false} is VALID [2022-04-27 15:18:22,062 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 15 [2022-04-27 15:18:22,066 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:22,080 INFO L290 TraceCheckUtils]: 0: Hoare triple {47855#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {47855#true} is VALID [2022-04-27 15:18:22,080 INFO L290 TraceCheckUtils]: 1: Hoare triple {47855#true} assume 0 == ~__BLAST_NONDET~2; {47855#true} is VALID [2022-04-27 15:18:22,080 INFO L290 TraceCheckUtils]: 2: Hoare triple {47855#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {47855#true} is VALID [2022-04-27 15:18:22,080 INFO L290 TraceCheckUtils]: 3: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,080 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {47855#true} {47856#false} #1180#return; {47856#false} is VALID [2022-04-27 15:18:22,080 INFO L290 TraceCheckUtils]: 0: Hoare triple {47930#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {47855#true} is VALID [2022-04-27 15:18:22,081 INFO L272 TraceCheckUtils]: 1: Hoare triple {47855#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {47930#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:22,081 INFO L290 TraceCheckUtils]: 2: Hoare triple {47930#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {47855#true} is VALID [2022-04-27 15:18:22,081 INFO L290 TraceCheckUtils]: 3: Hoare triple {47855#true} assume 0 == ~__BLAST_NONDET~5; {47855#true} is VALID [2022-04-27 15:18:22,081 INFO L290 TraceCheckUtils]: 4: Hoare triple {47855#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {47855#true} is VALID [2022-04-27 15:18:22,081 INFO L290 TraceCheckUtils]: 5: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,081 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {47855#true} {47855#true} #1176#return; {47855#true} is VALID [2022-04-27 15:18:22,082 INFO L290 TraceCheckUtils]: 7: Hoare triple {47855#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {47855#true} is VALID [2022-04-27 15:18:22,082 INFO L290 TraceCheckUtils]: 8: Hoare triple {47855#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {47855#true} is VALID [2022-04-27 15:18:22,082 INFO L272 TraceCheckUtils]: 9: Hoare triple {47855#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {47925#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:22,083 INFO L290 TraceCheckUtils]: 10: Hoare triple {47925#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {47945#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:18:22,083 INFO L290 TraceCheckUtils]: 11: Hoare triple {47945#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {47946#(or (<= |#Ultimate.C_memset_#amount| 0) (< 0 (div |#Ultimate.C_memset_#amount| 4294967296)))} is VALID [2022-04-27 15:18:22,084 INFO L290 TraceCheckUtils]: 12: Hoare triple {47946#(or (<= |#Ultimate.C_memset_#amount| 0) (< 0 (div |#Ultimate.C_memset_#amount| 4294967296)))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {47946#(or (<= |#Ultimate.C_memset_#amount| 0) (< 0 (div |#Ultimate.C_memset_#amount| 4294967296)))} is VALID [2022-04-27 15:18:22,084 INFO L284 TraceCheckUtils]: 13: Hoare quadruple {47946#(or (<= |#Ultimate.C_memset_#amount| 0) (< 0 (div |#Ultimate.C_memset_#amount| 4294967296)))} {47855#true} #1178#return; {47856#false} is VALID [2022-04-27 15:18:22,084 INFO L290 TraceCheckUtils]: 14: Hoare triple {47856#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {47856#false} is VALID [2022-04-27 15:18:22,084 INFO L272 TraceCheckUtils]: 15: Hoare triple {47856#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {47855#true} is VALID [2022-04-27 15:18:22,085 INFO L290 TraceCheckUtils]: 16: Hoare triple {47855#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {47855#true} is VALID [2022-04-27 15:18:22,085 INFO L290 TraceCheckUtils]: 17: Hoare triple {47855#true} assume 0 == ~__BLAST_NONDET~2; {47855#true} is VALID [2022-04-27 15:18:22,085 INFO L290 TraceCheckUtils]: 18: Hoare triple {47855#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {47855#true} is VALID [2022-04-27 15:18:22,085 INFO L290 TraceCheckUtils]: 19: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,085 INFO L284 TraceCheckUtils]: 20: Hoare quadruple {47855#true} {47856#false} #1180#return; {47856#false} is VALID [2022-04-27 15:18:22,085 INFO L290 TraceCheckUtils]: 21: Hoare triple {47856#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {47856#false} is VALID [2022-04-27 15:18:22,085 INFO L290 TraceCheckUtils]: 22: Hoare triple {47856#false} assume true; {47856#false} is VALID [2022-04-27 15:18:22,085 INFO L284 TraceCheckUtils]: 23: Hoare quadruple {47856#false} {47855#true} #1220#return; {47856#false} is VALID [2022-04-27 15:18:22,107 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 49 [2022-04-27 15:18:22,108 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:22,112 INFO L290 TraceCheckUtils]: 0: Hoare triple {47947#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {47855#true} is VALID [2022-04-27 15:18:22,113 INFO L290 TraceCheckUtils]: 1: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,113 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {47855#true} {47856#false} #1222#return; {47856#false} is VALID [2022-04-27 15:18:22,113 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 62 [2022-04-27 15:18:22,114 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:22,118 INFO L290 TraceCheckUtils]: 0: Hoare triple {47925#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {47855#true} is VALID [2022-04-27 15:18:22,119 INFO L290 TraceCheckUtils]: 1: Hoare triple {47855#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {47855#true} is VALID [2022-04-27 15:18:22,119 INFO L290 TraceCheckUtils]: 2: Hoare triple {47855#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {47855#true} is VALID [2022-04-27 15:18:22,119 INFO L290 TraceCheckUtils]: 3: Hoare triple {47855#true} assume #res.base == dest.base && #res.offset == dest.offset; {47855#true} is VALID [2022-04-27 15:18:22,119 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {47855#true} {47856#false} #1186#return; {47856#false} is VALID [2022-04-27 15:18:22,128 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 72 [2022-04-27 15:18:22,131 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:22,144 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:18:22,145 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:22,150 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:22,151 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:22,156 INFO L290 TraceCheckUtils]: 0: Hoare triple {47957#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {47855#true} is VALID [2022-04-27 15:18:22,156 INFO L290 TraceCheckUtils]: 1: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,156 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {47855#true} {47855#true} #1174#return; {47855#true} is VALID [2022-04-27 15:18:22,156 INFO L290 TraceCheckUtils]: 0: Hoare triple {47957#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {47855#true} is VALID [2022-04-27 15:18:22,157 INFO L272 TraceCheckUtils]: 1: Hoare triple {47855#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {47957#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:22,157 INFO L290 TraceCheckUtils]: 2: Hoare triple {47957#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {47855#true} is VALID [2022-04-27 15:18:22,157 INFO L290 TraceCheckUtils]: 3: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,157 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {47855#true} {47855#true} #1174#return; {47855#true} is VALID [2022-04-27 15:18:22,157 INFO L290 TraceCheckUtils]: 5: Hoare triple {47855#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {47855#true} is VALID [2022-04-27 15:18:22,157 INFO L290 TraceCheckUtils]: 6: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,157 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {47855#true} {47855#true} #1210#return; {47855#true} is VALID [2022-04-27 15:18:22,157 INFO L290 TraceCheckUtils]: 0: Hoare triple {47948#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {47855#true} is VALID [2022-04-27 15:18:22,157 INFO L290 TraceCheckUtils]: 1: Hoare triple {47855#true} assume 0 != ~compRegistered~0; {47855#true} is VALID [2022-04-27 15:18:22,158 INFO L272 TraceCheckUtils]: 2: Hoare triple {47855#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {47957#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:22,158 INFO L290 TraceCheckUtils]: 3: Hoare triple {47957#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {47855#true} is VALID [2022-04-27 15:18:22,158 INFO L272 TraceCheckUtils]: 4: Hoare triple {47855#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {47957#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:22,159 INFO L290 TraceCheckUtils]: 5: Hoare triple {47957#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L290 TraceCheckUtils]: 6: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {47855#true} {47855#true} #1174#return; {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L290 TraceCheckUtils]: 8: Hoare triple {47855#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L290 TraceCheckUtils]: 9: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {47855#true} {47855#true} #1210#return; {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L290 TraceCheckUtils]: 11: Hoare triple {47855#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L290 TraceCheckUtils]: 12: Hoare triple {47855#true} assume !(-1073741802 == ~compRetStatus~0); {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L290 TraceCheckUtils]: 13: Hoare triple {47855#true} assume 0 == ~__BLAST_NONDET~11; {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L290 TraceCheckUtils]: 14: Hoare triple {47855#true} ~returnVal2~0 := 0; {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L290 TraceCheckUtils]: 15: Hoare triple {47855#true} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L290 TraceCheckUtils]: 16: Hoare triple {47855#true} #res := ~returnVal2~0; {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L290 TraceCheckUtils]: 17: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,159 INFO L284 TraceCheckUtils]: 18: Hoare quadruple {47855#true} {47856#false} #1192#return; {47856#false} is VALID [2022-04-27 15:18:22,160 INFO L272 TraceCheckUtils]: 0: Hoare triple {47855#true} call ULTIMATE.init(); {47923#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:18:22,161 INFO L290 TraceCheckUtils]: 1: Hoare triple {47923#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {47855#true} is VALID [2022-04-27 15:18:22,161 INFO L290 TraceCheckUtils]: 2: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,161 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {47855#true} {47855#true} #1270#return; {47855#true} is VALID [2022-04-27 15:18:22,161 INFO L272 TraceCheckUtils]: 4: Hoare triple {47855#true} call #t~ret213 := main(); {47855#true} is VALID [2022-04-27 15:18:22,161 INFO L290 TraceCheckUtils]: 5: Hoare triple {47855#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {47855#true} is VALID [2022-04-27 15:18:22,168 INFO L272 TraceCheckUtils]: 6: Hoare triple {47855#true} call _BLAST_init(); {47924#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:22,168 INFO L290 TraceCheckUtils]: 7: Hoare triple {47924#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {47855#true} is VALID [2022-04-27 15:18:22,168 INFO L290 TraceCheckUtils]: 8: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,168 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {47855#true} {47855#true} #1216#return; {47855#true} is VALID [2022-04-27 15:18:22,169 INFO L272 TraceCheckUtils]: 10: Hoare triple {47855#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {47925#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:22,169 INFO L290 TraceCheckUtils]: 11: Hoare triple {47925#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {47855#true} is VALID [2022-04-27 15:18:22,169 INFO L272 TraceCheckUtils]: 12: Hoare triple {47855#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {47855#true} is VALID [2022-04-27 15:18:22,169 INFO L290 TraceCheckUtils]: 13: Hoare triple {47855#true} ~cond := #in~cond; {47855#true} is VALID [2022-04-27 15:18:22,169 INFO L290 TraceCheckUtils]: 14: Hoare triple {47855#true} assume !(0 == ~cond); {47855#true} is VALID [2022-04-27 15:18:22,169 INFO L290 TraceCheckUtils]: 15: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,169 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {47855#true} {47855#true} #1254#return; {47855#true} is VALID [2022-04-27 15:18:22,169 INFO L290 TraceCheckUtils]: 17: Hoare triple {47855#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {47855#true} is VALID [2022-04-27 15:18:22,169 INFO L290 TraceCheckUtils]: 18: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,169 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {47855#true} {47855#true} #1218#return; {47855#true} is VALID [2022-04-27 15:18:22,169 INFO L290 TraceCheckUtils]: 20: Hoare triple {47855#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {47855#true} is VALID [2022-04-27 15:18:22,170 INFO L290 TraceCheckUtils]: 21: Hoare triple {47855#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {47855#true} is VALID [2022-04-27 15:18:22,170 INFO L290 TraceCheckUtils]: 22: Hoare triple {47855#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {47855#true} is VALID [2022-04-27 15:18:22,170 INFO L272 TraceCheckUtils]: 23: Hoare triple {47855#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {47930#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:22,170 INFO L290 TraceCheckUtils]: 24: Hoare triple {47930#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {47855#true} is VALID [2022-04-27 15:18:22,171 INFO L272 TraceCheckUtils]: 25: Hoare triple {47855#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {47930#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:22,172 INFO L290 TraceCheckUtils]: 26: Hoare triple {47930#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {47855#true} is VALID [2022-04-27 15:18:22,172 INFO L290 TraceCheckUtils]: 27: Hoare triple {47855#true} assume 0 == ~__BLAST_NONDET~5; {47855#true} is VALID [2022-04-27 15:18:22,172 INFO L290 TraceCheckUtils]: 28: Hoare triple {47855#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {47855#true} is VALID [2022-04-27 15:18:22,172 INFO L290 TraceCheckUtils]: 29: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,172 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {47855#true} {47855#true} #1176#return; {47855#true} is VALID [2022-04-27 15:18:22,172 INFO L290 TraceCheckUtils]: 31: Hoare triple {47855#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {47855#true} is VALID [2022-04-27 15:18:22,172 INFO L290 TraceCheckUtils]: 32: Hoare triple {47855#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {47855#true} is VALID [2022-04-27 15:18:22,172 INFO L272 TraceCheckUtils]: 33: Hoare triple {47855#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {47925#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:22,173 INFO L290 TraceCheckUtils]: 34: Hoare triple {47925#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {47945#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:18:22,174 INFO L290 TraceCheckUtils]: 35: Hoare triple {47945#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {47946#(or (<= |#Ultimate.C_memset_#amount| 0) (< 0 (div |#Ultimate.C_memset_#amount| 4294967296)))} is VALID [2022-04-27 15:18:22,174 INFO L290 TraceCheckUtils]: 36: Hoare triple {47946#(or (<= |#Ultimate.C_memset_#amount| 0) (< 0 (div |#Ultimate.C_memset_#amount| 4294967296)))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {47946#(or (<= |#Ultimate.C_memset_#amount| 0) (< 0 (div |#Ultimate.C_memset_#amount| 4294967296)))} is VALID [2022-04-27 15:18:22,175 INFO L284 TraceCheckUtils]: 37: Hoare quadruple {47946#(or (<= |#Ultimate.C_memset_#amount| 0) (< 0 (div |#Ultimate.C_memset_#amount| 4294967296)))} {47855#true} #1178#return; {47856#false} is VALID [2022-04-27 15:18:22,175 INFO L290 TraceCheckUtils]: 38: Hoare triple {47856#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {47856#false} is VALID [2022-04-27 15:18:22,175 INFO L272 TraceCheckUtils]: 39: Hoare triple {47856#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {47855#true} is VALID [2022-04-27 15:18:22,175 INFO L290 TraceCheckUtils]: 40: Hoare triple {47855#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {47855#true} is VALID [2022-04-27 15:18:22,175 INFO L290 TraceCheckUtils]: 41: Hoare triple {47855#true} assume 0 == ~__BLAST_NONDET~2; {47855#true} is VALID [2022-04-27 15:18:22,175 INFO L290 TraceCheckUtils]: 42: Hoare triple {47855#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {47855#true} is VALID [2022-04-27 15:18:22,175 INFO L290 TraceCheckUtils]: 43: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,175 INFO L284 TraceCheckUtils]: 44: Hoare quadruple {47855#true} {47856#false} #1180#return; {47856#false} is VALID [2022-04-27 15:18:22,175 INFO L290 TraceCheckUtils]: 45: Hoare triple {47856#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {47856#false} is VALID [2022-04-27 15:18:22,175 INFO L290 TraceCheckUtils]: 46: Hoare triple {47856#false} assume true; {47856#false} is VALID [2022-04-27 15:18:22,175 INFO L284 TraceCheckUtils]: 47: Hoare quadruple {47856#false} {47855#true} #1220#return; {47856#false} is VALID [2022-04-27 15:18:22,175 INFO L290 TraceCheckUtils]: 48: Hoare triple {47856#false} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {47856#false} is VALID [2022-04-27 15:18:22,175 INFO L272 TraceCheckUtils]: 49: Hoare triple {47856#false} call stub_driver_init(); {47947#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:22,175 INFO L290 TraceCheckUtils]: 50: Hoare triple {47947#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {47855#true} is VALID [2022-04-27 15:18:22,175 INFO L290 TraceCheckUtils]: 51: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,176 INFO L284 TraceCheckUtils]: 52: Hoare quadruple {47855#true} {47856#false} #1222#return; {47856#false} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 53: Hoare triple {47856#false} assume !!(~status~5 >= 0); {47856#false} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 54: Hoare triple {47856#false} assume !(0 == ~__BLAST_NONDET~0); {47856#false} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 55: Hoare triple {47856#false} assume !(1 == ~__BLAST_NONDET~0); {47856#false} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 56: Hoare triple {47856#false} assume !(2 == ~__BLAST_NONDET~0); {47856#false} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 57: Hoare triple {47856#false} assume 3 == ~__BLAST_NONDET~0; {47856#false} is VALID [2022-04-27 15:18:22,176 INFO L272 TraceCheckUtils]: 58: Hoare triple {47856#false} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {47856#false} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 59: Hoare triple {47856#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {47856#false} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 60: Hoare triple {47856#false} assume 0 == #t~mem81 % 256;havoc #t~mem81; {47856#false} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 61: Hoare triple {47856#false} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {47856#false} is VALID [2022-04-27 15:18:22,176 INFO L272 TraceCheckUtils]: 62: Hoare triple {47856#false} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {47925#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 63: Hoare triple {47925#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {47855#true} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 64: Hoare triple {47855#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {47855#true} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 65: Hoare triple {47855#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {47855#true} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 66: Hoare triple {47855#true} assume #res.base == dest.base && #res.offset == dest.offset; {47855#true} is VALID [2022-04-27 15:18:22,176 INFO L284 TraceCheckUtils]: 67: Hoare quadruple {47855#true} {47856#false} #1186#return; {47856#false} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 68: Hoare triple {47856#false} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {47856#false} is VALID [2022-04-27 15:18:22,176 INFO L290 TraceCheckUtils]: 69: Hoare triple {47856#false} assume !(~s~0 != ~NP~0); {47856#false} is VALID [2022-04-27 15:18:22,177 INFO L290 TraceCheckUtils]: 70: Hoare triple {47856#false} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {47856#false} is VALID [2022-04-27 15:18:22,177 INFO L290 TraceCheckUtils]: 71: Hoare triple {47856#false} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {47856#false} is VALID [2022-04-27 15:18:22,177 INFO L272 TraceCheckUtils]: 72: Hoare triple {47856#false} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {47948#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:22,177 INFO L290 TraceCheckUtils]: 73: Hoare triple {47948#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {47855#true} is VALID [2022-04-27 15:18:22,177 INFO L290 TraceCheckUtils]: 74: Hoare triple {47855#true} assume 0 != ~compRegistered~0; {47855#true} is VALID [2022-04-27 15:18:22,178 INFO L272 TraceCheckUtils]: 75: Hoare triple {47855#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {47957#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:22,178 INFO L290 TraceCheckUtils]: 76: Hoare triple {47957#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {47855#true} is VALID [2022-04-27 15:18:22,178 INFO L272 TraceCheckUtils]: 77: Hoare triple {47855#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {47957#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:22,178 INFO L290 TraceCheckUtils]: 78: Hoare triple {47957#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {47855#true} is VALID [2022-04-27 15:18:22,178 INFO L290 TraceCheckUtils]: 79: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,178 INFO L284 TraceCheckUtils]: 80: Hoare quadruple {47855#true} {47855#true} #1174#return; {47855#true} is VALID [2022-04-27 15:18:22,178 INFO L290 TraceCheckUtils]: 81: Hoare triple {47855#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {47855#true} is VALID [2022-04-27 15:18:22,178 INFO L290 TraceCheckUtils]: 82: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,178 INFO L284 TraceCheckUtils]: 83: Hoare quadruple {47855#true} {47855#true} #1210#return; {47855#true} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 84: Hoare triple {47855#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {47855#true} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 85: Hoare triple {47855#true} assume !(-1073741802 == ~compRetStatus~0); {47855#true} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 86: Hoare triple {47855#true} assume 0 == ~__BLAST_NONDET~11; {47855#true} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 87: Hoare triple {47855#true} ~returnVal2~0 := 0; {47855#true} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 88: Hoare triple {47855#true} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {47855#true} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 89: Hoare triple {47855#true} #res := ~returnVal2~0; {47855#true} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 90: Hoare triple {47855#true} assume true; {47855#true} is VALID [2022-04-27 15:18:22,179 INFO L284 TraceCheckUtils]: 91: Hoare quadruple {47855#true} {47856#false} #1192#return; {47856#false} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 92: Hoare triple {47856#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {47856#false} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 93: Hoare triple {47856#false} assume !(259 == ~status~3); {47856#false} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 94: Hoare triple {47856#false} assume ~status~3 >= 0; {47856#false} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 95: Hoare triple {47856#false} assume !(~myStatus~0 >= 0); {47856#false} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 96: Hoare triple {47856#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {47856#false} is VALID [2022-04-27 15:18:22,179 INFO L272 TraceCheckUtils]: 97: Hoare triple {47856#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {47856#false} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 98: Hoare triple {47856#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {47856#false} is VALID [2022-04-27 15:18:22,179 INFO L290 TraceCheckUtils]: 99: Hoare triple {47856#false} assume !(~s~0 == ~NP~0); {47856#false} is VALID [2022-04-27 15:18:22,179 INFO L272 TraceCheckUtils]: 100: Hoare triple {47856#false} call errorFn(); {47856#false} is VALID [2022-04-27 15:18:22,180 INFO L290 TraceCheckUtils]: 101: Hoare triple {47856#false} assume !false; {47856#false} is VALID [2022-04-27 15:18:22,180 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:18:22,180 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:18:22,180 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [899735740] [2022-04-27 15:18:22,180 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [899735740] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:18:22,180 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:18:22,180 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [11] imperfect sequences [] total 11 [2022-04-27 15:18:22,180 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1267237685] [2022-04-27 15:18:22,180 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:18:22,181 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 11 states have (on average 6.545454545454546) internal successors, (72), 4 states have internal predecessors, (72), 2 states have call successors, (17), 9 states have call predecessors, (17), 3 states have return successors, (13), 2 states have call predecessors, (13), 2 states have call successors, (13) Word has length 102 [2022-04-27 15:18:22,181 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:18:22,181 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 11 states, 11 states have (on average 6.545454545454546) internal successors, (72), 4 states have internal predecessors, (72), 2 states have call successors, (17), 9 states have call predecessors, (17), 3 states have return successors, (13), 2 states have call predecessors, (13), 2 states have call successors, (13) [2022-04-27 15:18:22,262 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 102 edges. 102 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:18:22,262 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2022-04-27 15:18:22,262 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:18:22,263 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2022-04-27 15:18:22,263 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=30, Invalid=80, Unknown=0, NotChecked=0, Total=110 [2022-04-27 15:18:22,263 INFO L87 Difference]: Start difference. First operand 337 states and 399 transitions. Second operand has 11 states, 11 states have (on average 6.545454545454546) internal successors, (72), 4 states have internal predecessors, (72), 2 states have call successors, (17), 9 states have call predecessors, (17), 3 states have return successors, (13), 2 states have call predecessors, (13), 2 states have call successors, (13) [2022-04-27 15:18:24,357 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:18:30,928 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.38s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:18:32,478 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:32,478 INFO L93 Difference]: Finished difference Result 675 states and 810 transitions. [2022-04-27 15:18:32,478 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2022-04-27 15:18:32,478 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 11 states have (on average 6.545454545454546) internal successors, (72), 4 states have internal predecessors, (72), 2 states have call successors, (17), 9 states have call predecessors, (17), 3 states have return successors, (13), 2 states have call predecessors, (13), 2 states have call successors, (13) Word has length 102 [2022-04-27 15:18:32,479 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:18:32,479 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11 states, 11 states have (on average 6.545454545454546) internal successors, (72), 4 states have internal predecessors, (72), 2 states have call successors, (17), 9 states have call predecessors, (17), 3 states have return successors, (13), 2 states have call predecessors, (13), 2 states have call successors, (13) [2022-04-27 15:18:32,480 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 10 states to 10 states and 318 transitions. [2022-04-27 15:18:32,481 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11 states, 11 states have (on average 6.545454545454546) internal successors, (72), 4 states have internal predecessors, (72), 2 states have call successors, (17), 9 states have call predecessors, (17), 3 states have return successors, (13), 2 states have call predecessors, (13), 2 states have call successors, (13) [2022-04-27 15:18:32,482 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 10 states to 10 states and 318 transitions. [2022-04-27 15:18:32,482 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 10 states and 318 transitions. [2022-04-27 15:18:32,772 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 318 edges. 318 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:18:32,780 INFO L225 Difference]: With dead ends: 675 [2022-04-27 15:18:32,780 INFO L226 Difference]: Without dead ends: 389 [2022-04-27 15:18:32,781 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 37 GetRequests, 23 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 18 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=82, Invalid=158, Unknown=0, NotChecked=0, Total=240 [2022-04-27 15:18:32,781 INFO L413 NwaCegarLoop]: 139 mSDtfsCounter, 256 mSDsluCounter, 189 mSDsCounter, 0 mSdLazyCounter, 460 mSolverCounterSat, 142 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 6.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 259 SdHoareTripleChecker+Valid, 328 SdHoareTripleChecker+Invalid, 603 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 142 IncrementalHoareTripleChecker+Valid, 460 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 6.1s IncrementalHoareTripleChecker+Time [2022-04-27 15:18:32,781 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [259 Valid, 328 Invalid, 603 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [142 Valid, 460 Invalid, 1 Unknown, 0 Unchecked, 6.1s Time] [2022-04-27 15:18:32,782 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 389 states. [2022-04-27 15:18:33,014 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 389 to 339. [2022-04-27 15:18:33,015 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:18:33,015 INFO L82 GeneralOperation]: Start isEquivalent. First operand 389 states. Second operand has 339 states, 264 states have (on average 1.231060606060606) internal successors, (325), 268 states have internal predecessors, (325), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:18:33,015 INFO L74 IsIncluded]: Start isIncluded. First operand 389 states. Second operand has 339 states, 264 states have (on average 1.231060606060606) internal successors, (325), 268 states have internal predecessors, (325), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:18:33,016 INFO L87 Difference]: Start difference. First operand 389 states. Second operand has 339 states, 264 states have (on average 1.231060606060606) internal successors, (325), 268 states have internal predecessors, (325), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:18:33,021 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:33,021 INFO L93 Difference]: Finished difference Result 389 states and 463 transitions. [2022-04-27 15:18:33,021 INFO L276 IsEmpty]: Start isEmpty. Operand 389 states and 463 transitions. [2022-04-27 15:18:33,022 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:18:33,022 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:18:33,022 INFO L74 IsIncluded]: Start isIncluded. First operand has 339 states, 264 states have (on average 1.231060606060606) internal successors, (325), 268 states have internal predecessors, (325), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) Second operand 389 states. [2022-04-27 15:18:33,022 INFO L87 Difference]: Start difference. First operand has 339 states, 264 states have (on average 1.231060606060606) internal successors, (325), 268 states have internal predecessors, (325), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) Second operand 389 states. [2022-04-27 15:18:33,028 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:33,028 INFO L93 Difference]: Finished difference Result 389 states and 463 transitions. [2022-04-27 15:18:33,028 INFO L276 IsEmpty]: Start isEmpty. Operand 389 states and 463 transitions. [2022-04-27 15:18:33,028 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:18:33,028 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:18:33,028 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:18:33,028 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:18:33,029 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 339 states, 264 states have (on average 1.231060606060606) internal successors, (325), 268 states have internal predecessors, (325), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:18:33,034 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 339 states to 339 states and 401 transitions. [2022-04-27 15:18:33,034 INFO L78 Accepts]: Start accepts. Automaton has 339 states and 401 transitions. Word has length 102 [2022-04-27 15:18:33,034 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:18:33,034 INFO L495 AbstractCegarLoop]: Abstraction has 339 states and 401 transitions. [2022-04-27 15:18:33,034 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 11 states have (on average 6.545454545454546) internal successors, (72), 4 states have internal predecessors, (72), 2 states have call successors, (17), 9 states have call predecessors, (17), 3 states have return successors, (13), 2 states have call predecessors, (13), 2 states have call successors, (13) [2022-04-27 15:18:33,034 INFO L276 IsEmpty]: Start isEmpty. Operand 339 states and 401 transitions. [2022-04-27 15:18:33,035 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 104 [2022-04-27 15:18:33,035 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:18:33,035 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:18:33,035 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable25 [2022-04-27 15:18:33,035 INFO L420 AbstractCegarLoop]: === Iteration 27 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:18:33,035 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:18:33,036 INFO L85 PathProgramCache]: Analyzing trace with hash 1023672093, now seen corresponding path program 1 times [2022-04-27 15:18:33,036 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:18:33,036 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1873285147] [2022-04-27 15:18:33,036 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:18:33,036 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:18:33,301 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,417 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:18:33,420 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,425 INFO L290 TraceCheckUtils]: 0: Hoare triple {50211#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {50142#true} is VALID [2022-04-27 15:18:33,425 INFO L290 TraceCheckUtils]: 1: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,425 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {50142#true} {50142#true} #1270#return; {50142#true} is VALID [2022-04-27 15:18:33,449 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:18:33,450 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,455 INFO L290 TraceCheckUtils]: 0: Hoare triple {50212#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {50142#true} is VALID [2022-04-27 15:18:33,455 INFO L290 TraceCheckUtils]: 1: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,455 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {50142#true} {50142#true} #1216#return; {50142#true} is VALID [2022-04-27 15:18:33,461 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:18:33,473 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,485 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:33,486 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,490 INFO L290 TraceCheckUtils]: 0: Hoare triple {50142#true} ~cond := #in~cond; {50142#true} is VALID [2022-04-27 15:18:33,491 INFO L290 TraceCheckUtils]: 1: Hoare triple {50142#true} assume !(0 == ~cond); {50142#true} is VALID [2022-04-27 15:18:33,491 INFO L290 TraceCheckUtils]: 2: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,491 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {50142#true} {50142#true} #1254#return; {50142#true} is VALID [2022-04-27 15:18:33,491 INFO L290 TraceCheckUtils]: 0: Hoare triple {50213#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {50142#true} is VALID [2022-04-27 15:18:33,491 INFO L272 TraceCheckUtils]: 1: Hoare triple {50142#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {50142#true} is VALID [2022-04-27 15:18:33,491 INFO L290 TraceCheckUtils]: 2: Hoare triple {50142#true} ~cond := #in~cond; {50142#true} is VALID [2022-04-27 15:18:33,491 INFO L290 TraceCheckUtils]: 3: Hoare triple {50142#true} assume !(0 == ~cond); {50142#true} is VALID [2022-04-27 15:18:33,491 INFO L290 TraceCheckUtils]: 4: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,491 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {50142#true} {50142#true} #1254#return; {50142#true} is VALID [2022-04-27 15:18:33,491 INFO L290 TraceCheckUtils]: 6: Hoare triple {50142#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {50142#true} is VALID [2022-04-27 15:18:33,491 INFO L290 TraceCheckUtils]: 7: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,491 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {50142#true} {50142#true} #1218#return; {50142#true} is VALID [2022-04-27 15:18:33,500 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:18:33,528 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,541 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:33,544 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,550 INFO L290 TraceCheckUtils]: 0: Hoare triple {50218#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {50142#true} is VALID [2022-04-27 15:18:33,550 INFO L290 TraceCheckUtils]: 1: Hoare triple {50142#true} assume 0 == ~__BLAST_NONDET~5; {50142#true} is VALID [2022-04-27 15:18:33,550 INFO L290 TraceCheckUtils]: 2: Hoare triple {50142#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {50142#true} is VALID [2022-04-27 15:18:33,550 INFO L290 TraceCheckUtils]: 3: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,551 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {50142#true} {50142#true} #1176#return; {50142#true} is VALID [2022-04-27 15:18:33,551 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:18:33,557 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,631 INFO L290 TraceCheckUtils]: 0: Hoare triple {50213#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {50234#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:18:33,633 INFO L290 TraceCheckUtils]: 1: Hoare triple {50234#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {50235#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} is VALID [2022-04-27 15:18:33,633 INFO L290 TraceCheckUtils]: 2: Hoare triple {50235#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {50236#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:18:33,634 INFO L290 TraceCheckUtils]: 3: Hoare triple {50236#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {50236#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:18:33,635 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {50236#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {50142#true} #1178#return; {50143#false} is VALID [2022-04-27 15:18:33,635 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:18:33,636 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,645 INFO L290 TraceCheckUtils]: 0: Hoare triple {50142#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {50142#true} is VALID [2022-04-27 15:18:33,645 INFO L290 TraceCheckUtils]: 1: Hoare triple {50142#true} assume 0 == ~__BLAST_NONDET~2; {50142#true} is VALID [2022-04-27 15:18:33,646 INFO L290 TraceCheckUtils]: 2: Hoare triple {50142#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {50142#true} is VALID [2022-04-27 15:18:33,646 INFO L290 TraceCheckUtils]: 3: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,646 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {50142#true} {50143#false} #1180#return; {50143#false} is VALID [2022-04-27 15:18:33,646 INFO L290 TraceCheckUtils]: 0: Hoare triple {50218#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {50142#true} is VALID [2022-04-27 15:18:33,647 INFO L272 TraceCheckUtils]: 1: Hoare triple {50142#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {50218#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:33,647 INFO L290 TraceCheckUtils]: 2: Hoare triple {50218#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {50142#true} is VALID [2022-04-27 15:18:33,647 INFO L290 TraceCheckUtils]: 3: Hoare triple {50142#true} assume 0 == ~__BLAST_NONDET~5; {50142#true} is VALID [2022-04-27 15:18:33,647 INFO L290 TraceCheckUtils]: 4: Hoare triple {50142#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {50142#true} is VALID [2022-04-27 15:18:33,647 INFO L290 TraceCheckUtils]: 5: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,647 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {50142#true} {50142#true} #1176#return; {50142#true} is VALID [2022-04-27 15:18:33,647 INFO L290 TraceCheckUtils]: 7: Hoare triple {50142#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {50142#true} is VALID [2022-04-27 15:18:33,647 INFO L290 TraceCheckUtils]: 8: Hoare triple {50142#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {50142#true} is VALID [2022-04-27 15:18:33,648 INFO L272 TraceCheckUtils]: 9: Hoare triple {50142#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {50213#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:33,648 INFO L290 TraceCheckUtils]: 10: Hoare triple {50213#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {50234#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:18:33,649 INFO L290 TraceCheckUtils]: 11: Hoare triple {50234#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {50235#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} is VALID [2022-04-27 15:18:33,650 INFO L290 TraceCheckUtils]: 12: Hoare triple {50235#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {50236#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:18:33,650 INFO L290 TraceCheckUtils]: 13: Hoare triple {50236#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {50236#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:18:33,651 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {50236#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {50142#true} #1178#return; {50143#false} is VALID [2022-04-27 15:18:33,651 INFO L290 TraceCheckUtils]: 15: Hoare triple {50143#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {50143#false} is VALID [2022-04-27 15:18:33,651 INFO L272 TraceCheckUtils]: 16: Hoare triple {50143#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {50142#true} is VALID [2022-04-27 15:18:33,651 INFO L290 TraceCheckUtils]: 17: Hoare triple {50142#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {50142#true} is VALID [2022-04-27 15:18:33,651 INFO L290 TraceCheckUtils]: 18: Hoare triple {50142#true} assume 0 == ~__BLAST_NONDET~2; {50142#true} is VALID [2022-04-27 15:18:33,651 INFO L290 TraceCheckUtils]: 19: Hoare triple {50142#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {50142#true} is VALID [2022-04-27 15:18:33,651 INFO L290 TraceCheckUtils]: 20: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,651 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {50142#true} {50143#false} #1180#return; {50143#false} is VALID [2022-04-27 15:18:33,651 INFO L290 TraceCheckUtils]: 22: Hoare triple {50143#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {50143#false} is VALID [2022-04-27 15:18:33,651 INFO L290 TraceCheckUtils]: 23: Hoare triple {50143#false} assume true; {50143#false} is VALID [2022-04-27 15:18:33,651 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {50143#false} {50142#true} #1220#return; {50143#false} is VALID [2022-04-27 15:18:33,675 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:18:33,676 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,681 INFO L290 TraceCheckUtils]: 0: Hoare triple {50237#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {50142#true} is VALID [2022-04-27 15:18:33,681 INFO L290 TraceCheckUtils]: 1: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,681 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {50142#true} {50143#false} #1222#return; {50143#false} is VALID [2022-04-27 15:18:33,681 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 63 [2022-04-27 15:18:33,683 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,689 INFO L290 TraceCheckUtils]: 0: Hoare triple {50213#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {50142#true} is VALID [2022-04-27 15:18:33,689 INFO L290 TraceCheckUtils]: 1: Hoare triple {50142#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {50142#true} is VALID [2022-04-27 15:18:33,689 INFO L290 TraceCheckUtils]: 2: Hoare triple {50142#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {50142#true} is VALID [2022-04-27 15:18:33,689 INFO L290 TraceCheckUtils]: 3: Hoare triple {50142#true} assume #res.base == dest.base && #res.offset == dest.offset; {50142#true} is VALID [2022-04-27 15:18:33,689 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {50142#true} {50143#false} #1186#return; {50143#false} is VALID [2022-04-27 15:18:33,699 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 73 [2022-04-27 15:18:33,702 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,716 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:18:33,717 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,722 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:33,723 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:33,727 INFO L290 TraceCheckUtils]: 0: Hoare triple {50247#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {50142#true} is VALID [2022-04-27 15:18:33,727 INFO L290 TraceCheckUtils]: 1: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,727 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {50142#true} {50142#true} #1174#return; {50142#true} is VALID [2022-04-27 15:18:33,728 INFO L290 TraceCheckUtils]: 0: Hoare triple {50247#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {50142#true} is VALID [2022-04-27 15:18:33,728 INFO L272 TraceCheckUtils]: 1: Hoare triple {50142#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {50247#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:33,728 INFO L290 TraceCheckUtils]: 2: Hoare triple {50247#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {50142#true} is VALID [2022-04-27 15:18:33,728 INFO L290 TraceCheckUtils]: 3: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,728 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {50142#true} {50142#true} #1174#return; {50142#true} is VALID [2022-04-27 15:18:33,728 INFO L290 TraceCheckUtils]: 5: Hoare triple {50142#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {50142#true} is VALID [2022-04-27 15:18:33,728 INFO L290 TraceCheckUtils]: 6: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,728 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {50142#true} {50142#true} #1210#return; {50142#true} is VALID [2022-04-27 15:18:33,728 INFO L290 TraceCheckUtils]: 0: Hoare triple {50238#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {50142#true} is VALID [2022-04-27 15:18:33,729 INFO L290 TraceCheckUtils]: 1: Hoare triple {50142#true} assume 0 != ~compRegistered~0; {50142#true} is VALID [2022-04-27 15:18:33,729 INFO L272 TraceCheckUtils]: 2: Hoare triple {50142#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {50247#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:33,729 INFO L290 TraceCheckUtils]: 3: Hoare triple {50247#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L272 TraceCheckUtils]: 4: Hoare triple {50142#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {50247#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:33,730 INFO L290 TraceCheckUtils]: 5: Hoare triple {50247#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L290 TraceCheckUtils]: 6: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {50142#true} {50142#true} #1174#return; {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L290 TraceCheckUtils]: 8: Hoare triple {50142#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L290 TraceCheckUtils]: 9: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {50142#true} {50142#true} #1210#return; {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L290 TraceCheckUtils]: 11: Hoare triple {50142#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L290 TraceCheckUtils]: 12: Hoare triple {50142#true} assume !(-1073741802 == ~compRetStatus~0); {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L290 TraceCheckUtils]: 13: Hoare triple {50142#true} assume 0 == ~__BLAST_NONDET~11; {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L290 TraceCheckUtils]: 14: Hoare triple {50142#true} ~returnVal2~0 := 0; {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L290 TraceCheckUtils]: 15: Hoare triple {50142#true} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L290 TraceCheckUtils]: 16: Hoare triple {50142#true} #res := ~returnVal2~0; {50142#true} is VALID [2022-04-27 15:18:33,730 INFO L290 TraceCheckUtils]: 17: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,731 INFO L284 TraceCheckUtils]: 18: Hoare quadruple {50142#true} {50143#false} #1192#return; {50143#false} is VALID [2022-04-27 15:18:33,731 INFO L272 TraceCheckUtils]: 0: Hoare triple {50142#true} call ULTIMATE.init(); {50211#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:18:33,732 INFO L290 TraceCheckUtils]: 1: Hoare triple {50211#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {50142#true} is VALID [2022-04-27 15:18:33,732 INFO L290 TraceCheckUtils]: 2: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,732 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {50142#true} {50142#true} #1270#return; {50142#true} is VALID [2022-04-27 15:18:33,732 INFO L272 TraceCheckUtils]: 4: Hoare triple {50142#true} call #t~ret213 := main(); {50142#true} is VALID [2022-04-27 15:18:33,732 INFO L290 TraceCheckUtils]: 5: Hoare triple {50142#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {50142#true} is VALID [2022-04-27 15:18:33,732 INFO L272 TraceCheckUtils]: 6: Hoare triple {50142#true} call _BLAST_init(); {50212#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:33,733 INFO L290 TraceCheckUtils]: 7: Hoare triple {50212#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {50142#true} is VALID [2022-04-27 15:18:33,733 INFO L290 TraceCheckUtils]: 8: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,733 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {50142#true} {50142#true} #1216#return; {50142#true} is VALID [2022-04-27 15:18:33,733 INFO L272 TraceCheckUtils]: 10: Hoare triple {50142#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {50213#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:33,733 INFO L290 TraceCheckUtils]: 11: Hoare triple {50213#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {50142#true} is VALID [2022-04-27 15:18:33,733 INFO L272 TraceCheckUtils]: 12: Hoare triple {50142#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {50142#true} is VALID [2022-04-27 15:18:33,733 INFO L290 TraceCheckUtils]: 13: Hoare triple {50142#true} ~cond := #in~cond; {50142#true} is VALID [2022-04-27 15:18:33,733 INFO L290 TraceCheckUtils]: 14: Hoare triple {50142#true} assume !(0 == ~cond); {50142#true} is VALID [2022-04-27 15:18:33,734 INFO L290 TraceCheckUtils]: 15: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,734 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {50142#true} {50142#true} #1254#return; {50142#true} is VALID [2022-04-27 15:18:33,734 INFO L290 TraceCheckUtils]: 17: Hoare triple {50142#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {50142#true} is VALID [2022-04-27 15:18:33,734 INFO L290 TraceCheckUtils]: 18: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,734 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {50142#true} {50142#true} #1218#return; {50142#true} is VALID [2022-04-27 15:18:33,734 INFO L290 TraceCheckUtils]: 20: Hoare triple {50142#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {50142#true} is VALID [2022-04-27 15:18:33,734 INFO L290 TraceCheckUtils]: 21: Hoare triple {50142#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {50142#true} is VALID [2022-04-27 15:18:33,734 INFO L290 TraceCheckUtils]: 22: Hoare triple {50142#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {50142#true} is VALID [2022-04-27 15:18:33,735 INFO L272 TraceCheckUtils]: 23: Hoare triple {50142#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {50218#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:33,735 INFO L290 TraceCheckUtils]: 24: Hoare triple {50218#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {50142#true} is VALID [2022-04-27 15:18:33,735 INFO L272 TraceCheckUtils]: 25: Hoare triple {50142#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {50218#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:33,735 INFO L290 TraceCheckUtils]: 26: Hoare triple {50218#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {50142#true} is VALID [2022-04-27 15:18:33,736 INFO L290 TraceCheckUtils]: 27: Hoare triple {50142#true} assume 0 == ~__BLAST_NONDET~5; {50142#true} is VALID [2022-04-27 15:18:33,736 INFO L290 TraceCheckUtils]: 28: Hoare triple {50142#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {50142#true} is VALID [2022-04-27 15:18:33,736 INFO L290 TraceCheckUtils]: 29: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,736 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {50142#true} {50142#true} #1176#return; {50142#true} is VALID [2022-04-27 15:18:33,736 INFO L290 TraceCheckUtils]: 31: Hoare triple {50142#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {50142#true} is VALID [2022-04-27 15:18:33,736 INFO L290 TraceCheckUtils]: 32: Hoare triple {50142#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {50142#true} is VALID [2022-04-27 15:18:33,736 INFO L272 TraceCheckUtils]: 33: Hoare triple {50142#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {50213#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:33,737 INFO L290 TraceCheckUtils]: 34: Hoare triple {50213#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {50234#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:18:33,738 INFO L290 TraceCheckUtils]: 35: Hoare triple {50234#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {50235#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} is VALID [2022-04-27 15:18:33,739 INFO L290 TraceCheckUtils]: 36: Hoare triple {50235#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {50236#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:18:33,739 INFO L290 TraceCheckUtils]: 37: Hoare triple {50236#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {50236#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:18:33,739 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {50236#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {50142#true} #1178#return; {50143#false} is VALID [2022-04-27 15:18:33,740 INFO L290 TraceCheckUtils]: 39: Hoare triple {50143#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {50143#false} is VALID [2022-04-27 15:18:33,740 INFO L272 TraceCheckUtils]: 40: Hoare triple {50143#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {50142#true} is VALID [2022-04-27 15:18:33,740 INFO L290 TraceCheckUtils]: 41: Hoare triple {50142#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {50142#true} is VALID [2022-04-27 15:18:33,740 INFO L290 TraceCheckUtils]: 42: Hoare triple {50142#true} assume 0 == ~__BLAST_NONDET~2; {50142#true} is VALID [2022-04-27 15:18:33,740 INFO L290 TraceCheckUtils]: 43: Hoare triple {50142#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {50142#true} is VALID [2022-04-27 15:18:33,740 INFO L290 TraceCheckUtils]: 44: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,740 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {50142#true} {50143#false} #1180#return; {50143#false} is VALID [2022-04-27 15:18:33,740 INFO L290 TraceCheckUtils]: 46: Hoare triple {50143#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {50143#false} is VALID [2022-04-27 15:18:33,740 INFO L290 TraceCheckUtils]: 47: Hoare triple {50143#false} assume true; {50143#false} is VALID [2022-04-27 15:18:33,740 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {50143#false} {50142#true} #1220#return; {50143#false} is VALID [2022-04-27 15:18:33,740 INFO L290 TraceCheckUtils]: 49: Hoare triple {50143#false} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {50143#false} is VALID [2022-04-27 15:18:33,740 INFO L272 TraceCheckUtils]: 50: Hoare triple {50143#false} call stub_driver_init(); {50237#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:33,740 INFO L290 TraceCheckUtils]: 51: Hoare triple {50237#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {50142#true} is VALID [2022-04-27 15:18:33,740 INFO L290 TraceCheckUtils]: 52: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,740 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {50142#true} {50143#false} #1222#return; {50143#false} is VALID [2022-04-27 15:18:33,740 INFO L290 TraceCheckUtils]: 54: Hoare triple {50143#false} assume !!(~status~5 >= 0); {50143#false} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 55: Hoare triple {50143#false} assume !(0 == ~__BLAST_NONDET~0); {50143#false} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 56: Hoare triple {50143#false} assume !(1 == ~__BLAST_NONDET~0); {50143#false} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 57: Hoare triple {50143#false} assume !(2 == ~__BLAST_NONDET~0); {50143#false} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 58: Hoare triple {50143#false} assume 3 == ~__BLAST_NONDET~0; {50143#false} is VALID [2022-04-27 15:18:33,741 INFO L272 TraceCheckUtils]: 59: Hoare triple {50143#false} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {50143#false} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 60: Hoare triple {50143#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {50143#false} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 61: Hoare triple {50143#false} assume 0 == #t~mem81 % 256;havoc #t~mem81; {50143#false} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 62: Hoare triple {50143#false} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {50143#false} is VALID [2022-04-27 15:18:33,741 INFO L272 TraceCheckUtils]: 63: Hoare triple {50143#false} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {50213#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 64: Hoare triple {50213#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {50142#true} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 65: Hoare triple {50142#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {50142#true} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 66: Hoare triple {50142#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {50142#true} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 67: Hoare triple {50142#true} assume #res.base == dest.base && #res.offset == dest.offset; {50142#true} is VALID [2022-04-27 15:18:33,741 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {50142#true} {50143#false} #1186#return; {50143#false} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 69: Hoare triple {50143#false} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {50143#false} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 70: Hoare triple {50143#false} assume !(~s~0 != ~NP~0); {50143#false} is VALID [2022-04-27 15:18:33,741 INFO L290 TraceCheckUtils]: 71: Hoare triple {50143#false} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {50143#false} is VALID [2022-04-27 15:18:33,742 INFO L290 TraceCheckUtils]: 72: Hoare triple {50143#false} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {50143#false} is VALID [2022-04-27 15:18:33,742 INFO L272 TraceCheckUtils]: 73: Hoare triple {50143#false} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {50238#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:33,742 INFO L290 TraceCheckUtils]: 74: Hoare triple {50238#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {50142#true} is VALID [2022-04-27 15:18:33,742 INFO L290 TraceCheckUtils]: 75: Hoare triple {50142#true} assume 0 != ~compRegistered~0; {50142#true} is VALID [2022-04-27 15:18:33,742 INFO L272 TraceCheckUtils]: 76: Hoare triple {50142#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {50247#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:33,743 INFO L290 TraceCheckUtils]: 77: Hoare triple {50247#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {50142#true} is VALID [2022-04-27 15:18:33,743 INFO L272 TraceCheckUtils]: 78: Hoare triple {50142#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {50247#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:33,743 INFO L290 TraceCheckUtils]: 79: Hoare triple {50247#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {50142#true} is VALID [2022-04-27 15:18:33,743 INFO L290 TraceCheckUtils]: 80: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,743 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {50142#true} {50142#true} #1174#return; {50142#true} is VALID [2022-04-27 15:18:33,743 INFO L290 TraceCheckUtils]: 82: Hoare triple {50142#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {50142#true} is VALID [2022-04-27 15:18:33,743 INFO L290 TraceCheckUtils]: 83: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,743 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {50142#true} {50142#true} #1210#return; {50142#true} is VALID [2022-04-27 15:18:33,743 INFO L290 TraceCheckUtils]: 85: Hoare triple {50142#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {50142#true} is VALID [2022-04-27 15:18:33,743 INFO L290 TraceCheckUtils]: 86: Hoare triple {50142#true} assume !(-1073741802 == ~compRetStatus~0); {50142#true} is VALID [2022-04-27 15:18:33,743 INFO L290 TraceCheckUtils]: 87: Hoare triple {50142#true} assume 0 == ~__BLAST_NONDET~11; {50142#true} is VALID [2022-04-27 15:18:33,744 INFO L290 TraceCheckUtils]: 88: Hoare triple {50142#true} ~returnVal2~0 := 0; {50142#true} is VALID [2022-04-27 15:18:33,744 INFO L290 TraceCheckUtils]: 89: Hoare triple {50142#true} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {50142#true} is VALID [2022-04-27 15:18:33,744 INFO L290 TraceCheckUtils]: 90: Hoare triple {50142#true} #res := ~returnVal2~0; {50142#true} is VALID [2022-04-27 15:18:33,744 INFO L290 TraceCheckUtils]: 91: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:33,744 INFO L284 TraceCheckUtils]: 92: Hoare quadruple {50142#true} {50143#false} #1192#return; {50143#false} is VALID [2022-04-27 15:18:33,744 INFO L290 TraceCheckUtils]: 93: Hoare triple {50143#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {50143#false} is VALID [2022-04-27 15:18:33,744 INFO L290 TraceCheckUtils]: 94: Hoare triple {50143#false} assume !(259 == ~status~3); {50143#false} is VALID [2022-04-27 15:18:33,744 INFO L290 TraceCheckUtils]: 95: Hoare triple {50143#false} assume ~status~3 >= 0; {50143#false} is VALID [2022-04-27 15:18:33,744 INFO L290 TraceCheckUtils]: 96: Hoare triple {50143#false} assume !(~myStatus~0 >= 0); {50143#false} is VALID [2022-04-27 15:18:33,744 INFO L290 TraceCheckUtils]: 97: Hoare triple {50143#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {50143#false} is VALID [2022-04-27 15:18:33,744 INFO L272 TraceCheckUtils]: 98: Hoare triple {50143#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {50143#false} is VALID [2022-04-27 15:18:33,744 INFO L290 TraceCheckUtils]: 99: Hoare triple {50143#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {50143#false} is VALID [2022-04-27 15:18:33,744 INFO L290 TraceCheckUtils]: 100: Hoare triple {50143#false} assume !(~s~0 == ~NP~0); {50143#false} is VALID [2022-04-27 15:18:33,744 INFO L272 TraceCheckUtils]: 101: Hoare triple {50143#false} call errorFn(); {50143#false} is VALID [2022-04-27 15:18:33,744 INFO L290 TraceCheckUtils]: 102: Hoare triple {50143#false} assume !false; {50143#false} is VALID [2022-04-27 15:18:33,745 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:18:33,745 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:18:33,745 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1873285147] [2022-04-27 15:18:33,745 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1873285147] provided 0 perfect and 1 imperfect interpolant sequences [2022-04-27 15:18:33,745 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [751013708] [2022-04-27 15:18:33,745 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:18:33,745 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-04-27 15:18:33,745 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2022-04-27 15:18:33,747 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-04-27 15:18:33,749 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-04-27 15:18:34,541 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:34,549 INFO L263 TraceCheckSpWp]: Trace formula consists of 1767 conjuncts, 9 conjunts are in the unsatisfiable core [2022-04-27 15:18:34,583 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:34,589 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-04-27 15:18:34,825 INFO L272 TraceCheckUtils]: 0: Hoare triple {50142#true} call ULTIMATE.init(); {50142#true} is VALID [2022-04-27 15:18:34,825 INFO L290 TraceCheckUtils]: 1: Hoare triple {50142#true} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {50142#true} is VALID [2022-04-27 15:18:34,825 INFO L290 TraceCheckUtils]: 2: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:34,825 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {50142#true} {50142#true} #1270#return; {50142#true} is VALID [2022-04-27 15:18:34,825 INFO L272 TraceCheckUtils]: 4: Hoare triple {50142#true} call #t~ret213 := main(); {50142#true} is VALID [2022-04-27 15:18:34,825 INFO L290 TraceCheckUtils]: 5: Hoare triple {50142#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {50142#true} is VALID [2022-04-27 15:18:34,825 INFO L272 TraceCheckUtils]: 6: Hoare triple {50142#true} call _BLAST_init(); {50142#true} is VALID [2022-04-27 15:18:34,825 INFO L290 TraceCheckUtils]: 7: Hoare triple {50142#true} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L290 TraceCheckUtils]: 8: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {50142#true} {50142#true} #1216#return; {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L272 TraceCheckUtils]: 10: Hoare triple {50142#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L290 TraceCheckUtils]: 11: Hoare triple {50142#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L272 TraceCheckUtils]: 12: Hoare triple {50142#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L290 TraceCheckUtils]: 13: Hoare triple {50142#true} ~cond := #in~cond; {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L290 TraceCheckUtils]: 14: Hoare triple {50142#true} assume !(0 == ~cond); {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L290 TraceCheckUtils]: 15: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {50142#true} {50142#true} #1254#return; {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L290 TraceCheckUtils]: 17: Hoare triple {50142#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L290 TraceCheckUtils]: 18: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {50142#true} {50142#true} #1218#return; {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L290 TraceCheckUtils]: 20: Hoare triple {50142#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L290 TraceCheckUtils]: 21: Hoare triple {50142#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {50142#true} is VALID [2022-04-27 15:18:34,826 INFO L290 TraceCheckUtils]: 22: Hoare triple {50142#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L272 TraceCheckUtils]: 23: Hoare triple {50142#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L290 TraceCheckUtils]: 24: Hoare triple {50142#true} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L272 TraceCheckUtils]: 25: Hoare triple {50142#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L290 TraceCheckUtils]: 26: Hoare triple {50142#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L290 TraceCheckUtils]: 27: Hoare triple {50142#true} assume 0 == ~__BLAST_NONDET~5; {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L290 TraceCheckUtils]: 28: Hoare triple {50142#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L290 TraceCheckUtils]: 29: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {50142#true} {50142#true} #1176#return; {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L290 TraceCheckUtils]: 31: Hoare triple {50142#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L290 TraceCheckUtils]: 32: Hoare triple {50142#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L272 TraceCheckUtils]: 33: Hoare triple {50142#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L290 TraceCheckUtils]: 34: Hoare triple {50142#true} #t~loopctr214 := 0; {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L290 TraceCheckUtils]: 35: Hoare triple {50142#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L290 TraceCheckUtils]: 36: Hoare triple {50142#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L290 TraceCheckUtils]: 37: Hoare triple {50142#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {50142#true} is VALID [2022-04-27 15:18:34,827 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {50142#true} {50142#true} #1178#return; {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L290 TraceCheckUtils]: 39: Hoare triple {50142#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L272 TraceCheckUtils]: 40: Hoare triple {50142#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L290 TraceCheckUtils]: 41: Hoare triple {50142#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L290 TraceCheckUtils]: 42: Hoare triple {50142#true} assume 0 == ~__BLAST_NONDET~2; {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L290 TraceCheckUtils]: 43: Hoare triple {50142#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L290 TraceCheckUtils]: 44: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {50142#true} {50142#true} #1180#return; {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L290 TraceCheckUtils]: 46: Hoare triple {50142#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L290 TraceCheckUtils]: 47: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {50142#true} {50142#true} #1220#return; {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L290 TraceCheckUtils]: 49: Hoare triple {50142#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L272 TraceCheckUtils]: 50: Hoare triple {50142#true} call stub_driver_init(); {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L290 TraceCheckUtils]: 51: Hoare triple {50142#true} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L290 TraceCheckUtils]: 52: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:34,828 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {50142#true} {50142#true} #1222#return; {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L290 TraceCheckUtils]: 54: Hoare triple {50142#true} assume !!(~status~5 >= 0); {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L290 TraceCheckUtils]: 55: Hoare triple {50142#true} assume !(0 == ~__BLAST_NONDET~0); {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L290 TraceCheckUtils]: 56: Hoare triple {50142#true} assume !(1 == ~__BLAST_NONDET~0); {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L290 TraceCheckUtils]: 57: Hoare triple {50142#true} assume !(2 == ~__BLAST_NONDET~0); {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L290 TraceCheckUtils]: 58: Hoare triple {50142#true} assume 3 == ~__BLAST_NONDET~0; {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L272 TraceCheckUtils]: 59: Hoare triple {50142#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L290 TraceCheckUtils]: 60: Hoare triple {50142#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L290 TraceCheckUtils]: 61: Hoare triple {50142#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L290 TraceCheckUtils]: 62: Hoare triple {50142#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L272 TraceCheckUtils]: 63: Hoare triple {50142#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L290 TraceCheckUtils]: 64: Hoare triple {50142#true} #t~loopctr215 := 0; {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L290 TraceCheckUtils]: 65: Hoare triple {50142#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L290 TraceCheckUtils]: 66: Hoare triple {50142#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L290 TraceCheckUtils]: 67: Hoare triple {50142#true} assume #res.base == dest.base && #res.offset == dest.offset; {50142#true} is VALID [2022-04-27 15:18:34,829 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {50142#true} {50142#true} #1186#return; {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L290 TraceCheckUtils]: 69: Hoare triple {50142#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L290 TraceCheckUtils]: 70: Hoare triple {50142#true} assume !(~s~0 != ~NP~0); {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L290 TraceCheckUtils]: 71: Hoare triple {50142#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L290 TraceCheckUtils]: 72: Hoare triple {50142#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L272 TraceCheckUtils]: 73: Hoare triple {50142#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L290 TraceCheckUtils]: 74: Hoare triple {50142#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L290 TraceCheckUtils]: 75: Hoare triple {50142#true} assume 0 != ~compRegistered~0; {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L272 TraceCheckUtils]: 76: Hoare triple {50142#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L290 TraceCheckUtils]: 77: Hoare triple {50142#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L272 TraceCheckUtils]: 78: Hoare triple {50142#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L290 TraceCheckUtils]: 79: Hoare triple {50142#true} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L290 TraceCheckUtils]: 80: Hoare triple {50142#true} assume true; {50142#true} is VALID [2022-04-27 15:18:34,830 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {50142#true} {50142#true} #1174#return; {50142#true} is VALID [2022-04-27 15:18:34,831 INFO L290 TraceCheckUtils]: 82: Hoare triple {50142#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {50500#(= (- 1073741802) |KbFilter_Complete_#res|)} is VALID [2022-04-27 15:18:34,831 INFO L290 TraceCheckUtils]: 83: Hoare triple {50500#(= (- 1073741802) |KbFilter_Complete_#res|)} assume true; {50500#(= (- 1073741802) |KbFilter_Complete_#res|)} is VALID [2022-04-27 15:18:34,833 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {50500#(= (- 1073741802) |KbFilter_Complete_#res|)} {50142#true} #1210#return; {50507#(= |IofCallDriver_#t~ret196| (- 1073741802))} is VALID [2022-04-27 15:18:34,833 INFO L290 TraceCheckUtils]: 85: Hoare triple {50507#(= |IofCallDriver_#t~ret196| (- 1073741802))} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {50511#(= (- 1073741802) IofCallDriver_~compRetStatus~0)} is VALID [2022-04-27 15:18:34,833 INFO L290 TraceCheckUtils]: 86: Hoare triple {50511#(= (- 1073741802) IofCallDriver_~compRetStatus~0)} assume !(-1073741802 == ~compRetStatus~0); {50143#false} is VALID [2022-04-27 15:18:34,833 INFO L290 TraceCheckUtils]: 87: Hoare triple {50143#false} assume 0 == ~__BLAST_NONDET~11; {50143#false} is VALID [2022-04-27 15:18:34,833 INFO L290 TraceCheckUtils]: 88: Hoare triple {50143#false} ~returnVal2~0 := 0; {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L290 TraceCheckUtils]: 89: Hoare triple {50143#false} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L290 TraceCheckUtils]: 90: Hoare triple {50143#false} #res := ~returnVal2~0; {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L290 TraceCheckUtils]: 91: Hoare triple {50143#false} assume true; {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L284 TraceCheckUtils]: 92: Hoare quadruple {50143#false} {50142#true} #1192#return; {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L290 TraceCheckUtils]: 93: Hoare triple {50143#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L290 TraceCheckUtils]: 94: Hoare triple {50143#false} assume !(259 == ~status~3); {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L290 TraceCheckUtils]: 95: Hoare triple {50143#false} assume ~status~3 >= 0; {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L290 TraceCheckUtils]: 96: Hoare triple {50143#false} assume !(~myStatus~0 >= 0); {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L290 TraceCheckUtils]: 97: Hoare triple {50143#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L272 TraceCheckUtils]: 98: Hoare triple {50143#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L290 TraceCheckUtils]: 99: Hoare triple {50143#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L290 TraceCheckUtils]: 100: Hoare triple {50143#false} assume !(~s~0 == ~NP~0); {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L272 TraceCheckUtils]: 101: Hoare triple {50143#false} call errorFn(); {50143#false} is VALID [2022-04-27 15:18:34,834 INFO L290 TraceCheckUtils]: 102: Hoare triple {50143#false} assume !false; {50143#false} is VALID [2022-04-27 15:18:34,835 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:18:34,835 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-04-27 15:18:34,835 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [751013708] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:18:34,835 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-04-27 15:18:34,835 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [12] total 15 [2022-04-27 15:18:34,835 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1445501045] [2022-04-27 15:18:34,835 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:18:34,836 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 14.6) internal successors, (73), 4 states have internal predecessors, (73), 2 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (13), 3 states have call predecessors, (13), 1 states have call successors, (13) Word has length 103 [2022-04-27 15:18:34,836 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:18:34,836 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 5 states, 5 states have (on average 14.6) internal successors, (73), 4 states have internal predecessors, (73), 2 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (13), 3 states have call predecessors, (13), 1 states have call successors, (13) [2022-04-27 15:18:34,913 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 103 edges. 103 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:18:34,914 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-04-27 15:18:34,914 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:18:34,914 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-04-27 15:18:34,914 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=38, Invalid=172, Unknown=0, NotChecked=0, Total=210 [2022-04-27 15:18:34,914 INFO L87 Difference]: Start difference. First operand 339 states and 401 transitions. Second operand has 5 states, 5 states have (on average 14.6) internal successors, (73), 4 states have internal predecessors, (73), 2 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (13), 3 states have call predecessors, (13), 1 states have call successors, (13) [2022-04-27 15:18:42,981 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:42,981 INFO L93 Difference]: Finished difference Result 435 states and 520 transitions. [2022-04-27 15:18:42,981 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-04-27 15:18:42,981 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 14.6) internal successors, (73), 4 states have internal predecessors, (73), 2 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (13), 3 states have call predecessors, (13), 1 states have call successors, (13) Word has length 103 [2022-04-27 15:18:42,982 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:18:42,982 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 5 states, 5 states have (on average 14.6) internal successors, (73), 4 states have internal predecessors, (73), 2 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (13), 3 states have call predecessors, (13), 1 states have call successors, (13) [2022-04-27 15:18:42,983 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 5 states to 5 states and 227 transitions. [2022-04-27 15:18:42,983 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 5 states, 5 states have (on average 14.6) internal successors, (73), 4 states have internal predecessors, (73), 2 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (13), 3 states have call predecessors, (13), 1 states have call successors, (13) [2022-04-27 15:18:42,984 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 5 states to 5 states and 227 transitions. [2022-04-27 15:18:42,984 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 5 states and 227 transitions. [2022-04-27 15:18:43,137 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 227 edges. 227 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:18:43,142 INFO L225 Difference]: With dead ends: 435 [2022-04-27 15:18:43,142 INFO L226 Difference]: Without dead ends: 325 [2022-04-27 15:18:43,143 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 133 GetRequests, 120 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 26 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=38, Invalid=172, Unknown=0, NotChecked=0, Total=210 [2022-04-27 15:18:43,143 INFO L413 NwaCegarLoop]: 162 mSDtfsCounter, 15 mSDsluCounter, 466 mSDsCounter, 0 mSdLazyCounter, 8 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 16 SdHoareTripleChecker+Valid, 628 SdHoareTripleChecker+Invalid, 8 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 8 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-04-27 15:18:43,143 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [16 Valid, 628 Invalid, 8 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 8 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-04-27 15:18:43,144 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 325 states. [2022-04-27 15:18:43,353 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 325 to 325. [2022-04-27 15:18:43,353 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:18:43,354 INFO L82 GeneralOperation]: Start isEquivalent. First operand 325 states. Second operand has 325 states, 250 states have (on average 1.22) internal successors, (305), 254 states have internal predecessors, (305), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:18:43,354 INFO L74 IsIncluded]: Start isIncluded. First operand 325 states. Second operand has 325 states, 250 states have (on average 1.22) internal successors, (305), 254 states have internal predecessors, (305), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:18:43,354 INFO L87 Difference]: Start difference. First operand 325 states. Second operand has 325 states, 250 states have (on average 1.22) internal successors, (305), 254 states have internal predecessors, (305), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:18:43,358 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:43,358 INFO L93 Difference]: Finished difference Result 325 states and 381 transitions. [2022-04-27 15:18:43,358 INFO L276 IsEmpty]: Start isEmpty. Operand 325 states and 381 transitions. [2022-04-27 15:18:43,358 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:18:43,358 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:18:43,361 INFO L74 IsIncluded]: Start isIncluded. First operand has 325 states, 250 states have (on average 1.22) internal successors, (305), 254 states have internal predecessors, (305), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) Second operand 325 states. [2022-04-27 15:18:43,362 INFO L87 Difference]: Start difference. First operand has 325 states, 250 states have (on average 1.22) internal successors, (305), 254 states have internal predecessors, (305), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) Second operand 325 states. [2022-04-27 15:18:43,365 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:43,365 INFO L93 Difference]: Finished difference Result 325 states and 381 transitions. [2022-04-27 15:18:43,365 INFO L276 IsEmpty]: Start isEmpty. Operand 325 states and 381 transitions. [2022-04-27 15:18:43,366 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:18:43,366 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:18:43,366 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:18:43,366 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:18:43,366 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 325 states, 250 states have (on average 1.22) internal successors, (305), 254 states have internal predecessors, (305), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:18:43,371 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 325 states to 325 states and 381 transitions. [2022-04-27 15:18:43,371 INFO L78 Accepts]: Start accepts. Automaton has 325 states and 381 transitions. Word has length 103 [2022-04-27 15:18:43,371 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:18:43,371 INFO L495 AbstractCegarLoop]: Abstraction has 325 states and 381 transitions. [2022-04-27 15:18:43,371 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 14.6) internal successors, (73), 4 states have internal predecessors, (73), 2 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (13), 3 states have call predecessors, (13), 1 states have call successors, (13) [2022-04-27 15:18:43,371 INFO L276 IsEmpty]: Start isEmpty. Operand 325 states and 381 transitions. [2022-04-27 15:18:43,373 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 108 [2022-04-27 15:18:43,373 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:18:43,373 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:18:43,395 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2022-04-27 15:18:43,594 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable26 [2022-04-27 15:18:43,594 INFO L420 AbstractCegarLoop]: === Iteration 28 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:18:43,595 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:18:43,595 INFO L85 PathProgramCache]: Analyzing trace with hash 813900694, now seen corresponding path program 1 times [2022-04-27 15:18:43,595 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:18:43,595 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1751093588] [2022-04-27 15:18:43,595 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:18:43,595 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:18:43,678 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,759 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:18:43,760 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,765 INFO L290 TraceCheckUtils]: 0: Hoare triple {52321#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {52247#true} is VALID [2022-04-27 15:18:43,765 INFO L290 TraceCheckUtils]: 1: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,765 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {52247#true} {52247#true} #1270#return; {52247#true} is VALID [2022-04-27 15:18:43,790 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:18:43,792 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,802 INFO L290 TraceCheckUtils]: 0: Hoare triple {52322#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:43,803 INFO L290 TraceCheckUtils]: 1: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume true; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:43,803 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} {52247#true} #1216#return; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:43,810 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:18:43,819 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,826 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:43,827 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,831 INFO L290 TraceCheckUtils]: 0: Hoare triple {52247#true} ~cond := #in~cond; {52247#true} is VALID [2022-04-27 15:18:43,831 INFO L290 TraceCheckUtils]: 1: Hoare triple {52247#true} assume !(0 == ~cond); {52247#true} is VALID [2022-04-27 15:18:43,831 INFO L290 TraceCheckUtils]: 2: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,831 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {52247#true} {52247#true} #1254#return; {52247#true} is VALID [2022-04-27 15:18:43,831 INFO L290 TraceCheckUtils]: 0: Hoare triple {52323#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {52247#true} is VALID [2022-04-27 15:18:43,831 INFO L272 TraceCheckUtils]: 1: Hoare triple {52247#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {52247#true} is VALID [2022-04-27 15:18:43,832 INFO L290 TraceCheckUtils]: 2: Hoare triple {52247#true} ~cond := #in~cond; {52247#true} is VALID [2022-04-27 15:18:43,832 INFO L290 TraceCheckUtils]: 3: Hoare triple {52247#true} assume !(0 == ~cond); {52247#true} is VALID [2022-04-27 15:18:43,832 INFO L290 TraceCheckUtils]: 4: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,832 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {52247#true} {52247#true} #1254#return; {52247#true} is VALID [2022-04-27 15:18:43,832 INFO L290 TraceCheckUtils]: 6: Hoare triple {52247#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {52247#true} is VALID [2022-04-27 15:18:43,832 INFO L290 TraceCheckUtils]: 7: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,833 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {52247#true} {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} #1218#return; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:43,842 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:18:43,858 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,868 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:43,872 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,877 INFO L290 TraceCheckUtils]: 0: Hoare triple {52328#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {52247#true} is VALID [2022-04-27 15:18:43,878 INFO L290 TraceCheckUtils]: 1: Hoare triple {52247#true} assume 0 == ~__BLAST_NONDET~5; {52247#true} is VALID [2022-04-27 15:18:43,878 INFO L290 TraceCheckUtils]: 2: Hoare triple {52247#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {52247#true} is VALID [2022-04-27 15:18:43,878 INFO L290 TraceCheckUtils]: 3: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,878 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {52247#true} {52247#true} #1176#return; {52247#true} is VALID [2022-04-27 15:18:43,878 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:18:43,880 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,884 INFO L290 TraceCheckUtils]: 0: Hoare triple {52323#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {52247#true} is VALID [2022-04-27 15:18:43,885 INFO L290 TraceCheckUtils]: 1: Hoare triple {52247#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {52247#true} is VALID [2022-04-27 15:18:43,885 INFO L290 TraceCheckUtils]: 2: Hoare triple {52247#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {52247#true} is VALID [2022-04-27 15:18:43,885 INFO L290 TraceCheckUtils]: 3: Hoare triple {52247#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {52247#true} is VALID [2022-04-27 15:18:43,885 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {52247#true} {52247#true} #1178#return; {52247#true} is VALID [2022-04-27 15:18:43,885 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:18:43,886 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,891 INFO L290 TraceCheckUtils]: 0: Hoare triple {52247#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {52247#true} is VALID [2022-04-27 15:18:43,891 INFO L290 TraceCheckUtils]: 1: Hoare triple {52247#true} assume 0 == ~__BLAST_NONDET~2; {52247#true} is VALID [2022-04-27 15:18:43,891 INFO L290 TraceCheckUtils]: 2: Hoare triple {52247#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {52247#true} is VALID [2022-04-27 15:18:43,891 INFO L290 TraceCheckUtils]: 3: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,891 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {52247#true} {52247#true} #1180#return; {52247#true} is VALID [2022-04-27 15:18:43,891 INFO L290 TraceCheckUtils]: 0: Hoare triple {52328#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {52247#true} is VALID [2022-04-27 15:18:43,892 INFO L272 TraceCheckUtils]: 1: Hoare triple {52247#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {52328#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:43,892 INFO L290 TraceCheckUtils]: 2: Hoare triple {52328#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {52247#true} is VALID [2022-04-27 15:18:43,892 INFO L290 TraceCheckUtils]: 3: Hoare triple {52247#true} assume 0 == ~__BLAST_NONDET~5; {52247#true} is VALID [2022-04-27 15:18:43,892 INFO L290 TraceCheckUtils]: 4: Hoare triple {52247#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {52247#true} is VALID [2022-04-27 15:18:43,892 INFO L290 TraceCheckUtils]: 5: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,893 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {52247#true} {52247#true} #1176#return; {52247#true} is VALID [2022-04-27 15:18:43,893 INFO L290 TraceCheckUtils]: 7: Hoare triple {52247#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {52247#true} is VALID [2022-04-27 15:18:43,893 INFO L290 TraceCheckUtils]: 8: Hoare triple {52247#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {52247#true} is VALID [2022-04-27 15:18:43,893 INFO L272 TraceCheckUtils]: 9: Hoare triple {52247#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {52323#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:43,893 INFO L290 TraceCheckUtils]: 10: Hoare triple {52323#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {52247#true} is VALID [2022-04-27 15:18:43,893 INFO L290 TraceCheckUtils]: 11: Hoare triple {52247#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {52247#true} is VALID [2022-04-27 15:18:43,893 INFO L290 TraceCheckUtils]: 12: Hoare triple {52247#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {52247#true} is VALID [2022-04-27 15:18:43,894 INFO L290 TraceCheckUtils]: 13: Hoare triple {52247#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {52247#true} is VALID [2022-04-27 15:18:43,894 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {52247#true} {52247#true} #1178#return; {52247#true} is VALID [2022-04-27 15:18:43,894 INFO L290 TraceCheckUtils]: 15: Hoare triple {52247#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {52247#true} is VALID [2022-04-27 15:18:43,894 INFO L272 TraceCheckUtils]: 16: Hoare triple {52247#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {52247#true} is VALID [2022-04-27 15:18:43,894 INFO L290 TraceCheckUtils]: 17: Hoare triple {52247#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {52247#true} is VALID [2022-04-27 15:18:43,894 INFO L290 TraceCheckUtils]: 18: Hoare triple {52247#true} assume 0 == ~__BLAST_NONDET~2; {52247#true} is VALID [2022-04-27 15:18:43,894 INFO L290 TraceCheckUtils]: 19: Hoare triple {52247#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {52247#true} is VALID [2022-04-27 15:18:43,894 INFO L290 TraceCheckUtils]: 20: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,894 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {52247#true} {52247#true} #1180#return; {52247#true} is VALID [2022-04-27 15:18:43,894 INFO L290 TraceCheckUtils]: 22: Hoare triple {52247#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {52247#true} is VALID [2022-04-27 15:18:43,894 INFO L290 TraceCheckUtils]: 23: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,895 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {52247#true} {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} #1220#return; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:43,908 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:18:43,910 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,915 INFO L290 TraceCheckUtils]: 0: Hoare triple {52344#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {52247#true} is VALID [2022-04-27 15:18:43,915 INFO L290 TraceCheckUtils]: 1: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,915 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {52247#true} {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} #1222#return; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:43,915 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 63 [2022-04-27 15:18:43,918 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,923 INFO L290 TraceCheckUtils]: 0: Hoare triple {52323#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {52247#true} is VALID [2022-04-27 15:18:43,923 INFO L290 TraceCheckUtils]: 1: Hoare triple {52247#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {52247#true} is VALID [2022-04-27 15:18:43,923 INFO L290 TraceCheckUtils]: 2: Hoare triple {52247#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {52247#true} is VALID [2022-04-27 15:18:43,923 INFO L290 TraceCheckUtils]: 3: Hoare triple {52247#true} assume #res.base == dest.base && #res.offset == dest.offset; {52247#true} is VALID [2022-04-27 15:18:43,924 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {52247#true} {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} #1186#return; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:43,932 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 73 [2022-04-27 15:18:43,937 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,977 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:18:43,980 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,984 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:43,985 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:43,990 INFO L290 TraceCheckUtils]: 0: Hoare triple {52359#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {52247#true} is VALID [2022-04-27 15:18:43,990 INFO L290 TraceCheckUtils]: 1: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,990 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {52247#true} {52247#true} #1174#return; {52247#true} is VALID [2022-04-27 15:18:43,990 INFO L290 TraceCheckUtils]: 0: Hoare triple {52359#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {52247#true} is VALID [2022-04-27 15:18:43,990 INFO L272 TraceCheckUtils]: 1: Hoare triple {52247#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {52359#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:43,991 INFO L290 TraceCheckUtils]: 2: Hoare triple {52359#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {52247#true} is VALID [2022-04-27 15:18:43,991 INFO L290 TraceCheckUtils]: 3: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,991 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {52247#true} {52247#true} #1174#return; {52247#true} is VALID [2022-04-27 15:18:43,991 INFO L290 TraceCheckUtils]: 5: Hoare triple {52247#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {52247#true} is VALID [2022-04-27 15:18:43,991 INFO L290 TraceCheckUtils]: 6: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:43,991 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {52247#true} {52247#true} #1210#return; {52247#true} is VALID [2022-04-27 15:18:43,999 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:18:44,000 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:44,013 INFO L290 TraceCheckUtils]: 0: Hoare triple {52363#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {52364#(= ~MPR1~0 ~s~0)} is VALID [2022-04-27 15:18:44,013 INFO L290 TraceCheckUtils]: 1: Hoare triple {52364#(= ~MPR1~0 ~s~0)} assume true; {52364#(= ~MPR1~0 ~s~0)} is VALID [2022-04-27 15:18:44,014 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {52364#(= ~MPR1~0 ~s~0)} {52247#true} #1212#return; {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} is VALID [2022-04-27 15:18:44,014 INFO L290 TraceCheckUtils]: 0: Hoare triple {52345#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {52247#true} is VALID [2022-04-27 15:18:44,014 INFO L290 TraceCheckUtils]: 1: Hoare triple {52247#true} assume 0 != ~compRegistered~0; {52247#true} is VALID [2022-04-27 15:18:44,014 INFO L272 TraceCheckUtils]: 2: Hoare triple {52247#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {52359#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:44,015 INFO L290 TraceCheckUtils]: 3: Hoare triple {52359#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {52247#true} is VALID [2022-04-27 15:18:44,015 INFO L272 TraceCheckUtils]: 4: Hoare triple {52247#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {52359#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:44,015 INFO L290 TraceCheckUtils]: 5: Hoare triple {52359#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {52247#true} is VALID [2022-04-27 15:18:44,015 INFO L290 TraceCheckUtils]: 6: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:44,015 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {52247#true} {52247#true} #1174#return; {52247#true} is VALID [2022-04-27 15:18:44,015 INFO L290 TraceCheckUtils]: 8: Hoare triple {52247#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {52247#true} is VALID [2022-04-27 15:18:44,015 INFO L290 TraceCheckUtils]: 9: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:44,015 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {52247#true} {52247#true} #1210#return; {52247#true} is VALID [2022-04-27 15:18:44,016 INFO L290 TraceCheckUtils]: 11: Hoare triple {52247#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {52247#true} is VALID [2022-04-27 15:18:44,016 INFO L290 TraceCheckUtils]: 12: Hoare triple {52247#true} assume -1073741802 == ~compRetStatus~0; {52247#true} is VALID [2022-04-27 15:18:44,016 INFO L272 TraceCheckUtils]: 13: Hoare triple {52247#true} call stubMoreProcessingRequired(); {52363#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:18:44,016 INFO L290 TraceCheckUtils]: 14: Hoare triple {52363#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {52364#(= ~MPR1~0 ~s~0)} is VALID [2022-04-27 15:18:44,016 INFO L290 TraceCheckUtils]: 15: Hoare triple {52364#(= ~MPR1~0 ~s~0)} assume true; {52364#(= ~MPR1~0 ~s~0)} is VALID [2022-04-27 15:18:44,017 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {52364#(= ~MPR1~0 ~s~0)} {52247#true} #1212#return; {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} is VALID [2022-04-27 15:18:44,017 INFO L290 TraceCheckUtils]: 17: Hoare triple {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} assume 0 == ~__BLAST_NONDET~11; {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} is VALID [2022-04-27 15:18:44,017 INFO L290 TraceCheckUtils]: 18: Hoare triple {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} ~returnVal2~0 := 0; {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} is VALID [2022-04-27 15:18:44,018 INFO L290 TraceCheckUtils]: 19: Hoare triple {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {52358#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~NP~0))} is VALID [2022-04-27 15:18:44,018 INFO L290 TraceCheckUtils]: 20: Hoare triple {52358#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~NP~0))} #res := ~returnVal2~0; {52358#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~NP~0))} is VALID [2022-04-27 15:18:44,018 INFO L290 TraceCheckUtils]: 21: Hoare triple {52358#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~NP~0))} assume true; {52358#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~NP~0))} is VALID [2022-04-27 15:18:44,019 INFO L284 TraceCheckUtils]: 22: Hoare quadruple {52358#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~NP~0))} {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} #1192#return; {52248#false} is VALID [2022-04-27 15:18:44,020 INFO L272 TraceCheckUtils]: 0: Hoare triple {52247#true} call ULTIMATE.init(); {52321#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:18:44,020 INFO L290 TraceCheckUtils]: 1: Hoare triple {52321#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {52247#true} is VALID [2022-04-27 15:18:44,021 INFO L290 TraceCheckUtils]: 2: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:44,021 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {52247#true} {52247#true} #1270#return; {52247#true} is VALID [2022-04-27 15:18:44,021 INFO L272 TraceCheckUtils]: 4: Hoare triple {52247#true} call #t~ret213 := main(); {52247#true} is VALID [2022-04-27 15:18:44,021 INFO L290 TraceCheckUtils]: 5: Hoare triple {52247#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {52247#true} is VALID [2022-04-27 15:18:44,022 INFO L272 TraceCheckUtils]: 6: Hoare triple {52247#true} call _BLAST_init(); {52322#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:44,022 INFO L290 TraceCheckUtils]: 7: Hoare triple {52322#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,023 INFO L290 TraceCheckUtils]: 8: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume true; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,023 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} {52247#true} #1216#return; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,024 INFO L272 TraceCheckUtils]: 10: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {52323#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:44,024 INFO L290 TraceCheckUtils]: 11: Hoare triple {52323#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {52247#true} is VALID [2022-04-27 15:18:44,024 INFO L272 TraceCheckUtils]: 12: Hoare triple {52247#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {52247#true} is VALID [2022-04-27 15:18:44,024 INFO L290 TraceCheckUtils]: 13: Hoare triple {52247#true} ~cond := #in~cond; {52247#true} is VALID [2022-04-27 15:18:44,024 INFO L290 TraceCheckUtils]: 14: Hoare triple {52247#true} assume !(0 == ~cond); {52247#true} is VALID [2022-04-27 15:18:44,024 INFO L290 TraceCheckUtils]: 15: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:44,024 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {52247#true} {52247#true} #1254#return; {52247#true} is VALID [2022-04-27 15:18:44,024 INFO L290 TraceCheckUtils]: 17: Hoare triple {52247#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {52247#true} is VALID [2022-04-27 15:18:44,024 INFO L290 TraceCheckUtils]: 18: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:44,025 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {52247#true} {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} #1218#return; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,025 INFO L290 TraceCheckUtils]: 20: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,026 INFO L290 TraceCheckUtils]: 21: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,026 INFO L290 TraceCheckUtils]: 22: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,027 INFO L272 TraceCheckUtils]: 23: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {52328#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:44,027 INFO L290 TraceCheckUtils]: 24: Hoare triple {52328#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {52247#true} is VALID [2022-04-27 15:18:44,028 INFO L272 TraceCheckUtils]: 25: Hoare triple {52247#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {52328#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:44,028 INFO L290 TraceCheckUtils]: 26: Hoare triple {52328#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {52247#true} is VALID [2022-04-27 15:18:44,028 INFO L290 TraceCheckUtils]: 27: Hoare triple {52247#true} assume 0 == ~__BLAST_NONDET~5; {52247#true} is VALID [2022-04-27 15:18:44,028 INFO L290 TraceCheckUtils]: 28: Hoare triple {52247#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {52247#true} is VALID [2022-04-27 15:18:44,028 INFO L290 TraceCheckUtils]: 29: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:44,028 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {52247#true} {52247#true} #1176#return; {52247#true} is VALID [2022-04-27 15:18:44,028 INFO L290 TraceCheckUtils]: 31: Hoare triple {52247#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {52247#true} is VALID [2022-04-27 15:18:44,029 INFO L290 TraceCheckUtils]: 32: Hoare triple {52247#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {52247#true} is VALID [2022-04-27 15:18:44,029 INFO L272 TraceCheckUtils]: 33: Hoare triple {52247#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {52323#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:44,029 INFO L290 TraceCheckUtils]: 34: Hoare triple {52323#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {52247#true} is VALID [2022-04-27 15:18:44,029 INFO L290 TraceCheckUtils]: 35: Hoare triple {52247#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {52247#true} is VALID [2022-04-27 15:18:44,029 INFO L290 TraceCheckUtils]: 36: Hoare triple {52247#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {52247#true} is VALID [2022-04-27 15:18:44,029 INFO L290 TraceCheckUtils]: 37: Hoare triple {52247#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {52247#true} is VALID [2022-04-27 15:18:44,029 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {52247#true} {52247#true} #1178#return; {52247#true} is VALID [2022-04-27 15:18:44,029 INFO L290 TraceCheckUtils]: 39: Hoare triple {52247#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {52247#true} is VALID [2022-04-27 15:18:44,030 INFO L272 TraceCheckUtils]: 40: Hoare triple {52247#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {52247#true} is VALID [2022-04-27 15:18:44,030 INFO L290 TraceCheckUtils]: 41: Hoare triple {52247#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {52247#true} is VALID [2022-04-27 15:18:44,030 INFO L290 TraceCheckUtils]: 42: Hoare triple {52247#true} assume 0 == ~__BLAST_NONDET~2; {52247#true} is VALID [2022-04-27 15:18:44,030 INFO L290 TraceCheckUtils]: 43: Hoare triple {52247#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {52247#true} is VALID [2022-04-27 15:18:44,030 INFO L290 TraceCheckUtils]: 44: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:44,030 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {52247#true} {52247#true} #1180#return; {52247#true} is VALID [2022-04-27 15:18:44,030 INFO L290 TraceCheckUtils]: 46: Hoare triple {52247#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {52247#true} is VALID [2022-04-27 15:18:44,030 INFO L290 TraceCheckUtils]: 47: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:44,031 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {52247#true} {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} #1220#return; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,031 INFO L290 TraceCheckUtils]: 49: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,032 INFO L272 TraceCheckUtils]: 50: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} call stub_driver_init(); {52344#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:44,032 INFO L290 TraceCheckUtils]: 51: Hoare triple {52344#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {52247#true} is VALID [2022-04-27 15:18:44,032 INFO L290 TraceCheckUtils]: 52: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:44,032 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {52247#true} {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} #1222#return; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,032 INFO L290 TraceCheckUtils]: 54: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume !!(~status~5 >= 0); {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,033 INFO L290 TraceCheckUtils]: 55: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume !(0 == ~__BLAST_NONDET~0); {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,033 INFO L290 TraceCheckUtils]: 56: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume !(1 == ~__BLAST_NONDET~0); {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,033 INFO L290 TraceCheckUtils]: 57: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume !(2 == ~__BLAST_NONDET~0); {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,034 INFO L290 TraceCheckUtils]: 58: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume 3 == ~__BLAST_NONDET~0; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,034 INFO L272 TraceCheckUtils]: 59: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,035 INFO L290 TraceCheckUtils]: 60: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,035 INFO L290 TraceCheckUtils]: 61: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume 0 == #t~mem81 % 256;havoc #t~mem81; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,035 INFO L290 TraceCheckUtils]: 62: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,036 INFO L272 TraceCheckUtils]: 63: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {52323#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:44,036 INFO L290 TraceCheckUtils]: 64: Hoare triple {52323#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {52247#true} is VALID [2022-04-27 15:18:44,036 INFO L290 TraceCheckUtils]: 65: Hoare triple {52247#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {52247#true} is VALID [2022-04-27 15:18:44,037 INFO L290 TraceCheckUtils]: 66: Hoare triple {52247#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {52247#true} is VALID [2022-04-27 15:18:44,037 INFO L290 TraceCheckUtils]: 67: Hoare triple {52247#true} assume #res.base == dest.base && #res.offset == dest.offset; {52247#true} is VALID [2022-04-27 15:18:44,037 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {52247#true} {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} #1186#return; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,038 INFO L290 TraceCheckUtils]: 69: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,038 INFO L290 TraceCheckUtils]: 70: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume !(~s~0 != ~NP~0); {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,038 INFO L290 TraceCheckUtils]: 71: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,039 INFO L290 TraceCheckUtils]: 72: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} is VALID [2022-04-27 15:18:44,040 INFO L272 TraceCheckUtils]: 73: Hoare triple {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {52345#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:44,040 INFO L290 TraceCheckUtils]: 74: Hoare triple {52345#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {52247#true} is VALID [2022-04-27 15:18:44,040 INFO L290 TraceCheckUtils]: 75: Hoare triple {52247#true} assume 0 != ~compRegistered~0; {52247#true} is VALID [2022-04-27 15:18:44,041 INFO L272 TraceCheckUtils]: 76: Hoare triple {52247#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {52359#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:44,041 INFO L290 TraceCheckUtils]: 77: Hoare triple {52359#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {52247#true} is VALID [2022-04-27 15:18:44,042 INFO L272 TraceCheckUtils]: 78: Hoare triple {52247#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {52359#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:44,042 INFO L290 TraceCheckUtils]: 79: Hoare triple {52359#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {52247#true} is VALID [2022-04-27 15:18:44,042 INFO L290 TraceCheckUtils]: 80: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:44,042 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {52247#true} {52247#true} #1174#return; {52247#true} is VALID [2022-04-27 15:18:44,042 INFO L290 TraceCheckUtils]: 82: Hoare triple {52247#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {52247#true} is VALID [2022-04-27 15:18:44,042 INFO L290 TraceCheckUtils]: 83: Hoare triple {52247#true} assume true; {52247#true} is VALID [2022-04-27 15:18:44,042 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {52247#true} {52247#true} #1210#return; {52247#true} is VALID [2022-04-27 15:18:44,042 INFO L290 TraceCheckUtils]: 85: Hoare triple {52247#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {52247#true} is VALID [2022-04-27 15:18:44,042 INFO L290 TraceCheckUtils]: 86: Hoare triple {52247#true} assume -1073741802 == ~compRetStatus~0; {52247#true} is VALID [2022-04-27 15:18:44,042 INFO L272 TraceCheckUtils]: 87: Hoare triple {52247#true} call stubMoreProcessingRequired(); {52363#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:18:44,043 INFO L290 TraceCheckUtils]: 88: Hoare triple {52363#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {52364#(= ~MPR1~0 ~s~0)} is VALID [2022-04-27 15:18:44,043 INFO L290 TraceCheckUtils]: 89: Hoare triple {52364#(= ~MPR1~0 ~s~0)} assume true; {52364#(= ~MPR1~0 ~s~0)} is VALID [2022-04-27 15:18:44,043 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {52364#(= ~MPR1~0 ~s~0)} {52247#true} #1212#return; {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} is VALID [2022-04-27 15:18:44,043 INFO L290 TraceCheckUtils]: 91: Hoare triple {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} assume 0 == ~__BLAST_NONDET~11; {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} is VALID [2022-04-27 15:18:44,044 INFO L290 TraceCheckUtils]: 92: Hoare triple {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} ~returnVal2~0 := 0; {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} is VALID [2022-04-27 15:18:44,044 INFO L290 TraceCheckUtils]: 93: Hoare triple {52357#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~s~0))} assume ~s~0 == ~NP~0;~s~0 := ~IPC~0;~lowerDriverReturn~0 := ~returnVal2~0; {52358#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~NP~0))} is VALID [2022-04-27 15:18:44,044 INFO L290 TraceCheckUtils]: 94: Hoare triple {52358#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~NP~0))} #res := ~returnVal2~0; {52358#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~NP~0))} is VALID [2022-04-27 15:18:44,045 INFO L290 TraceCheckUtils]: 95: Hoare triple {52358#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~NP~0))} assume true; {52358#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~NP~0))} is VALID [2022-04-27 15:18:44,045 INFO L284 TraceCheckUtils]: 96: Hoare quadruple {52358#(or (= (+ (- 1) ~MPR1~0) 0) (= ~MPR1~0 ~NP~0))} {52255#(and (<= 5 ~MPR1~0) (= ~NP~0 1))} #1192#return; {52248#false} is VALID [2022-04-27 15:18:44,045 INFO L290 TraceCheckUtils]: 97: Hoare triple {52248#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {52248#false} is VALID [2022-04-27 15:18:44,046 INFO L290 TraceCheckUtils]: 98: Hoare triple {52248#false} assume !(259 == ~status~3); {52248#false} is VALID [2022-04-27 15:18:44,046 INFO L290 TraceCheckUtils]: 99: Hoare triple {52248#false} assume ~status~3 >= 0; {52248#false} is VALID [2022-04-27 15:18:44,046 INFO L290 TraceCheckUtils]: 100: Hoare triple {52248#false} assume !(~myStatus~0 >= 0); {52248#false} is VALID [2022-04-27 15:18:44,046 INFO L290 TraceCheckUtils]: 101: Hoare triple {52248#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {52248#false} is VALID [2022-04-27 15:18:44,046 INFO L272 TraceCheckUtils]: 102: Hoare triple {52248#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {52248#false} is VALID [2022-04-27 15:18:44,046 INFO L290 TraceCheckUtils]: 103: Hoare triple {52248#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {52248#false} is VALID [2022-04-27 15:18:44,046 INFO L290 TraceCheckUtils]: 104: Hoare triple {52248#false} assume !(~s~0 == ~NP~0); {52248#false} is VALID [2022-04-27 15:18:44,046 INFO L272 TraceCheckUtils]: 105: Hoare triple {52248#false} call errorFn(); {52248#false} is VALID [2022-04-27 15:18:44,046 INFO L290 TraceCheckUtils]: 106: Hoare triple {52248#false} assume !false; {52248#false} is VALID [2022-04-27 15:18:44,046 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:18:44,046 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:18:44,047 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1751093588] [2022-04-27 15:18:44,047 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1751093588] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:18:44,047 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:18:44,047 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [14] imperfect sequences [] total 14 [2022-04-27 15:18:44,047 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [202109928] [2022-04-27 15:18:44,047 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:18:44,047 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 5.357142857142857) internal successors, (75), 6 states have internal predecessors, (75), 3 states have call successors, (18), 11 states have call predecessors, (18), 4 states have return successors, (14), 4 states have call predecessors, (14), 2 states have call successors, (14) Word has length 107 [2022-04-27 15:18:44,047 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:18:44,047 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 14 states, 14 states have (on average 5.357142857142857) internal successors, (75), 6 states have internal predecessors, (75), 3 states have call successors, (18), 11 states have call predecessors, (18), 4 states have return successors, (14), 4 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:18:44,144 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 107 edges. 107 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:18:44,144 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-04-27 15:18:44,144 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:18:44,145 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-04-27 15:18:44,145 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=41, Invalid=141, Unknown=0, NotChecked=0, Total=182 [2022-04-27 15:18:44,145 INFO L87 Difference]: Start difference. First operand 325 states and 381 transitions. Second operand has 14 states, 14 states have (on average 5.357142857142857) internal successors, (75), 6 states have internal predecessors, (75), 3 states have call successors, (18), 11 states have call predecessors, (18), 4 states have return successors, (14), 4 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:18:46,332 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:18:51,228 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:51,228 INFO L93 Difference]: Finished difference Result 459 states and 550 transitions. [2022-04-27 15:18:51,228 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 16 states. [2022-04-27 15:18:51,228 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 5.357142857142857) internal successors, (75), 6 states have internal predecessors, (75), 3 states have call successors, (18), 11 states have call predecessors, (18), 4 states have return successors, (14), 4 states have call predecessors, (14), 2 states have call successors, (14) Word has length 107 [2022-04-27 15:18:51,228 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:18:51,228 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 5.357142857142857) internal successors, (75), 6 states have internal predecessors, (75), 3 states have call successors, (18), 11 states have call predecessors, (18), 4 states have return successors, (14), 4 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:18:51,230 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 16 states to 16 states and 244 transitions. [2022-04-27 15:18:51,230 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 5.357142857142857) internal successors, (75), 6 states have internal predecessors, (75), 3 states have call successors, (18), 11 states have call predecessors, (18), 4 states have return successors, (14), 4 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:18:51,231 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 16 states to 16 states and 244 transitions. [2022-04-27 15:18:51,231 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 16 states and 244 transitions. [2022-04-27 15:18:51,486 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 244 edges. 244 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:18:51,492 INFO L225 Difference]: With dead ends: 459 [2022-04-27 15:18:51,492 INFO L226 Difference]: Without dead ends: 363 [2022-04-27 15:18:51,492 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 50 GetRequests, 24 SyntacticMatches, 1 SemanticMatches, 25 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 101 ImplicationChecksByTransitivity, 0.5s TimeCoverageRelationStatistics Valid=164, Invalid=538, Unknown=0, NotChecked=0, Total=702 [2022-04-27 15:18:51,493 INFO L413 NwaCegarLoop]: 130 mSDtfsCounter, 386 mSDsluCounter, 223 mSDsCounter, 0 mSdLazyCounter, 631 mSolverCounterSat, 184 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 389 SdHoareTripleChecker+Valid, 353 SdHoareTripleChecker+Invalid, 816 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 184 IncrementalHoareTripleChecker+Valid, 631 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.6s IncrementalHoareTripleChecker+Time [2022-04-27 15:18:51,493 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [389 Valid, 353 Invalid, 816 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [184 Valid, 631 Invalid, 1 Unknown, 0 Unchecked, 3.6s Time] [2022-04-27 15:18:51,494 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 363 states. [2022-04-27 15:18:51,712 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 363 to 313. [2022-04-27 15:18:51,712 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:18:51,712 INFO L82 GeneralOperation]: Start isEquivalent. First operand 363 states. Second operand has 313 states, 240 states have (on average 1.2125) internal successors, (291), 244 states have internal predecessors, (291), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:18:51,713 INFO L74 IsIncluded]: Start isIncluded. First operand 363 states. Second operand has 313 states, 240 states have (on average 1.2125) internal successors, (291), 244 states have internal predecessors, (291), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:18:51,713 INFO L87 Difference]: Start difference. First operand 363 states. Second operand has 313 states, 240 states have (on average 1.2125) internal successors, (291), 244 states have internal predecessors, (291), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:18:51,717 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:51,717 INFO L93 Difference]: Finished difference Result 363 states and 427 transitions. [2022-04-27 15:18:51,717 INFO L276 IsEmpty]: Start isEmpty. Operand 363 states and 427 transitions. [2022-04-27 15:18:51,718 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:18:51,718 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:18:51,718 INFO L74 IsIncluded]: Start isIncluded. First operand has 313 states, 240 states have (on average 1.2125) internal successors, (291), 244 states have internal predecessors, (291), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) Second operand 363 states. [2022-04-27 15:18:51,718 INFO L87 Difference]: Start difference. First operand has 313 states, 240 states have (on average 1.2125) internal successors, (291), 244 states have internal predecessors, (291), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) Second operand 363 states. [2022-04-27 15:18:51,735 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:51,735 INFO L93 Difference]: Finished difference Result 363 states and 427 transitions. [2022-04-27 15:18:51,735 INFO L276 IsEmpty]: Start isEmpty. Operand 363 states and 427 transitions. [2022-04-27 15:18:51,736 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:18:51,736 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:18:51,736 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:18:51,736 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:18:51,736 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 313 states, 240 states have (on average 1.2125) internal successors, (291), 244 states have internal predecessors, (291), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:18:51,740 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 313 states to 313 states and 365 transitions. [2022-04-27 15:18:51,740 INFO L78 Accepts]: Start accepts. Automaton has 313 states and 365 transitions. Word has length 107 [2022-04-27 15:18:51,741 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:18:51,741 INFO L495 AbstractCegarLoop]: Abstraction has 313 states and 365 transitions. [2022-04-27 15:18:51,741 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 14 states have (on average 5.357142857142857) internal successors, (75), 6 states have internal predecessors, (75), 3 states have call successors, (18), 11 states have call predecessors, (18), 4 states have return successors, (14), 4 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:18:51,741 INFO L276 IsEmpty]: Start isEmpty. Operand 313 states and 365 transitions. [2022-04-27 15:18:51,741 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 110 [2022-04-27 15:18:51,742 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:18:51,742 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:18:51,742 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable27 [2022-04-27 15:18:51,742 INFO L420 AbstractCegarLoop]: === Iteration 29 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:18:51,742 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:18:51,742 INFO L85 PathProgramCache]: Analyzing trace with hash -1477106018, now seen corresponding path program 1 times [2022-04-27 15:18:51,742 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:18:51,742 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [301167918] [2022-04-27 15:18:51,742 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:18:51,743 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:18:51,819 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:51,888 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:18:51,890 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:51,895 INFO L290 TraceCheckUtils]: 0: Hoare triple {54255#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {54178#true} is VALID [2022-04-27 15:18:51,895 INFO L290 TraceCheckUtils]: 1: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:51,895 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {54178#true} {54178#true} #1270#return; {54178#true} is VALID [2022-04-27 15:18:51,921 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:18:51,922 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:51,926 INFO L290 TraceCheckUtils]: 0: Hoare triple {54256#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {54178#true} is VALID [2022-04-27 15:18:51,927 INFO L290 TraceCheckUtils]: 1: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:51,927 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {54178#true} {54178#true} #1216#return; {54178#true} is VALID [2022-04-27 15:18:51,934 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:18:51,941 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:51,947 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:51,948 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:51,952 INFO L290 TraceCheckUtils]: 0: Hoare triple {54178#true} ~cond := #in~cond; {54178#true} is VALID [2022-04-27 15:18:51,952 INFO L290 TraceCheckUtils]: 1: Hoare triple {54178#true} assume !(0 == ~cond); {54178#true} is VALID [2022-04-27 15:18:51,952 INFO L290 TraceCheckUtils]: 2: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:51,952 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {54178#true} {54178#true} #1254#return; {54178#true} is VALID [2022-04-27 15:18:51,952 INFO L290 TraceCheckUtils]: 0: Hoare triple {54257#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {54178#true} is VALID [2022-04-27 15:18:51,952 INFO L272 TraceCheckUtils]: 1: Hoare triple {54178#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {54178#true} is VALID [2022-04-27 15:18:51,952 INFO L290 TraceCheckUtils]: 2: Hoare triple {54178#true} ~cond := #in~cond; {54178#true} is VALID [2022-04-27 15:18:51,952 INFO L290 TraceCheckUtils]: 3: Hoare triple {54178#true} assume !(0 == ~cond); {54178#true} is VALID [2022-04-27 15:18:51,952 INFO L290 TraceCheckUtils]: 4: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:51,953 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {54178#true} {54178#true} #1254#return; {54178#true} is VALID [2022-04-27 15:18:51,953 INFO L290 TraceCheckUtils]: 6: Hoare triple {54178#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {54178#true} is VALID [2022-04-27 15:18:51,953 INFO L290 TraceCheckUtils]: 7: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:51,953 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {54178#true} {54178#true} #1218#return; {54178#true} is VALID [2022-04-27 15:18:51,962 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:18:51,974 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:51,983 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:51,986 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:51,991 INFO L290 TraceCheckUtils]: 0: Hoare triple {54262#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {54178#true} is VALID [2022-04-27 15:18:51,992 INFO L290 TraceCheckUtils]: 1: Hoare triple {54178#true} assume 0 == ~__BLAST_NONDET~5; {54178#true} is VALID [2022-04-27 15:18:51,992 INFO L290 TraceCheckUtils]: 2: Hoare triple {54178#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {54178#true} is VALID [2022-04-27 15:18:51,992 INFO L290 TraceCheckUtils]: 3: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:51,992 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {54178#true} {54178#true} #1176#return; {54178#true} is VALID [2022-04-27 15:18:51,992 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:18:51,994 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:51,999 INFO L290 TraceCheckUtils]: 0: Hoare triple {54257#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {54178#true} is VALID [2022-04-27 15:18:51,999 INFO L290 TraceCheckUtils]: 1: Hoare triple {54178#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {54178#true} is VALID [2022-04-27 15:18:51,999 INFO L290 TraceCheckUtils]: 2: Hoare triple {54178#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {54178#true} is VALID [2022-04-27 15:18:51,999 INFO L290 TraceCheckUtils]: 3: Hoare triple {54178#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {54178#true} is VALID [2022-04-27 15:18:51,999 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {54178#true} {54178#true} #1178#return; {54178#true} is VALID [2022-04-27 15:18:51,999 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:18:52,001 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:52,005 INFO L290 TraceCheckUtils]: 0: Hoare triple {54178#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {54178#true} is VALID [2022-04-27 15:18:52,005 INFO L290 TraceCheckUtils]: 1: Hoare triple {54178#true} assume 0 == ~__BLAST_NONDET~2; {54178#true} is VALID [2022-04-27 15:18:52,006 INFO L290 TraceCheckUtils]: 2: Hoare triple {54178#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {54178#true} is VALID [2022-04-27 15:18:52,006 INFO L290 TraceCheckUtils]: 3: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,006 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {54178#true} {54178#true} #1180#return; {54178#true} is VALID [2022-04-27 15:18:52,006 INFO L290 TraceCheckUtils]: 0: Hoare triple {54262#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {54178#true} is VALID [2022-04-27 15:18:52,007 INFO L272 TraceCheckUtils]: 1: Hoare triple {54178#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {54262#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:52,007 INFO L290 TraceCheckUtils]: 2: Hoare triple {54262#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {54178#true} is VALID [2022-04-27 15:18:52,007 INFO L290 TraceCheckUtils]: 3: Hoare triple {54178#true} assume 0 == ~__BLAST_NONDET~5; {54178#true} is VALID [2022-04-27 15:18:52,007 INFO L290 TraceCheckUtils]: 4: Hoare triple {54178#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {54178#true} is VALID [2022-04-27 15:18:52,007 INFO L290 TraceCheckUtils]: 5: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,007 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {54178#true} {54178#true} #1176#return; {54178#true} is VALID [2022-04-27 15:18:52,007 INFO L290 TraceCheckUtils]: 7: Hoare triple {54178#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {54178#true} is VALID [2022-04-27 15:18:52,007 INFO L290 TraceCheckUtils]: 8: Hoare triple {54178#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {54178#true} is VALID [2022-04-27 15:18:52,008 INFO L272 TraceCheckUtils]: 9: Hoare triple {54178#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {54257#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:52,008 INFO L290 TraceCheckUtils]: 10: Hoare triple {54257#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {54178#true} is VALID [2022-04-27 15:18:52,008 INFO L290 TraceCheckUtils]: 11: Hoare triple {54178#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {54178#true} is VALID [2022-04-27 15:18:52,008 INFO L290 TraceCheckUtils]: 12: Hoare triple {54178#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {54178#true} is VALID [2022-04-27 15:18:52,008 INFO L290 TraceCheckUtils]: 13: Hoare triple {54178#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {54178#true} is VALID [2022-04-27 15:18:52,008 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {54178#true} {54178#true} #1178#return; {54178#true} is VALID [2022-04-27 15:18:52,008 INFO L290 TraceCheckUtils]: 15: Hoare triple {54178#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {54178#true} is VALID [2022-04-27 15:18:52,008 INFO L272 TraceCheckUtils]: 16: Hoare triple {54178#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {54178#true} is VALID [2022-04-27 15:18:52,008 INFO L290 TraceCheckUtils]: 17: Hoare triple {54178#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {54178#true} is VALID [2022-04-27 15:18:52,009 INFO L290 TraceCheckUtils]: 18: Hoare triple {54178#true} assume 0 == ~__BLAST_NONDET~2; {54178#true} is VALID [2022-04-27 15:18:52,009 INFO L290 TraceCheckUtils]: 19: Hoare triple {54178#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {54178#true} is VALID [2022-04-27 15:18:52,009 INFO L290 TraceCheckUtils]: 20: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,009 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {54178#true} {54178#true} #1180#return; {54178#true} is VALID [2022-04-27 15:18:52,009 INFO L290 TraceCheckUtils]: 22: Hoare triple {54178#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {54178#true} is VALID [2022-04-27 15:18:52,009 INFO L290 TraceCheckUtils]: 23: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,009 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {54178#true} {54178#true} #1220#return; {54178#true} is VALID [2022-04-27 15:18:52,022 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:18:52,023 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:52,028 INFO L290 TraceCheckUtils]: 0: Hoare triple {54278#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {54178#true} is VALID [2022-04-27 15:18:52,028 INFO L290 TraceCheckUtils]: 1: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,028 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {54178#true} {54178#true} #1222#return; {54178#true} is VALID [2022-04-27 15:18:52,028 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 63 [2022-04-27 15:18:52,029 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:52,034 INFO L290 TraceCheckUtils]: 0: Hoare triple {54257#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {54178#true} is VALID [2022-04-27 15:18:52,034 INFO L290 TraceCheckUtils]: 1: Hoare triple {54178#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {54178#true} is VALID [2022-04-27 15:18:52,034 INFO L290 TraceCheckUtils]: 2: Hoare triple {54178#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {54178#true} is VALID [2022-04-27 15:18:52,034 INFO L290 TraceCheckUtils]: 3: Hoare triple {54178#true} assume #res.base == dest.base && #res.offset == dest.offset; {54178#true} is VALID [2022-04-27 15:18:52,034 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {54178#true} {54178#true} #1186#return; {54178#true} is VALID [2022-04-27 15:18:52,043 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 73 [2022-04-27 15:18:52,046 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:52,058 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:18:52,060 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:52,065 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:52,066 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:52,070 INFO L290 TraceCheckUtils]: 0: Hoare triple {54291#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {54178#true} is VALID [2022-04-27 15:18:52,071 INFO L290 TraceCheckUtils]: 1: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,071 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {54178#true} {54178#true} #1174#return; {54178#true} is VALID [2022-04-27 15:18:52,071 INFO L290 TraceCheckUtils]: 0: Hoare triple {54291#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {54178#true} is VALID [2022-04-27 15:18:52,071 INFO L272 TraceCheckUtils]: 1: Hoare triple {54178#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {54291#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:52,072 INFO L290 TraceCheckUtils]: 2: Hoare triple {54291#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {54178#true} is VALID [2022-04-27 15:18:52,072 INFO L290 TraceCheckUtils]: 3: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,072 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {54178#true} {54178#true} #1174#return; {54178#true} is VALID [2022-04-27 15:18:52,072 INFO L290 TraceCheckUtils]: 5: Hoare triple {54178#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {54178#true} is VALID [2022-04-27 15:18:52,072 INFO L290 TraceCheckUtils]: 6: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,072 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {54178#true} {54178#true} #1210#return; {54178#true} is VALID [2022-04-27 15:18:52,079 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:18:52,080 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:52,084 INFO L290 TraceCheckUtils]: 0: Hoare triple {54295#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {54178#true} is VALID [2022-04-27 15:18:52,084 INFO L290 TraceCheckUtils]: 1: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,084 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {54178#true} {54178#true} #1212#return; {54178#true} is VALID [2022-04-27 15:18:52,084 INFO L290 TraceCheckUtils]: 0: Hoare triple {54279#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {54178#true} is VALID [2022-04-27 15:18:52,084 INFO L290 TraceCheckUtils]: 1: Hoare triple {54178#true} assume 0 != ~compRegistered~0; {54178#true} is VALID [2022-04-27 15:18:52,085 INFO L272 TraceCheckUtils]: 2: Hoare triple {54178#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {54291#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:52,085 INFO L290 TraceCheckUtils]: 3: Hoare triple {54291#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {54178#true} is VALID [2022-04-27 15:18:52,086 INFO L272 TraceCheckUtils]: 4: Hoare triple {54178#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {54291#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:52,086 INFO L290 TraceCheckUtils]: 5: Hoare triple {54291#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {54178#true} is VALID [2022-04-27 15:18:52,086 INFO L290 TraceCheckUtils]: 6: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,086 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {54178#true} {54178#true} #1174#return; {54178#true} is VALID [2022-04-27 15:18:52,086 INFO L290 TraceCheckUtils]: 8: Hoare triple {54178#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {54178#true} is VALID [2022-04-27 15:18:52,086 INFO L290 TraceCheckUtils]: 9: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,086 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {54178#true} {54178#true} #1210#return; {54178#true} is VALID [2022-04-27 15:18:52,086 INFO L290 TraceCheckUtils]: 11: Hoare triple {54178#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {54178#true} is VALID [2022-04-27 15:18:52,086 INFO L290 TraceCheckUtils]: 12: Hoare triple {54178#true} assume -1073741802 == ~compRetStatus~0; {54178#true} is VALID [2022-04-27 15:18:52,086 INFO L272 TraceCheckUtils]: 13: Hoare triple {54178#true} call stubMoreProcessingRequired(); {54295#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:18:52,086 INFO L290 TraceCheckUtils]: 14: Hoare triple {54295#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {54178#true} is VALID [2022-04-27 15:18:52,087 INFO L290 TraceCheckUtils]: 15: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,087 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {54178#true} {54178#true} #1212#return; {54178#true} is VALID [2022-04-27 15:18:52,087 INFO L290 TraceCheckUtils]: 17: Hoare triple {54178#true} assume !(0 == ~__BLAST_NONDET~11); {54178#true} is VALID [2022-04-27 15:18:52,087 INFO L290 TraceCheckUtils]: 18: Hoare triple {54178#true} assume 1 == ~__BLAST_NONDET~11; {54178#true} is VALID [2022-04-27 15:18:52,087 INFO L290 TraceCheckUtils]: 19: Hoare triple {54178#true} ~returnVal2~0 := -1073741823; {54178#true} is VALID [2022-04-27 15:18:52,087 INFO L290 TraceCheckUtils]: 20: Hoare triple {54178#true} assume !(~s~0 == ~NP~0); {54178#true} is VALID [2022-04-27 15:18:52,087 INFO L290 TraceCheckUtils]: 21: Hoare triple {54178#true} assume ~s~0 == ~MPR1~0; {54178#true} is VALID [2022-04-27 15:18:52,087 INFO L290 TraceCheckUtils]: 22: Hoare triple {54178#true} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {54178#true} is VALID [2022-04-27 15:18:52,087 INFO L290 TraceCheckUtils]: 23: Hoare triple {54178#true} #res := ~returnVal2~0; {54178#true} is VALID [2022-04-27 15:18:52,087 INFO L290 TraceCheckUtils]: 24: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,087 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {54178#true} {54178#true} #1192#return; {54178#true} is VALID [2022-04-27 15:18:52,088 INFO L272 TraceCheckUtils]: 0: Hoare triple {54178#true} call ULTIMATE.init(); {54255#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:18:52,089 INFO L290 TraceCheckUtils]: 1: Hoare triple {54255#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {54178#true} is VALID [2022-04-27 15:18:52,089 INFO L290 TraceCheckUtils]: 2: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,089 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {54178#true} {54178#true} #1270#return; {54178#true} is VALID [2022-04-27 15:18:52,089 INFO L272 TraceCheckUtils]: 4: Hoare triple {54178#true} call #t~ret213 := main(); {54178#true} is VALID [2022-04-27 15:18:52,089 INFO L290 TraceCheckUtils]: 5: Hoare triple {54178#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {54178#true} is VALID [2022-04-27 15:18:52,090 INFO L272 TraceCheckUtils]: 6: Hoare triple {54178#true} call _BLAST_init(); {54256#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:52,090 INFO L290 TraceCheckUtils]: 7: Hoare triple {54256#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {54178#true} is VALID [2022-04-27 15:18:52,090 INFO L290 TraceCheckUtils]: 8: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,090 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {54178#true} {54178#true} #1216#return; {54178#true} is VALID [2022-04-27 15:18:52,091 INFO L272 TraceCheckUtils]: 10: Hoare triple {54178#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {54257#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:52,091 INFO L290 TraceCheckUtils]: 11: Hoare triple {54257#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {54178#true} is VALID [2022-04-27 15:18:52,091 INFO L272 TraceCheckUtils]: 12: Hoare triple {54178#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {54178#true} is VALID [2022-04-27 15:18:52,091 INFO L290 TraceCheckUtils]: 13: Hoare triple {54178#true} ~cond := #in~cond; {54178#true} is VALID [2022-04-27 15:18:52,091 INFO L290 TraceCheckUtils]: 14: Hoare triple {54178#true} assume !(0 == ~cond); {54178#true} is VALID [2022-04-27 15:18:52,091 INFO L290 TraceCheckUtils]: 15: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,091 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {54178#true} {54178#true} #1254#return; {54178#true} is VALID [2022-04-27 15:18:52,091 INFO L290 TraceCheckUtils]: 17: Hoare triple {54178#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {54178#true} is VALID [2022-04-27 15:18:52,091 INFO L290 TraceCheckUtils]: 18: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,091 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {54178#true} {54178#true} #1218#return; {54178#true} is VALID [2022-04-27 15:18:52,091 INFO L290 TraceCheckUtils]: 20: Hoare triple {54178#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {54178#true} is VALID [2022-04-27 15:18:52,091 INFO L290 TraceCheckUtils]: 21: Hoare triple {54178#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {54178#true} is VALID [2022-04-27 15:18:52,091 INFO L290 TraceCheckUtils]: 22: Hoare triple {54178#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {54178#true} is VALID [2022-04-27 15:18:52,092 INFO L272 TraceCheckUtils]: 23: Hoare triple {54178#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {54262#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:52,092 INFO L290 TraceCheckUtils]: 24: Hoare triple {54262#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {54178#true} is VALID [2022-04-27 15:18:52,093 INFO L272 TraceCheckUtils]: 25: Hoare triple {54178#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {54262#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:52,093 INFO L290 TraceCheckUtils]: 26: Hoare triple {54262#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {54178#true} is VALID [2022-04-27 15:18:52,093 INFO L290 TraceCheckUtils]: 27: Hoare triple {54178#true} assume 0 == ~__BLAST_NONDET~5; {54178#true} is VALID [2022-04-27 15:18:52,093 INFO L290 TraceCheckUtils]: 28: Hoare triple {54178#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {54178#true} is VALID [2022-04-27 15:18:52,094 INFO L290 TraceCheckUtils]: 29: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,094 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {54178#true} {54178#true} #1176#return; {54178#true} is VALID [2022-04-27 15:18:52,094 INFO L290 TraceCheckUtils]: 31: Hoare triple {54178#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {54178#true} is VALID [2022-04-27 15:18:52,094 INFO L290 TraceCheckUtils]: 32: Hoare triple {54178#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {54178#true} is VALID [2022-04-27 15:18:52,094 INFO L272 TraceCheckUtils]: 33: Hoare triple {54178#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {54257#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:52,094 INFO L290 TraceCheckUtils]: 34: Hoare triple {54257#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {54178#true} is VALID [2022-04-27 15:18:52,094 INFO L290 TraceCheckUtils]: 35: Hoare triple {54178#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L290 TraceCheckUtils]: 36: Hoare triple {54178#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L290 TraceCheckUtils]: 37: Hoare triple {54178#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {54178#true} {54178#true} #1178#return; {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L290 TraceCheckUtils]: 39: Hoare triple {54178#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L272 TraceCheckUtils]: 40: Hoare triple {54178#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L290 TraceCheckUtils]: 41: Hoare triple {54178#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L290 TraceCheckUtils]: 42: Hoare triple {54178#true} assume 0 == ~__BLAST_NONDET~2; {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L290 TraceCheckUtils]: 43: Hoare triple {54178#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L290 TraceCheckUtils]: 44: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {54178#true} {54178#true} #1180#return; {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L290 TraceCheckUtils]: 46: Hoare triple {54178#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L290 TraceCheckUtils]: 47: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {54178#true} {54178#true} #1220#return; {54178#true} is VALID [2022-04-27 15:18:52,095 INFO L290 TraceCheckUtils]: 49: Hoare triple {54178#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {54178#true} is VALID [2022-04-27 15:18:52,096 INFO L272 TraceCheckUtils]: 50: Hoare triple {54178#true} call stub_driver_init(); {54278#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:52,096 INFO L290 TraceCheckUtils]: 51: Hoare triple {54278#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {54178#true} is VALID [2022-04-27 15:18:52,096 INFO L290 TraceCheckUtils]: 52: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,096 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {54178#true} {54178#true} #1222#return; {54178#true} is VALID [2022-04-27 15:18:52,096 INFO L290 TraceCheckUtils]: 54: Hoare triple {54178#true} assume !!(~status~5 >= 0); {54178#true} is VALID [2022-04-27 15:18:52,096 INFO L290 TraceCheckUtils]: 55: Hoare triple {54178#true} assume !(0 == ~__BLAST_NONDET~0); {54178#true} is VALID [2022-04-27 15:18:52,096 INFO L290 TraceCheckUtils]: 56: Hoare triple {54178#true} assume !(1 == ~__BLAST_NONDET~0); {54178#true} is VALID [2022-04-27 15:18:52,096 INFO L290 TraceCheckUtils]: 57: Hoare triple {54178#true} assume !(2 == ~__BLAST_NONDET~0); {54178#true} is VALID [2022-04-27 15:18:52,096 INFO L290 TraceCheckUtils]: 58: Hoare triple {54178#true} assume 3 == ~__BLAST_NONDET~0; {54178#true} is VALID [2022-04-27 15:18:52,096 INFO L272 TraceCheckUtils]: 59: Hoare triple {54178#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {54178#true} is VALID [2022-04-27 15:18:52,096 INFO L290 TraceCheckUtils]: 60: Hoare triple {54178#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {54178#true} is VALID [2022-04-27 15:18:52,097 INFO L290 TraceCheckUtils]: 61: Hoare triple {54178#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {54178#true} is VALID [2022-04-27 15:18:52,097 INFO L290 TraceCheckUtils]: 62: Hoare triple {54178#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {54178#true} is VALID [2022-04-27 15:18:52,097 INFO L272 TraceCheckUtils]: 63: Hoare triple {54178#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {54257#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:52,097 INFO L290 TraceCheckUtils]: 64: Hoare triple {54257#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {54178#true} is VALID [2022-04-27 15:18:52,097 INFO L290 TraceCheckUtils]: 65: Hoare triple {54178#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {54178#true} is VALID [2022-04-27 15:18:52,098 INFO L290 TraceCheckUtils]: 66: Hoare triple {54178#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {54178#true} is VALID [2022-04-27 15:18:52,098 INFO L290 TraceCheckUtils]: 67: Hoare triple {54178#true} assume #res.base == dest.base && #res.offset == dest.offset; {54178#true} is VALID [2022-04-27 15:18:52,098 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {54178#true} {54178#true} #1186#return; {54178#true} is VALID [2022-04-27 15:18:52,098 INFO L290 TraceCheckUtils]: 69: Hoare triple {54178#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {54178#true} is VALID [2022-04-27 15:18:52,098 INFO L290 TraceCheckUtils]: 70: Hoare triple {54178#true} assume !(~s~0 != ~NP~0); {54178#true} is VALID [2022-04-27 15:18:52,098 INFO L290 TraceCheckUtils]: 71: Hoare triple {54178#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {54178#true} is VALID [2022-04-27 15:18:52,098 INFO L290 TraceCheckUtils]: 72: Hoare triple {54178#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {54178#true} is VALID [2022-04-27 15:18:52,099 INFO L272 TraceCheckUtils]: 73: Hoare triple {54178#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {54279#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:52,099 INFO L290 TraceCheckUtils]: 74: Hoare triple {54279#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {54178#true} is VALID [2022-04-27 15:18:52,099 INFO L290 TraceCheckUtils]: 75: Hoare triple {54178#true} assume 0 != ~compRegistered~0; {54178#true} is VALID [2022-04-27 15:18:52,100 INFO L272 TraceCheckUtils]: 76: Hoare triple {54178#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {54291#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:52,100 INFO L290 TraceCheckUtils]: 77: Hoare triple {54291#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {54178#true} is VALID [2022-04-27 15:18:52,100 INFO L272 TraceCheckUtils]: 78: Hoare triple {54178#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {54291#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:52,100 INFO L290 TraceCheckUtils]: 79: Hoare triple {54291#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {54178#true} is VALID [2022-04-27 15:18:52,100 INFO L290 TraceCheckUtils]: 80: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,100 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {54178#true} {54178#true} #1174#return; {54178#true} is VALID [2022-04-27 15:18:52,100 INFO L290 TraceCheckUtils]: 82: Hoare triple {54178#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L290 TraceCheckUtils]: 83: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {54178#true} {54178#true} #1210#return; {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L290 TraceCheckUtils]: 85: Hoare triple {54178#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L290 TraceCheckUtils]: 86: Hoare triple {54178#true} assume -1073741802 == ~compRetStatus~0; {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L272 TraceCheckUtils]: 87: Hoare triple {54178#true} call stubMoreProcessingRequired(); {54295#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:18:52,101 INFO L290 TraceCheckUtils]: 88: Hoare triple {54295#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L290 TraceCheckUtils]: 89: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {54178#true} {54178#true} #1212#return; {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L290 TraceCheckUtils]: 91: Hoare triple {54178#true} assume !(0 == ~__BLAST_NONDET~11); {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L290 TraceCheckUtils]: 92: Hoare triple {54178#true} assume 1 == ~__BLAST_NONDET~11; {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L290 TraceCheckUtils]: 93: Hoare triple {54178#true} ~returnVal2~0 := -1073741823; {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L290 TraceCheckUtils]: 94: Hoare triple {54178#true} assume !(~s~0 == ~NP~0); {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L290 TraceCheckUtils]: 95: Hoare triple {54178#true} assume ~s~0 == ~MPR1~0; {54178#true} is VALID [2022-04-27 15:18:52,101 INFO L290 TraceCheckUtils]: 96: Hoare triple {54178#true} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {54178#true} is VALID [2022-04-27 15:18:52,102 INFO L290 TraceCheckUtils]: 97: Hoare triple {54178#true} #res := ~returnVal2~0; {54178#true} is VALID [2022-04-27 15:18:52,102 INFO L290 TraceCheckUtils]: 98: Hoare triple {54178#true} assume true; {54178#true} is VALID [2022-04-27 15:18:52,102 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {54178#true} {54178#true} #1192#return; {54178#true} is VALID [2022-04-27 15:18:52,102 INFO L290 TraceCheckUtils]: 100: Hoare triple {54178#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {54178#true} is VALID [2022-04-27 15:18:52,102 INFO L290 TraceCheckUtils]: 101: Hoare triple {54178#true} assume 259 == ~status~3; {54178#true} is VALID [2022-04-27 15:18:52,102 INFO L272 TraceCheckUtils]: 102: Hoare triple {54178#true} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {54178#true} is VALID [2022-04-27 15:18:52,102 INFO L290 TraceCheckUtils]: 103: Hoare triple {54178#true} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {54178#true} is VALID [2022-04-27 15:18:52,102 INFO L290 TraceCheckUtils]: 104: Hoare triple {54178#true} assume !(~s~0 == ~MPR3~0); {54254#(not (= ~MPR3~0 ~s~0))} is VALID [2022-04-27 15:18:52,102 INFO L290 TraceCheckUtils]: 105: Hoare triple {54254#(not (= ~MPR3~0 ~s~0))} assume !(1 == ~customIrp~0); {54254#(not (= ~MPR3~0 ~s~0))} is VALID [2022-04-27 15:18:52,103 INFO L290 TraceCheckUtils]: 106: Hoare triple {54254#(not (= ~MPR3~0 ~s~0))} assume ~s~0 == ~MPR3~0; {54179#false} is VALID [2022-04-27 15:18:52,103 INFO L272 TraceCheckUtils]: 107: Hoare triple {54179#false} call errorFn(); {54179#false} is VALID [2022-04-27 15:18:52,103 INFO L290 TraceCheckUtils]: 108: Hoare triple {54179#false} assume !false; {54179#false} is VALID [2022-04-27 15:18:52,103 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:18:52,103 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:18:52,103 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [301167918] [2022-04-27 15:18:52,103 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [301167918] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:18:52,103 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:18:52,104 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [11] imperfect sequences [] total 11 [2022-04-27 15:18:52,104 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1068243133] [2022-04-27 15:18:52,104 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:18:52,104 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 1 states have return successors, (14), 1 states have call predecessors, (14), 1 states have call successors, (14) Word has length 109 [2022-04-27 15:18:52,104 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:18:52,104 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 1 states have return successors, (14), 1 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:18:52,189 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 109 edges. 109 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:18:52,189 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2022-04-27 15:18:52,189 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:18:52,190 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2022-04-27 15:18:52,190 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=34, Invalid=76, Unknown=0, NotChecked=0, Total=110 [2022-04-27 15:18:52,190 INFO L87 Difference]: Start difference. First operand 313 states and 365 transitions. Second operand has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 1 states have return successors, (14), 1 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:18:54,303 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:18:58,640 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:58,640 INFO L93 Difference]: Finished difference Result 395 states and 474 transitions. [2022-04-27 15:18:58,640 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2022-04-27 15:18:58,640 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 1 states have return successors, (14), 1 states have call predecessors, (14), 1 states have call successors, (14) Word has length 109 [2022-04-27 15:18:58,640 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:18:58,640 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 1 states have return successors, (14), 1 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:18:58,642 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 13 states to 13 states and 208 transitions. [2022-04-27 15:18:58,642 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 1 states have return successors, (14), 1 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:18:58,643 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 13 states to 13 states and 208 transitions. [2022-04-27 15:18:58,643 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 13 states and 208 transitions. [2022-04-27 15:18:58,878 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 208 edges. 208 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:18:58,885 INFO L225 Difference]: With dead ends: 395 [2022-04-27 15:18:58,886 INFO L226 Difference]: Without dead ends: 392 [2022-04-27 15:18:58,886 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 41 GetRequests, 25 SyntacticMatches, 0 SemanticMatches, 16 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 29 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=97, Invalid=209, Unknown=0, NotChecked=0, Total=306 [2022-04-27 15:18:58,886 INFO L413 NwaCegarLoop]: 148 mSDtfsCounter, 172 mSDsluCounter, 212 mSDsCounter, 0 mSdLazyCounter, 589 mSolverCounterSat, 87 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 175 SdHoareTripleChecker+Valid, 360 SdHoareTripleChecker+Invalid, 677 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 87 IncrementalHoareTripleChecker+Valid, 589 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.4s IncrementalHoareTripleChecker+Time [2022-04-27 15:18:58,886 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [175 Valid, 360 Invalid, 677 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [87 Valid, 589 Invalid, 1 Unknown, 0 Unchecked, 3.4s Time] [2022-04-27 15:18:58,887 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 392 states. [2022-04-27 15:18:59,086 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 392 to 321. [2022-04-27 15:18:59,087 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:18:59,087 INFO L82 GeneralOperation]: Start isEquivalent. First operand 392 states. Second operand has 321 states, 248 states have (on average 1.221774193548387) internal successors, (303), 252 states have internal predecessors, (303), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:18:59,099 INFO L74 IsIncluded]: Start isIncluded. First operand 392 states. Second operand has 321 states, 248 states have (on average 1.221774193548387) internal successors, (303), 252 states have internal predecessors, (303), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:18:59,100 INFO L87 Difference]: Start difference. First operand 392 states. Second operand has 321 states, 248 states have (on average 1.221774193548387) internal successors, (303), 252 states have internal predecessors, (303), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:18:59,105 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:59,105 INFO L93 Difference]: Finished difference Result 392 states and 468 transitions. [2022-04-27 15:18:59,105 INFO L276 IsEmpty]: Start isEmpty. Operand 392 states and 468 transitions. [2022-04-27 15:18:59,106 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:18:59,106 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:18:59,106 INFO L74 IsIncluded]: Start isIncluded. First operand has 321 states, 248 states have (on average 1.221774193548387) internal successors, (303), 252 states have internal predecessors, (303), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) Second operand 392 states. [2022-04-27 15:18:59,106 INFO L87 Difference]: Start difference. First operand has 321 states, 248 states have (on average 1.221774193548387) internal successors, (303), 252 states have internal predecessors, (303), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) Second operand 392 states. [2022-04-27 15:18:59,112 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:18:59,112 INFO L93 Difference]: Finished difference Result 392 states and 468 transitions. [2022-04-27 15:18:59,112 INFO L276 IsEmpty]: Start isEmpty. Operand 392 states and 468 transitions. [2022-04-27 15:18:59,112 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:18:59,112 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:18:59,112 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:18:59,113 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:18:59,113 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 321 states, 248 states have (on average 1.221774193548387) internal successors, (303), 252 states have internal predecessors, (303), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:18:59,117 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 321 states to 321 states and 377 transitions. [2022-04-27 15:18:59,118 INFO L78 Accepts]: Start accepts. Automaton has 321 states and 377 transitions. Word has length 109 [2022-04-27 15:18:59,119 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:18:59,119 INFO L495 AbstractCegarLoop]: Abstraction has 321 states and 377 transitions. [2022-04-27 15:18:59,119 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 1 states have return successors, (14), 1 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:18:59,119 INFO L276 IsEmpty]: Start isEmpty. Operand 321 states and 377 transitions. [2022-04-27 15:18:59,120 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 110 [2022-04-27 15:18:59,120 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:18:59,120 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:18:59,120 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable28 [2022-04-27 15:18:59,120 INFO L420 AbstractCegarLoop]: === Iteration 30 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:18:59,120 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:18:59,120 INFO L85 PathProgramCache]: Analyzing trace with hash 1629931519, now seen corresponding path program 1 times [2022-04-27 15:18:59,121 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:18:59,121 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [64089382] [2022-04-27 15:18:59,121 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:18:59,121 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:18:59,204 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,261 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:18:59,263 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,267 INFO L290 TraceCheckUtils]: 0: Hoare triple {56163#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {56087#true} is VALID [2022-04-27 15:18:59,268 INFO L290 TraceCheckUtils]: 1: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,268 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {56087#true} {56087#true} #1270#return; {56087#true} is VALID [2022-04-27 15:18:59,286 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:18:59,287 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,292 INFO L290 TraceCheckUtils]: 0: Hoare triple {56164#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {56087#true} is VALID [2022-04-27 15:18:59,292 INFO L290 TraceCheckUtils]: 1: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,292 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {56087#true} {56087#true} #1216#return; {56087#true} is VALID [2022-04-27 15:18:59,297 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:18:59,302 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,308 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:59,309 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,313 INFO L290 TraceCheckUtils]: 0: Hoare triple {56087#true} ~cond := #in~cond; {56087#true} is VALID [2022-04-27 15:18:59,313 INFO L290 TraceCheckUtils]: 1: Hoare triple {56087#true} assume !(0 == ~cond); {56087#true} is VALID [2022-04-27 15:18:59,313 INFO L290 TraceCheckUtils]: 2: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,314 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {56087#true} {56087#true} #1254#return; {56087#true} is VALID [2022-04-27 15:18:59,314 INFO L290 TraceCheckUtils]: 0: Hoare triple {56165#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {56087#true} is VALID [2022-04-27 15:18:59,314 INFO L272 TraceCheckUtils]: 1: Hoare triple {56087#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {56087#true} is VALID [2022-04-27 15:18:59,314 INFO L290 TraceCheckUtils]: 2: Hoare triple {56087#true} ~cond := #in~cond; {56087#true} is VALID [2022-04-27 15:18:59,314 INFO L290 TraceCheckUtils]: 3: Hoare triple {56087#true} assume !(0 == ~cond); {56087#true} is VALID [2022-04-27 15:18:59,314 INFO L290 TraceCheckUtils]: 4: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,314 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {56087#true} {56087#true} #1254#return; {56087#true} is VALID [2022-04-27 15:18:59,314 INFO L290 TraceCheckUtils]: 6: Hoare triple {56087#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {56087#true} is VALID [2022-04-27 15:18:59,314 INFO L290 TraceCheckUtils]: 7: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,314 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {56087#true} {56087#true} #1218#return; {56087#true} is VALID [2022-04-27 15:18:59,322 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:18:59,332 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,340 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:59,344 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,349 INFO L290 TraceCheckUtils]: 0: Hoare triple {56170#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {56087#true} is VALID [2022-04-27 15:18:59,349 INFO L290 TraceCheckUtils]: 1: Hoare triple {56087#true} assume 0 == ~__BLAST_NONDET~5; {56087#true} is VALID [2022-04-27 15:18:59,349 INFO L290 TraceCheckUtils]: 2: Hoare triple {56087#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {56087#true} is VALID [2022-04-27 15:18:59,349 INFO L290 TraceCheckUtils]: 3: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,349 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {56087#true} {56087#true} #1176#return; {56087#true} is VALID [2022-04-27 15:18:59,349 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:18:59,351 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,356 INFO L290 TraceCheckUtils]: 0: Hoare triple {56165#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {56087#true} is VALID [2022-04-27 15:18:59,356 INFO L290 TraceCheckUtils]: 1: Hoare triple {56087#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {56087#true} is VALID [2022-04-27 15:18:59,356 INFO L290 TraceCheckUtils]: 2: Hoare triple {56087#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {56087#true} is VALID [2022-04-27 15:18:59,356 INFO L290 TraceCheckUtils]: 3: Hoare triple {56087#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {56087#true} is VALID [2022-04-27 15:18:59,356 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {56087#true} {56087#true} #1178#return; {56087#true} is VALID [2022-04-27 15:18:59,356 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:18:59,357 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,362 INFO L290 TraceCheckUtils]: 0: Hoare triple {56087#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {56087#true} is VALID [2022-04-27 15:18:59,362 INFO L290 TraceCheckUtils]: 1: Hoare triple {56087#true} assume 0 == ~__BLAST_NONDET~2; {56087#true} is VALID [2022-04-27 15:18:59,362 INFO L290 TraceCheckUtils]: 2: Hoare triple {56087#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {56087#true} is VALID [2022-04-27 15:18:59,363 INFO L290 TraceCheckUtils]: 3: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,363 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {56087#true} {56087#true} #1180#return; {56087#true} is VALID [2022-04-27 15:18:59,363 INFO L290 TraceCheckUtils]: 0: Hoare triple {56170#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {56087#true} is VALID [2022-04-27 15:18:59,364 INFO L272 TraceCheckUtils]: 1: Hoare triple {56087#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {56170#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:59,364 INFO L290 TraceCheckUtils]: 2: Hoare triple {56170#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {56087#true} is VALID [2022-04-27 15:18:59,364 INFO L290 TraceCheckUtils]: 3: Hoare triple {56087#true} assume 0 == ~__BLAST_NONDET~5; {56087#true} is VALID [2022-04-27 15:18:59,364 INFO L290 TraceCheckUtils]: 4: Hoare triple {56087#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {56087#true} is VALID [2022-04-27 15:18:59,364 INFO L290 TraceCheckUtils]: 5: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,364 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {56087#true} {56087#true} #1176#return; {56087#true} is VALID [2022-04-27 15:18:59,364 INFO L290 TraceCheckUtils]: 7: Hoare triple {56087#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {56087#true} is VALID [2022-04-27 15:18:59,364 INFO L290 TraceCheckUtils]: 8: Hoare triple {56087#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {56087#true} is VALID [2022-04-27 15:18:59,365 INFO L272 TraceCheckUtils]: 9: Hoare triple {56087#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {56165#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:59,365 INFO L290 TraceCheckUtils]: 10: Hoare triple {56165#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {56087#true} is VALID [2022-04-27 15:18:59,365 INFO L290 TraceCheckUtils]: 11: Hoare triple {56087#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {56087#true} is VALID [2022-04-27 15:18:59,365 INFO L290 TraceCheckUtils]: 12: Hoare triple {56087#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {56087#true} is VALID [2022-04-27 15:18:59,365 INFO L290 TraceCheckUtils]: 13: Hoare triple {56087#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {56087#true} is VALID [2022-04-27 15:18:59,365 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {56087#true} {56087#true} #1178#return; {56087#true} is VALID [2022-04-27 15:18:59,365 INFO L290 TraceCheckUtils]: 15: Hoare triple {56087#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {56087#true} is VALID [2022-04-27 15:18:59,365 INFO L272 TraceCheckUtils]: 16: Hoare triple {56087#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {56087#true} is VALID [2022-04-27 15:18:59,365 INFO L290 TraceCheckUtils]: 17: Hoare triple {56087#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {56087#true} is VALID [2022-04-27 15:18:59,365 INFO L290 TraceCheckUtils]: 18: Hoare triple {56087#true} assume 0 == ~__BLAST_NONDET~2; {56087#true} is VALID [2022-04-27 15:18:59,365 INFO L290 TraceCheckUtils]: 19: Hoare triple {56087#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {56087#true} is VALID [2022-04-27 15:18:59,365 INFO L290 TraceCheckUtils]: 20: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,365 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {56087#true} {56087#true} #1180#return; {56087#true} is VALID [2022-04-27 15:18:59,366 INFO L290 TraceCheckUtils]: 22: Hoare triple {56087#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {56087#true} is VALID [2022-04-27 15:18:59,366 INFO L290 TraceCheckUtils]: 23: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,366 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {56087#true} {56087#true} #1220#return; {56087#true} is VALID [2022-04-27 15:18:59,376 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:18:59,377 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,381 INFO L290 TraceCheckUtils]: 0: Hoare triple {56186#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {56087#true} is VALID [2022-04-27 15:18:59,382 INFO L290 TraceCheckUtils]: 1: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,382 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {56087#true} {56087#true} #1222#return; {56087#true} is VALID [2022-04-27 15:18:59,382 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 63 [2022-04-27 15:18:59,383 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,389 INFO L290 TraceCheckUtils]: 0: Hoare triple {56165#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {56087#true} is VALID [2022-04-27 15:18:59,389 INFO L290 TraceCheckUtils]: 1: Hoare triple {56087#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {56087#true} is VALID [2022-04-27 15:18:59,389 INFO L290 TraceCheckUtils]: 2: Hoare triple {56087#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {56087#true} is VALID [2022-04-27 15:18:59,389 INFO L290 TraceCheckUtils]: 3: Hoare triple {56087#true} assume #res.base == dest.base && #res.offset == dest.offset; {56087#true} is VALID [2022-04-27 15:18:59,389 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {56087#true} {56087#true} #1186#return; {56087#true} is VALID [2022-04-27 15:18:59,396 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 73 [2022-04-27 15:18:59,401 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,435 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:18:59,437 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,441 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:18:59,442 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,447 INFO L290 TraceCheckUtils]: 0: Hoare triple {56200#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {56087#true} is VALID [2022-04-27 15:18:59,447 INFO L290 TraceCheckUtils]: 1: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,447 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {56087#true} {56087#true} #1174#return; {56087#true} is VALID [2022-04-27 15:18:59,447 INFO L290 TraceCheckUtils]: 0: Hoare triple {56200#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {56087#true} is VALID [2022-04-27 15:18:59,448 INFO L272 TraceCheckUtils]: 1: Hoare triple {56087#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {56200#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:59,448 INFO L290 TraceCheckUtils]: 2: Hoare triple {56200#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {56087#true} is VALID [2022-04-27 15:18:59,448 INFO L290 TraceCheckUtils]: 3: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,448 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {56087#true} {56087#true} #1174#return; {56087#true} is VALID [2022-04-27 15:18:59,448 INFO L290 TraceCheckUtils]: 5: Hoare triple {56087#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {56087#true} is VALID [2022-04-27 15:18:59,448 INFO L290 TraceCheckUtils]: 6: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,448 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {56087#true} {56087#true} #1210#return; {56087#true} is VALID [2022-04-27 15:18:59,454 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:18:59,455 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:18:59,459 INFO L290 TraceCheckUtils]: 0: Hoare triple {56204#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {56087#true} is VALID [2022-04-27 15:18:59,459 INFO L290 TraceCheckUtils]: 1: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,459 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {56087#true} {56087#true} #1212#return; {56087#true} is VALID [2022-04-27 15:18:59,459 INFO L290 TraceCheckUtils]: 0: Hoare triple {56187#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {56087#true} is VALID [2022-04-27 15:18:59,459 INFO L290 TraceCheckUtils]: 1: Hoare triple {56087#true} assume 0 != ~compRegistered~0; {56087#true} is VALID [2022-04-27 15:18:59,460 INFO L272 TraceCheckUtils]: 2: Hoare triple {56087#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {56200#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:59,460 INFO L290 TraceCheckUtils]: 3: Hoare triple {56200#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {56087#true} is VALID [2022-04-27 15:18:59,460 INFO L272 TraceCheckUtils]: 4: Hoare triple {56087#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {56200#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:59,460 INFO L290 TraceCheckUtils]: 5: Hoare triple {56200#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {56087#true} is VALID [2022-04-27 15:18:59,460 INFO L290 TraceCheckUtils]: 6: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,461 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {56087#true} {56087#true} #1174#return; {56087#true} is VALID [2022-04-27 15:18:59,461 INFO L290 TraceCheckUtils]: 8: Hoare triple {56087#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {56087#true} is VALID [2022-04-27 15:18:59,461 INFO L290 TraceCheckUtils]: 9: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,461 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {56087#true} {56087#true} #1210#return; {56087#true} is VALID [2022-04-27 15:18:59,461 INFO L290 TraceCheckUtils]: 11: Hoare triple {56087#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {56087#true} is VALID [2022-04-27 15:18:59,461 INFO L290 TraceCheckUtils]: 12: Hoare triple {56087#true} assume -1073741802 == ~compRetStatus~0; {56087#true} is VALID [2022-04-27 15:18:59,461 INFO L272 TraceCheckUtils]: 13: Hoare triple {56087#true} call stubMoreProcessingRequired(); {56204#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:18:59,461 INFO L290 TraceCheckUtils]: 14: Hoare triple {56204#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {56087#true} is VALID [2022-04-27 15:18:59,461 INFO L290 TraceCheckUtils]: 15: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,461 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {56087#true} {56087#true} #1212#return; {56087#true} is VALID [2022-04-27 15:18:59,461 INFO L290 TraceCheckUtils]: 17: Hoare triple {56087#true} assume !(0 == ~__BLAST_NONDET~11); {56087#true} is VALID [2022-04-27 15:18:59,461 INFO L290 TraceCheckUtils]: 18: Hoare triple {56087#true} assume 1 == ~__BLAST_NONDET~11; {56087#true} is VALID [2022-04-27 15:18:59,462 INFO L290 TraceCheckUtils]: 19: Hoare triple {56087#true} ~returnVal2~0 := -1073741823; {56199#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:18:59,462 INFO L290 TraceCheckUtils]: 20: Hoare triple {56199#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume !(~s~0 == ~NP~0); {56199#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:18:59,462 INFO L290 TraceCheckUtils]: 21: Hoare triple {56199#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume ~s~0 == ~MPR1~0; {56199#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:18:59,462 INFO L290 TraceCheckUtils]: 22: Hoare triple {56199#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {56088#false} is VALID [2022-04-27 15:18:59,463 INFO L290 TraceCheckUtils]: 23: Hoare triple {56088#false} #res := ~returnVal2~0; {56088#false} is VALID [2022-04-27 15:18:59,463 INFO L290 TraceCheckUtils]: 24: Hoare triple {56088#false} assume true; {56088#false} is VALID [2022-04-27 15:18:59,463 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {56088#false} {56087#true} #1192#return; {56088#false} is VALID [2022-04-27 15:18:59,464 INFO L272 TraceCheckUtils]: 0: Hoare triple {56087#true} call ULTIMATE.init(); {56163#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:18:59,464 INFO L290 TraceCheckUtils]: 1: Hoare triple {56163#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {56087#true} is VALID [2022-04-27 15:18:59,464 INFO L290 TraceCheckUtils]: 2: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,464 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {56087#true} {56087#true} #1270#return; {56087#true} is VALID [2022-04-27 15:18:59,464 INFO L272 TraceCheckUtils]: 4: Hoare triple {56087#true} call #t~ret213 := main(); {56087#true} is VALID [2022-04-27 15:18:59,464 INFO L290 TraceCheckUtils]: 5: Hoare triple {56087#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {56087#true} is VALID [2022-04-27 15:18:59,465 INFO L272 TraceCheckUtils]: 6: Hoare triple {56087#true} call _BLAST_init(); {56164#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:59,465 INFO L290 TraceCheckUtils]: 7: Hoare triple {56164#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {56087#true} is VALID [2022-04-27 15:18:59,465 INFO L290 TraceCheckUtils]: 8: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,465 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {56087#true} {56087#true} #1216#return; {56087#true} is VALID [2022-04-27 15:18:59,466 INFO L272 TraceCheckUtils]: 10: Hoare triple {56087#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {56165#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:59,466 INFO L290 TraceCheckUtils]: 11: Hoare triple {56165#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {56087#true} is VALID [2022-04-27 15:18:59,466 INFO L272 TraceCheckUtils]: 12: Hoare triple {56087#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {56087#true} is VALID [2022-04-27 15:18:59,466 INFO L290 TraceCheckUtils]: 13: Hoare triple {56087#true} ~cond := #in~cond; {56087#true} is VALID [2022-04-27 15:18:59,466 INFO L290 TraceCheckUtils]: 14: Hoare triple {56087#true} assume !(0 == ~cond); {56087#true} is VALID [2022-04-27 15:18:59,466 INFO L290 TraceCheckUtils]: 15: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,466 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {56087#true} {56087#true} #1254#return; {56087#true} is VALID [2022-04-27 15:18:59,466 INFO L290 TraceCheckUtils]: 17: Hoare triple {56087#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {56087#true} is VALID [2022-04-27 15:18:59,466 INFO L290 TraceCheckUtils]: 18: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,466 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {56087#true} {56087#true} #1218#return; {56087#true} is VALID [2022-04-27 15:18:59,466 INFO L290 TraceCheckUtils]: 20: Hoare triple {56087#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {56087#true} is VALID [2022-04-27 15:18:59,466 INFO L290 TraceCheckUtils]: 21: Hoare triple {56087#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {56087#true} is VALID [2022-04-27 15:18:59,466 INFO L290 TraceCheckUtils]: 22: Hoare triple {56087#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {56087#true} is VALID [2022-04-27 15:18:59,467 INFO L272 TraceCheckUtils]: 23: Hoare triple {56087#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {56170#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:59,467 INFO L290 TraceCheckUtils]: 24: Hoare triple {56170#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {56087#true} is VALID [2022-04-27 15:18:59,468 INFO L272 TraceCheckUtils]: 25: Hoare triple {56087#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {56170#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:18:59,468 INFO L290 TraceCheckUtils]: 26: Hoare triple {56170#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {56087#true} is VALID [2022-04-27 15:18:59,468 INFO L290 TraceCheckUtils]: 27: Hoare triple {56087#true} assume 0 == ~__BLAST_NONDET~5; {56087#true} is VALID [2022-04-27 15:18:59,468 INFO L290 TraceCheckUtils]: 28: Hoare triple {56087#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {56087#true} is VALID [2022-04-27 15:18:59,468 INFO L290 TraceCheckUtils]: 29: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,468 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {56087#true} {56087#true} #1176#return; {56087#true} is VALID [2022-04-27 15:18:59,468 INFO L290 TraceCheckUtils]: 31: Hoare triple {56087#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {56087#true} is VALID [2022-04-27 15:18:59,468 INFO L290 TraceCheckUtils]: 32: Hoare triple {56087#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {56087#true} is VALID [2022-04-27 15:18:59,469 INFO L272 TraceCheckUtils]: 33: Hoare triple {56087#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {56165#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:59,469 INFO L290 TraceCheckUtils]: 34: Hoare triple {56165#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {56087#true} is VALID [2022-04-27 15:18:59,469 INFO L290 TraceCheckUtils]: 35: Hoare triple {56087#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {56087#true} is VALID [2022-04-27 15:18:59,469 INFO L290 TraceCheckUtils]: 36: Hoare triple {56087#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {56087#true} is VALID [2022-04-27 15:18:59,469 INFO L290 TraceCheckUtils]: 37: Hoare triple {56087#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {56087#true} is VALID [2022-04-27 15:18:59,469 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {56087#true} {56087#true} #1178#return; {56087#true} is VALID [2022-04-27 15:18:59,469 INFO L290 TraceCheckUtils]: 39: Hoare triple {56087#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {56087#true} is VALID [2022-04-27 15:18:59,469 INFO L272 TraceCheckUtils]: 40: Hoare triple {56087#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {56087#true} is VALID [2022-04-27 15:18:59,469 INFO L290 TraceCheckUtils]: 41: Hoare triple {56087#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {56087#true} is VALID [2022-04-27 15:18:59,469 INFO L290 TraceCheckUtils]: 42: Hoare triple {56087#true} assume 0 == ~__BLAST_NONDET~2; {56087#true} is VALID [2022-04-27 15:18:59,469 INFO L290 TraceCheckUtils]: 43: Hoare triple {56087#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {56087#true} is VALID [2022-04-27 15:18:59,470 INFO L290 TraceCheckUtils]: 44: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,470 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {56087#true} {56087#true} #1180#return; {56087#true} is VALID [2022-04-27 15:18:59,470 INFO L290 TraceCheckUtils]: 46: Hoare triple {56087#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {56087#true} is VALID [2022-04-27 15:18:59,470 INFO L290 TraceCheckUtils]: 47: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,470 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {56087#true} {56087#true} #1220#return; {56087#true} is VALID [2022-04-27 15:18:59,470 INFO L290 TraceCheckUtils]: 49: Hoare triple {56087#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {56087#true} is VALID [2022-04-27 15:18:59,470 INFO L272 TraceCheckUtils]: 50: Hoare triple {56087#true} call stub_driver_init(); {56186#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:59,470 INFO L290 TraceCheckUtils]: 51: Hoare triple {56186#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {56087#true} is VALID [2022-04-27 15:18:59,470 INFO L290 TraceCheckUtils]: 52: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,471 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {56087#true} {56087#true} #1222#return; {56087#true} is VALID [2022-04-27 15:18:59,471 INFO L290 TraceCheckUtils]: 54: Hoare triple {56087#true} assume !!(~status~5 >= 0); {56087#true} is VALID [2022-04-27 15:18:59,471 INFO L290 TraceCheckUtils]: 55: Hoare triple {56087#true} assume !(0 == ~__BLAST_NONDET~0); {56087#true} is VALID [2022-04-27 15:18:59,471 INFO L290 TraceCheckUtils]: 56: Hoare triple {56087#true} assume !(1 == ~__BLAST_NONDET~0); {56087#true} is VALID [2022-04-27 15:18:59,471 INFO L290 TraceCheckUtils]: 57: Hoare triple {56087#true} assume !(2 == ~__BLAST_NONDET~0); {56087#true} is VALID [2022-04-27 15:18:59,471 INFO L290 TraceCheckUtils]: 58: Hoare triple {56087#true} assume 3 == ~__BLAST_NONDET~0; {56087#true} is VALID [2022-04-27 15:18:59,471 INFO L272 TraceCheckUtils]: 59: Hoare triple {56087#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {56087#true} is VALID [2022-04-27 15:18:59,471 INFO L290 TraceCheckUtils]: 60: Hoare triple {56087#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {56087#true} is VALID [2022-04-27 15:18:59,471 INFO L290 TraceCheckUtils]: 61: Hoare triple {56087#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {56087#true} is VALID [2022-04-27 15:18:59,471 INFO L290 TraceCheckUtils]: 62: Hoare triple {56087#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {56087#true} is VALID [2022-04-27 15:18:59,472 INFO L272 TraceCheckUtils]: 63: Hoare triple {56087#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {56165#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:18:59,472 INFO L290 TraceCheckUtils]: 64: Hoare triple {56165#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {56087#true} is VALID [2022-04-27 15:18:59,472 INFO L290 TraceCheckUtils]: 65: Hoare triple {56087#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {56087#true} is VALID [2022-04-27 15:18:59,472 INFO L290 TraceCheckUtils]: 66: Hoare triple {56087#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {56087#true} is VALID [2022-04-27 15:18:59,472 INFO L290 TraceCheckUtils]: 67: Hoare triple {56087#true} assume #res.base == dest.base && #res.offset == dest.offset; {56087#true} is VALID [2022-04-27 15:18:59,472 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {56087#true} {56087#true} #1186#return; {56087#true} is VALID [2022-04-27 15:18:59,472 INFO L290 TraceCheckUtils]: 69: Hoare triple {56087#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {56087#true} is VALID [2022-04-27 15:18:59,472 INFO L290 TraceCheckUtils]: 70: Hoare triple {56087#true} assume !(~s~0 != ~NP~0); {56087#true} is VALID [2022-04-27 15:18:59,472 INFO L290 TraceCheckUtils]: 71: Hoare triple {56087#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {56087#true} is VALID [2022-04-27 15:18:59,472 INFO L290 TraceCheckUtils]: 72: Hoare triple {56087#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {56087#true} is VALID [2022-04-27 15:18:59,473 INFO L272 TraceCheckUtils]: 73: Hoare triple {56087#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {56187#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:18:59,473 INFO L290 TraceCheckUtils]: 74: Hoare triple {56187#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {56087#true} is VALID [2022-04-27 15:18:59,473 INFO L290 TraceCheckUtils]: 75: Hoare triple {56087#true} assume 0 != ~compRegistered~0; {56087#true} is VALID [2022-04-27 15:18:59,474 INFO L272 TraceCheckUtils]: 76: Hoare triple {56087#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {56200#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:59,474 INFO L290 TraceCheckUtils]: 77: Hoare triple {56200#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {56087#true} is VALID [2022-04-27 15:18:59,474 INFO L272 TraceCheckUtils]: 78: Hoare triple {56087#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {56200#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:18:59,474 INFO L290 TraceCheckUtils]: 79: Hoare triple {56200#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {56087#true} is VALID [2022-04-27 15:18:59,474 INFO L290 TraceCheckUtils]: 80: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,474 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {56087#true} {56087#true} #1174#return; {56087#true} is VALID [2022-04-27 15:18:59,474 INFO L290 TraceCheckUtils]: 82: Hoare triple {56087#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {56087#true} is VALID [2022-04-27 15:18:59,474 INFO L290 TraceCheckUtils]: 83: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,475 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {56087#true} {56087#true} #1210#return; {56087#true} is VALID [2022-04-27 15:18:59,475 INFO L290 TraceCheckUtils]: 85: Hoare triple {56087#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {56087#true} is VALID [2022-04-27 15:18:59,475 INFO L290 TraceCheckUtils]: 86: Hoare triple {56087#true} assume -1073741802 == ~compRetStatus~0; {56087#true} is VALID [2022-04-27 15:18:59,475 INFO L272 TraceCheckUtils]: 87: Hoare triple {56087#true} call stubMoreProcessingRequired(); {56204#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:18:59,475 INFO L290 TraceCheckUtils]: 88: Hoare triple {56204#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {56087#true} is VALID [2022-04-27 15:18:59,475 INFO L290 TraceCheckUtils]: 89: Hoare triple {56087#true} assume true; {56087#true} is VALID [2022-04-27 15:18:59,475 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {56087#true} {56087#true} #1212#return; {56087#true} is VALID [2022-04-27 15:18:59,475 INFO L290 TraceCheckUtils]: 91: Hoare triple {56087#true} assume !(0 == ~__BLAST_NONDET~11); {56087#true} is VALID [2022-04-27 15:18:59,475 INFO L290 TraceCheckUtils]: 92: Hoare triple {56087#true} assume 1 == ~__BLAST_NONDET~11; {56087#true} is VALID [2022-04-27 15:18:59,475 INFO L290 TraceCheckUtils]: 93: Hoare triple {56087#true} ~returnVal2~0 := -1073741823; {56199#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:18:59,476 INFO L290 TraceCheckUtils]: 94: Hoare triple {56199#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume !(~s~0 == ~NP~0); {56199#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:18:59,476 INFO L290 TraceCheckUtils]: 95: Hoare triple {56199#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume ~s~0 == ~MPR1~0; {56199#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:18:59,476 INFO L290 TraceCheckUtils]: 96: Hoare triple {56199#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {56088#false} is VALID [2022-04-27 15:18:59,476 INFO L290 TraceCheckUtils]: 97: Hoare triple {56088#false} #res := ~returnVal2~0; {56088#false} is VALID [2022-04-27 15:18:59,476 INFO L290 TraceCheckUtils]: 98: Hoare triple {56088#false} assume true; {56088#false} is VALID [2022-04-27 15:18:59,476 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {56088#false} {56087#true} #1192#return; {56088#false} is VALID [2022-04-27 15:18:59,476 INFO L290 TraceCheckUtils]: 100: Hoare triple {56088#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {56088#false} is VALID [2022-04-27 15:18:59,477 INFO L290 TraceCheckUtils]: 101: Hoare triple {56088#false} assume !(259 == ~status~3); {56088#false} is VALID [2022-04-27 15:18:59,477 INFO L290 TraceCheckUtils]: 102: Hoare triple {56088#false} assume !(~status~3 >= 0); {56088#false} is VALID [2022-04-27 15:18:59,477 INFO L290 TraceCheckUtils]: 103: Hoare triple {56088#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {56088#false} is VALID [2022-04-27 15:18:59,477 INFO L272 TraceCheckUtils]: 104: Hoare triple {56088#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {56088#false} is VALID [2022-04-27 15:18:59,477 INFO L290 TraceCheckUtils]: 105: Hoare triple {56088#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {56088#false} is VALID [2022-04-27 15:18:59,477 INFO L290 TraceCheckUtils]: 106: Hoare triple {56088#false} assume !(~s~0 == ~NP~0); {56088#false} is VALID [2022-04-27 15:18:59,477 INFO L272 TraceCheckUtils]: 107: Hoare triple {56088#false} call errorFn(); {56088#false} is VALID [2022-04-27 15:18:59,477 INFO L290 TraceCheckUtils]: 108: Hoare triple {56088#false} assume !false; {56088#false} is VALID [2022-04-27 15:18:59,477 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:18:59,477 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:18:59,477 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [64089382] [2022-04-27 15:18:59,477 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [64089382] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:18:59,477 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:18:59,478 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [11] imperfect sequences [] total 11 [2022-04-27 15:18:59,478 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [648497297] [2022-04-27 15:18:59,478 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:18:59,478 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) Word has length 109 [2022-04-27 15:18:59,478 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:18:59,478 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:18:59,563 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 109 edges. 109 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:18:59,563 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2022-04-27 15:18:59,563 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:18:59,565 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2022-04-27 15:18:59,565 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=34, Invalid=76, Unknown=0, NotChecked=0, Total=110 [2022-04-27 15:18:59,565 INFO L87 Difference]: Start difference. First operand 321 states and 377 transitions. Second operand has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:01,657 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:19:06,070 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:06,071 INFO L93 Difference]: Finished difference Result 471 states and 566 transitions. [2022-04-27 15:19:06,071 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2022-04-27 15:19:06,071 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) Word has length 109 [2022-04-27 15:19:06,071 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:19:06,071 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:06,072 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 10 states to 10 states and 250 transitions. [2022-04-27 15:19:06,073 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:06,074 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 10 states to 10 states and 250 transitions. [2022-04-27 15:19:06,074 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 10 states and 250 transitions. [2022-04-27 15:19:06,315 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 250 edges. 250 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:19:06,321 INFO L225 Difference]: With dead ends: 471 [2022-04-27 15:19:06,321 INFO L226 Difference]: Without dead ends: 383 [2022-04-27 15:19:06,322 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 39 GetRequests, 25 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 20 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=71, Invalid=169, Unknown=0, NotChecked=0, Total=240 [2022-04-27 15:19:06,322 INFO L413 NwaCegarLoop]: 142 mSDtfsCounter, 366 mSDsluCounter, 171 mSDsCounter, 0 mSdLazyCounter, 357 mSolverCounterSat, 216 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 368 SdHoareTripleChecker+Valid, 313 SdHoareTripleChecker+Invalid, 574 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 216 IncrementalHoareTripleChecker+Valid, 357 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.7s IncrementalHoareTripleChecker+Time [2022-04-27 15:19:06,323 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [368 Valid, 313 Invalid, 574 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [216 Valid, 357 Invalid, 1 Unknown, 0 Unchecked, 3.7s Time] [2022-04-27 15:19:06,324 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 383 states. [2022-04-27 15:19:06,536 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 383 to 327. [2022-04-27 15:19:06,536 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:19:06,537 INFO L82 GeneralOperation]: Start isEquivalent. First operand 383 states. Second operand has 327 states, 254 states have (on average 1.2165354330708662) internal successors, (309), 258 states have internal predecessors, (309), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:19:06,537 INFO L74 IsIncluded]: Start isIncluded. First operand 383 states. Second operand has 327 states, 254 states have (on average 1.2165354330708662) internal successors, (309), 258 states have internal predecessors, (309), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:19:06,537 INFO L87 Difference]: Start difference. First operand 383 states. Second operand has 327 states, 254 states have (on average 1.2165354330708662) internal successors, (309), 258 states have internal predecessors, (309), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:19:06,542 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:06,542 INFO L93 Difference]: Finished difference Result 383 states and 451 transitions. [2022-04-27 15:19:06,542 INFO L276 IsEmpty]: Start isEmpty. Operand 383 states and 451 transitions. [2022-04-27 15:19:06,543 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:19:06,543 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:19:06,543 INFO L74 IsIncluded]: Start isIncluded. First operand has 327 states, 254 states have (on average 1.2165354330708662) internal successors, (309), 258 states have internal predecessors, (309), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) Second operand 383 states. [2022-04-27 15:19:06,543 INFO L87 Difference]: Start difference. First operand has 327 states, 254 states have (on average 1.2165354330708662) internal successors, (309), 258 states have internal predecessors, (309), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) Second operand 383 states. [2022-04-27 15:19:06,548 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:06,548 INFO L93 Difference]: Finished difference Result 383 states and 451 transitions. [2022-04-27 15:19:06,548 INFO L276 IsEmpty]: Start isEmpty. Operand 383 states and 451 transitions. [2022-04-27 15:19:06,548 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:19:06,548 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:19:06,549 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:19:06,549 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:19:06,549 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 327 states, 254 states have (on average 1.2165354330708662) internal successors, (309), 258 states have internal predecessors, (309), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:19:06,553 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 327 states to 327 states and 383 transitions. [2022-04-27 15:19:06,554 INFO L78 Accepts]: Start accepts. Automaton has 327 states and 383 transitions. Word has length 109 [2022-04-27 15:19:06,554 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:19:06,554 INFO L495 AbstractCegarLoop]: Abstraction has 327 states and 383 transitions. [2022-04-27 15:19:06,554 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 11 states have (on average 7.0) internal successors, (77), 3 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:06,554 INFO L276 IsEmpty]: Start isEmpty. Operand 327 states and 383 transitions. [2022-04-27 15:19:06,554 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 110 [2022-04-27 15:19:06,554 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:19:06,555 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:19:06,555 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable29 [2022-04-27 15:19:06,555 INFO L420 AbstractCegarLoop]: === Iteration 31 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:19:06,555 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:19:06,555 INFO L85 PathProgramCache]: Analyzing trace with hash -979484737, now seen corresponding path program 1 times [2022-04-27 15:19:06,555 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:19:06,555 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1217288648] [2022-04-27 15:19:06,555 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:19:06,555 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:19:06,634 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,703 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:19:06,705 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,709 INFO L290 TraceCheckUtils]: 0: Hoare triple {58158#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {58080#true} is VALID [2022-04-27 15:19:06,728 INFO L290 TraceCheckUtils]: 1: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,728 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {58080#true} {58080#true} #1270#return; {58080#true} is VALID [2022-04-27 15:19:06,749 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:19:06,753 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,758 INFO L290 TraceCheckUtils]: 0: Hoare triple {58159#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {58080#true} is VALID [2022-04-27 15:19:06,758 INFO L290 TraceCheckUtils]: 1: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,758 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {58080#true} {58080#true} #1216#return; {58080#true} is VALID [2022-04-27 15:19:06,765 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:19:06,770 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,776 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:06,776 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,780 INFO L290 TraceCheckUtils]: 0: Hoare triple {58080#true} ~cond := #in~cond; {58080#true} is VALID [2022-04-27 15:19:06,780 INFO L290 TraceCheckUtils]: 1: Hoare triple {58080#true} assume !(0 == ~cond); {58080#true} is VALID [2022-04-27 15:19:06,780 INFO L290 TraceCheckUtils]: 2: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,780 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {58080#true} {58080#true} #1254#return; {58080#true} is VALID [2022-04-27 15:19:06,780 INFO L290 TraceCheckUtils]: 0: Hoare triple {58160#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {58080#true} is VALID [2022-04-27 15:19:06,781 INFO L272 TraceCheckUtils]: 1: Hoare triple {58080#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {58080#true} is VALID [2022-04-27 15:19:06,781 INFO L290 TraceCheckUtils]: 2: Hoare triple {58080#true} ~cond := #in~cond; {58080#true} is VALID [2022-04-27 15:19:06,781 INFO L290 TraceCheckUtils]: 3: Hoare triple {58080#true} assume !(0 == ~cond); {58080#true} is VALID [2022-04-27 15:19:06,781 INFO L290 TraceCheckUtils]: 4: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,781 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {58080#true} {58080#true} #1254#return; {58080#true} is VALID [2022-04-27 15:19:06,781 INFO L290 TraceCheckUtils]: 6: Hoare triple {58080#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {58080#true} is VALID [2022-04-27 15:19:06,781 INFO L290 TraceCheckUtils]: 7: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,781 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {58080#true} {58080#true} #1218#return; {58080#true} is VALID [2022-04-27 15:19:06,790 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:19:06,801 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,810 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:06,815 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,824 INFO L290 TraceCheckUtils]: 0: Hoare triple {58165#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {58080#true} is VALID [2022-04-27 15:19:06,824 INFO L290 TraceCheckUtils]: 1: Hoare triple {58080#true} assume 0 == ~__BLAST_NONDET~5; {58080#true} is VALID [2022-04-27 15:19:06,824 INFO L290 TraceCheckUtils]: 2: Hoare triple {58080#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {58080#true} is VALID [2022-04-27 15:19:06,824 INFO L290 TraceCheckUtils]: 3: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,824 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {58080#true} {58080#true} #1176#return; {58080#true} is VALID [2022-04-27 15:19:06,824 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:19:06,826 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,832 INFO L290 TraceCheckUtils]: 0: Hoare triple {58160#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {58080#true} is VALID [2022-04-27 15:19:06,832 INFO L290 TraceCheckUtils]: 1: Hoare triple {58080#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {58080#true} is VALID [2022-04-27 15:19:06,832 INFO L290 TraceCheckUtils]: 2: Hoare triple {58080#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {58080#true} is VALID [2022-04-27 15:19:06,832 INFO L290 TraceCheckUtils]: 3: Hoare triple {58080#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {58080#true} is VALID [2022-04-27 15:19:06,832 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {58080#true} {58080#true} #1178#return; {58080#true} is VALID [2022-04-27 15:19:06,832 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:19:06,833 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,839 INFO L290 TraceCheckUtils]: 0: Hoare triple {58080#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {58080#true} is VALID [2022-04-27 15:19:06,839 INFO L290 TraceCheckUtils]: 1: Hoare triple {58080#true} assume 0 == ~__BLAST_NONDET~2; {58080#true} is VALID [2022-04-27 15:19:06,839 INFO L290 TraceCheckUtils]: 2: Hoare triple {58080#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {58080#true} is VALID [2022-04-27 15:19:06,839 INFO L290 TraceCheckUtils]: 3: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,839 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {58080#true} {58080#true} #1180#return; {58080#true} is VALID [2022-04-27 15:19:06,839 INFO L290 TraceCheckUtils]: 0: Hoare triple {58165#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {58080#true} is VALID [2022-04-27 15:19:06,840 INFO L272 TraceCheckUtils]: 1: Hoare triple {58080#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {58165#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:06,840 INFO L290 TraceCheckUtils]: 2: Hoare triple {58165#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {58080#true} is VALID [2022-04-27 15:19:06,840 INFO L290 TraceCheckUtils]: 3: Hoare triple {58080#true} assume 0 == ~__BLAST_NONDET~5; {58080#true} is VALID [2022-04-27 15:19:06,841 INFO L290 TraceCheckUtils]: 4: Hoare triple {58080#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {58080#true} is VALID [2022-04-27 15:19:06,841 INFO L290 TraceCheckUtils]: 5: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,841 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {58080#true} {58080#true} #1176#return; {58080#true} is VALID [2022-04-27 15:19:06,841 INFO L290 TraceCheckUtils]: 7: Hoare triple {58080#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {58080#true} is VALID [2022-04-27 15:19:06,841 INFO L290 TraceCheckUtils]: 8: Hoare triple {58080#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {58080#true} is VALID [2022-04-27 15:19:06,841 INFO L272 TraceCheckUtils]: 9: Hoare triple {58080#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {58160#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:06,841 INFO L290 TraceCheckUtils]: 10: Hoare triple {58160#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L290 TraceCheckUtils]: 11: Hoare triple {58080#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L290 TraceCheckUtils]: 12: Hoare triple {58080#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L290 TraceCheckUtils]: 13: Hoare triple {58080#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {58080#true} {58080#true} #1178#return; {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L290 TraceCheckUtils]: 15: Hoare triple {58080#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L272 TraceCheckUtils]: 16: Hoare triple {58080#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L290 TraceCheckUtils]: 17: Hoare triple {58080#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L290 TraceCheckUtils]: 18: Hoare triple {58080#true} assume 0 == ~__BLAST_NONDET~2; {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L290 TraceCheckUtils]: 19: Hoare triple {58080#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L290 TraceCheckUtils]: 20: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {58080#true} {58080#true} #1180#return; {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L290 TraceCheckUtils]: 22: Hoare triple {58080#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L290 TraceCheckUtils]: 23: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,842 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {58080#true} {58080#true} #1220#return; {58080#true} is VALID [2022-04-27 15:19:06,856 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:19:06,857 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,861 INFO L290 TraceCheckUtils]: 0: Hoare triple {58181#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {58080#true} is VALID [2022-04-27 15:19:06,861 INFO L290 TraceCheckUtils]: 1: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,861 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {58080#true} {58080#true} #1222#return; {58080#true} is VALID [2022-04-27 15:19:06,861 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 63 [2022-04-27 15:19:06,862 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,867 INFO L290 TraceCheckUtils]: 0: Hoare triple {58160#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {58080#true} is VALID [2022-04-27 15:19:06,867 INFO L290 TraceCheckUtils]: 1: Hoare triple {58080#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {58080#true} is VALID [2022-04-27 15:19:06,867 INFO L290 TraceCheckUtils]: 2: Hoare triple {58080#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {58080#true} is VALID [2022-04-27 15:19:06,867 INFO L290 TraceCheckUtils]: 3: Hoare triple {58080#true} assume #res.base == dest.base && #res.offset == dest.offset; {58080#true} is VALID [2022-04-27 15:19:06,867 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {58080#true} {58080#true} #1186#return; {58080#true} is VALID [2022-04-27 15:19:06,876 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 73 [2022-04-27 15:19:06,880 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,912 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:19:06,914 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,928 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:06,929 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,933 INFO L290 TraceCheckUtils]: 0: Hoare triple {58196#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {58080#true} is VALID [2022-04-27 15:19:06,933 INFO L290 TraceCheckUtils]: 1: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,933 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {58080#true} {58080#true} #1174#return; {58080#true} is VALID [2022-04-27 15:19:06,933 INFO L290 TraceCheckUtils]: 0: Hoare triple {58196#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {58080#true} is VALID [2022-04-27 15:19:06,934 INFO L272 TraceCheckUtils]: 1: Hoare triple {58080#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {58196#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:06,934 INFO L290 TraceCheckUtils]: 2: Hoare triple {58196#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {58080#true} is VALID [2022-04-27 15:19:06,934 INFO L290 TraceCheckUtils]: 3: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,934 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {58080#true} {58080#true} #1174#return; {58080#true} is VALID [2022-04-27 15:19:06,934 INFO L290 TraceCheckUtils]: 5: Hoare triple {58080#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {58080#true} is VALID [2022-04-27 15:19:06,934 INFO L290 TraceCheckUtils]: 6: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,934 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {58080#true} {58080#true} #1210#return; {58080#true} is VALID [2022-04-27 15:19:06,943 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:19:06,943 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:06,947 INFO L290 TraceCheckUtils]: 0: Hoare triple {58200#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {58080#true} is VALID [2022-04-27 15:19:06,947 INFO L290 TraceCheckUtils]: 1: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,947 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {58080#true} {58080#true} #1212#return; {58080#true} is VALID [2022-04-27 15:19:06,947 INFO L290 TraceCheckUtils]: 0: Hoare triple {58182#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {58080#true} is VALID [2022-04-27 15:19:06,947 INFO L290 TraceCheckUtils]: 1: Hoare triple {58080#true} assume 0 != ~compRegistered~0; {58080#true} is VALID [2022-04-27 15:19:06,948 INFO L272 TraceCheckUtils]: 2: Hoare triple {58080#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {58196#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:06,948 INFO L290 TraceCheckUtils]: 3: Hoare triple {58196#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {58080#true} is VALID [2022-04-27 15:19:06,949 INFO L272 TraceCheckUtils]: 4: Hoare triple {58080#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {58196#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:06,949 INFO L290 TraceCheckUtils]: 5: Hoare triple {58196#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {58080#true} is VALID [2022-04-27 15:19:06,949 INFO L290 TraceCheckUtils]: 6: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,949 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {58080#true} {58080#true} #1174#return; {58080#true} is VALID [2022-04-27 15:19:06,949 INFO L290 TraceCheckUtils]: 8: Hoare triple {58080#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {58080#true} is VALID [2022-04-27 15:19:06,949 INFO L290 TraceCheckUtils]: 9: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,949 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {58080#true} {58080#true} #1210#return; {58080#true} is VALID [2022-04-27 15:19:06,949 INFO L290 TraceCheckUtils]: 11: Hoare triple {58080#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {58080#true} is VALID [2022-04-27 15:19:06,949 INFO L290 TraceCheckUtils]: 12: Hoare triple {58080#true} assume -1073741802 == ~compRetStatus~0; {58080#true} is VALID [2022-04-27 15:19:06,949 INFO L272 TraceCheckUtils]: 13: Hoare triple {58080#true} call stubMoreProcessingRequired(); {58200#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:06,949 INFO L290 TraceCheckUtils]: 14: Hoare triple {58200#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {58080#true} is VALID [2022-04-27 15:19:06,950 INFO L290 TraceCheckUtils]: 15: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,950 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {58080#true} {58080#true} #1212#return; {58080#true} is VALID [2022-04-27 15:19:06,950 INFO L290 TraceCheckUtils]: 17: Hoare triple {58080#true} assume !(0 == ~__BLAST_NONDET~11); {58080#true} is VALID [2022-04-27 15:19:06,950 INFO L290 TraceCheckUtils]: 18: Hoare triple {58080#true} assume !(1 == ~__BLAST_NONDET~11); {58080#true} is VALID [2022-04-27 15:19:06,950 INFO L290 TraceCheckUtils]: 19: Hoare triple {58080#true} ~returnVal2~0 := 259; {58194#(<= 259 IofCallDriver_~returnVal2~0)} is VALID [2022-04-27 15:19:06,950 INFO L290 TraceCheckUtils]: 20: Hoare triple {58194#(<= 259 IofCallDriver_~returnVal2~0)} assume !(~s~0 == ~NP~0); {58194#(<= 259 IofCallDriver_~returnVal2~0)} is VALID [2022-04-27 15:19:06,950 INFO L290 TraceCheckUtils]: 21: Hoare triple {58194#(<= 259 IofCallDriver_~returnVal2~0)} assume ~s~0 == ~MPR1~0; {58194#(<= 259 IofCallDriver_~returnVal2~0)} is VALID [2022-04-27 15:19:06,951 INFO L290 TraceCheckUtils]: 22: Hoare triple {58194#(<= 259 IofCallDriver_~returnVal2~0)} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {58194#(<= 259 IofCallDriver_~returnVal2~0)} is VALID [2022-04-27 15:19:06,952 INFO L290 TraceCheckUtils]: 23: Hoare triple {58194#(<= 259 IofCallDriver_~returnVal2~0)} #res := ~returnVal2~0; {58195#(<= 259 |IofCallDriver_#res|)} is VALID [2022-04-27 15:19:06,952 INFO L290 TraceCheckUtils]: 24: Hoare triple {58195#(<= 259 |IofCallDriver_#res|)} assume true; {58195#(<= 259 |IofCallDriver_#res|)} is VALID [2022-04-27 15:19:06,952 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {58195#(<= 259 |IofCallDriver_#res|)} {58080#true} #1192#return; {58156#(<= 259 |KbFilter_PnP_#t~ret109|)} is VALID [2022-04-27 15:19:06,953 INFO L272 TraceCheckUtils]: 0: Hoare triple {58080#true} call ULTIMATE.init(); {58158#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:19:06,954 INFO L290 TraceCheckUtils]: 1: Hoare triple {58158#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {58080#true} is VALID [2022-04-27 15:19:06,954 INFO L290 TraceCheckUtils]: 2: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,954 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {58080#true} {58080#true} #1270#return; {58080#true} is VALID [2022-04-27 15:19:06,954 INFO L272 TraceCheckUtils]: 4: Hoare triple {58080#true} call #t~ret213 := main(); {58080#true} is VALID [2022-04-27 15:19:06,954 INFO L290 TraceCheckUtils]: 5: Hoare triple {58080#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {58080#true} is VALID [2022-04-27 15:19:06,955 INFO L272 TraceCheckUtils]: 6: Hoare triple {58080#true} call _BLAST_init(); {58159#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:06,955 INFO L290 TraceCheckUtils]: 7: Hoare triple {58159#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {58080#true} is VALID [2022-04-27 15:19:06,955 INFO L290 TraceCheckUtils]: 8: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,955 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {58080#true} {58080#true} #1216#return; {58080#true} is VALID [2022-04-27 15:19:06,955 INFO L272 TraceCheckUtils]: 10: Hoare triple {58080#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {58160#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:06,955 INFO L290 TraceCheckUtils]: 11: Hoare triple {58160#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {58080#true} is VALID [2022-04-27 15:19:06,956 INFO L272 TraceCheckUtils]: 12: Hoare triple {58080#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {58080#true} is VALID [2022-04-27 15:19:06,956 INFO L290 TraceCheckUtils]: 13: Hoare triple {58080#true} ~cond := #in~cond; {58080#true} is VALID [2022-04-27 15:19:06,956 INFO L290 TraceCheckUtils]: 14: Hoare triple {58080#true} assume !(0 == ~cond); {58080#true} is VALID [2022-04-27 15:19:06,956 INFO L290 TraceCheckUtils]: 15: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,956 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {58080#true} {58080#true} #1254#return; {58080#true} is VALID [2022-04-27 15:19:06,956 INFO L290 TraceCheckUtils]: 17: Hoare triple {58080#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {58080#true} is VALID [2022-04-27 15:19:06,956 INFO L290 TraceCheckUtils]: 18: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,956 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {58080#true} {58080#true} #1218#return; {58080#true} is VALID [2022-04-27 15:19:06,956 INFO L290 TraceCheckUtils]: 20: Hoare triple {58080#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {58080#true} is VALID [2022-04-27 15:19:06,956 INFO L290 TraceCheckUtils]: 21: Hoare triple {58080#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {58080#true} is VALID [2022-04-27 15:19:06,956 INFO L290 TraceCheckUtils]: 22: Hoare triple {58080#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {58080#true} is VALID [2022-04-27 15:19:06,957 INFO L272 TraceCheckUtils]: 23: Hoare triple {58080#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {58165#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:06,957 INFO L290 TraceCheckUtils]: 24: Hoare triple {58165#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {58080#true} is VALID [2022-04-27 15:19:06,958 INFO L272 TraceCheckUtils]: 25: Hoare triple {58080#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {58165#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:06,958 INFO L290 TraceCheckUtils]: 26: Hoare triple {58165#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {58080#true} is VALID [2022-04-27 15:19:06,958 INFO L290 TraceCheckUtils]: 27: Hoare triple {58080#true} assume 0 == ~__BLAST_NONDET~5; {58080#true} is VALID [2022-04-27 15:19:06,958 INFO L290 TraceCheckUtils]: 28: Hoare triple {58080#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {58080#true} is VALID [2022-04-27 15:19:06,958 INFO L290 TraceCheckUtils]: 29: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,958 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {58080#true} {58080#true} #1176#return; {58080#true} is VALID [2022-04-27 15:19:06,958 INFO L290 TraceCheckUtils]: 31: Hoare triple {58080#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {58080#true} is VALID [2022-04-27 15:19:06,958 INFO L290 TraceCheckUtils]: 32: Hoare triple {58080#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L272 TraceCheckUtils]: 33: Hoare triple {58080#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {58160#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:06,959 INFO L290 TraceCheckUtils]: 34: Hoare triple {58160#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L290 TraceCheckUtils]: 35: Hoare triple {58080#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L290 TraceCheckUtils]: 36: Hoare triple {58080#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L290 TraceCheckUtils]: 37: Hoare triple {58080#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {58080#true} {58080#true} #1178#return; {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L290 TraceCheckUtils]: 39: Hoare triple {58080#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L272 TraceCheckUtils]: 40: Hoare triple {58080#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L290 TraceCheckUtils]: 41: Hoare triple {58080#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L290 TraceCheckUtils]: 42: Hoare triple {58080#true} assume 0 == ~__BLAST_NONDET~2; {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L290 TraceCheckUtils]: 43: Hoare triple {58080#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L290 TraceCheckUtils]: 44: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {58080#true} {58080#true} #1180#return; {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L290 TraceCheckUtils]: 46: Hoare triple {58080#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {58080#true} is VALID [2022-04-27 15:19:06,959 INFO L290 TraceCheckUtils]: 47: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,960 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {58080#true} {58080#true} #1220#return; {58080#true} is VALID [2022-04-27 15:19:06,960 INFO L290 TraceCheckUtils]: 49: Hoare triple {58080#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {58080#true} is VALID [2022-04-27 15:19:06,960 INFO L272 TraceCheckUtils]: 50: Hoare triple {58080#true} call stub_driver_init(); {58181#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:06,960 INFO L290 TraceCheckUtils]: 51: Hoare triple {58181#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {58080#true} is VALID [2022-04-27 15:19:06,961 INFO L290 TraceCheckUtils]: 52: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,961 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {58080#true} {58080#true} #1222#return; {58080#true} is VALID [2022-04-27 15:19:06,961 INFO L290 TraceCheckUtils]: 54: Hoare triple {58080#true} assume !!(~status~5 >= 0); {58080#true} is VALID [2022-04-27 15:19:06,961 INFO L290 TraceCheckUtils]: 55: Hoare triple {58080#true} assume !(0 == ~__BLAST_NONDET~0); {58080#true} is VALID [2022-04-27 15:19:06,961 INFO L290 TraceCheckUtils]: 56: Hoare triple {58080#true} assume !(1 == ~__BLAST_NONDET~0); {58080#true} is VALID [2022-04-27 15:19:06,961 INFO L290 TraceCheckUtils]: 57: Hoare triple {58080#true} assume !(2 == ~__BLAST_NONDET~0); {58080#true} is VALID [2022-04-27 15:19:06,961 INFO L290 TraceCheckUtils]: 58: Hoare triple {58080#true} assume 3 == ~__BLAST_NONDET~0; {58080#true} is VALID [2022-04-27 15:19:06,961 INFO L272 TraceCheckUtils]: 59: Hoare triple {58080#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {58080#true} is VALID [2022-04-27 15:19:06,961 INFO L290 TraceCheckUtils]: 60: Hoare triple {58080#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {58080#true} is VALID [2022-04-27 15:19:06,961 INFO L290 TraceCheckUtils]: 61: Hoare triple {58080#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {58080#true} is VALID [2022-04-27 15:19:06,961 INFO L290 TraceCheckUtils]: 62: Hoare triple {58080#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {58080#true} is VALID [2022-04-27 15:19:06,962 INFO L272 TraceCheckUtils]: 63: Hoare triple {58080#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {58160#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:06,962 INFO L290 TraceCheckUtils]: 64: Hoare triple {58160#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {58080#true} is VALID [2022-04-27 15:19:06,962 INFO L290 TraceCheckUtils]: 65: Hoare triple {58080#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {58080#true} is VALID [2022-04-27 15:19:06,962 INFO L290 TraceCheckUtils]: 66: Hoare triple {58080#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {58080#true} is VALID [2022-04-27 15:19:06,962 INFO L290 TraceCheckUtils]: 67: Hoare triple {58080#true} assume #res.base == dest.base && #res.offset == dest.offset; {58080#true} is VALID [2022-04-27 15:19:06,962 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {58080#true} {58080#true} #1186#return; {58080#true} is VALID [2022-04-27 15:19:06,962 INFO L290 TraceCheckUtils]: 69: Hoare triple {58080#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {58080#true} is VALID [2022-04-27 15:19:06,962 INFO L290 TraceCheckUtils]: 70: Hoare triple {58080#true} assume !(~s~0 != ~NP~0); {58080#true} is VALID [2022-04-27 15:19:06,962 INFO L290 TraceCheckUtils]: 71: Hoare triple {58080#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {58080#true} is VALID [2022-04-27 15:19:06,962 INFO L290 TraceCheckUtils]: 72: Hoare triple {58080#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {58080#true} is VALID [2022-04-27 15:19:06,963 INFO L272 TraceCheckUtils]: 73: Hoare triple {58080#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {58182#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:06,963 INFO L290 TraceCheckUtils]: 74: Hoare triple {58182#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {58080#true} is VALID [2022-04-27 15:19:06,963 INFO L290 TraceCheckUtils]: 75: Hoare triple {58080#true} assume 0 != ~compRegistered~0; {58080#true} is VALID [2022-04-27 15:19:06,964 INFO L272 TraceCheckUtils]: 76: Hoare triple {58080#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {58196#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:06,964 INFO L290 TraceCheckUtils]: 77: Hoare triple {58196#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {58080#true} is VALID [2022-04-27 15:19:06,964 INFO L272 TraceCheckUtils]: 78: Hoare triple {58080#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {58196#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:06,964 INFO L290 TraceCheckUtils]: 79: Hoare triple {58196#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {58080#true} is VALID [2022-04-27 15:19:06,964 INFO L290 TraceCheckUtils]: 80: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,964 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {58080#true} {58080#true} #1174#return; {58080#true} is VALID [2022-04-27 15:19:06,964 INFO L290 TraceCheckUtils]: 82: Hoare triple {58080#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {58080#true} is VALID [2022-04-27 15:19:06,965 INFO L290 TraceCheckUtils]: 83: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,965 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {58080#true} {58080#true} #1210#return; {58080#true} is VALID [2022-04-27 15:19:06,965 INFO L290 TraceCheckUtils]: 85: Hoare triple {58080#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {58080#true} is VALID [2022-04-27 15:19:06,965 INFO L290 TraceCheckUtils]: 86: Hoare triple {58080#true} assume -1073741802 == ~compRetStatus~0; {58080#true} is VALID [2022-04-27 15:19:06,965 INFO L272 TraceCheckUtils]: 87: Hoare triple {58080#true} call stubMoreProcessingRequired(); {58200#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:06,965 INFO L290 TraceCheckUtils]: 88: Hoare triple {58200#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {58080#true} is VALID [2022-04-27 15:19:06,965 INFO L290 TraceCheckUtils]: 89: Hoare triple {58080#true} assume true; {58080#true} is VALID [2022-04-27 15:19:06,965 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {58080#true} {58080#true} #1212#return; {58080#true} is VALID [2022-04-27 15:19:06,965 INFO L290 TraceCheckUtils]: 91: Hoare triple {58080#true} assume !(0 == ~__BLAST_NONDET~11); {58080#true} is VALID [2022-04-27 15:19:06,965 INFO L290 TraceCheckUtils]: 92: Hoare triple {58080#true} assume !(1 == ~__BLAST_NONDET~11); {58080#true} is VALID [2022-04-27 15:19:06,965 INFO L290 TraceCheckUtils]: 93: Hoare triple {58080#true} ~returnVal2~0 := 259; {58194#(<= 259 IofCallDriver_~returnVal2~0)} is VALID [2022-04-27 15:19:06,966 INFO L290 TraceCheckUtils]: 94: Hoare triple {58194#(<= 259 IofCallDriver_~returnVal2~0)} assume !(~s~0 == ~NP~0); {58194#(<= 259 IofCallDriver_~returnVal2~0)} is VALID [2022-04-27 15:19:06,966 INFO L290 TraceCheckUtils]: 95: Hoare triple {58194#(<= 259 IofCallDriver_~returnVal2~0)} assume ~s~0 == ~MPR1~0; {58194#(<= 259 IofCallDriver_~returnVal2~0)} is VALID [2022-04-27 15:19:06,966 INFO L290 TraceCheckUtils]: 96: Hoare triple {58194#(<= 259 IofCallDriver_~returnVal2~0)} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {58194#(<= 259 IofCallDriver_~returnVal2~0)} is VALID [2022-04-27 15:19:06,966 INFO L290 TraceCheckUtils]: 97: Hoare triple {58194#(<= 259 IofCallDriver_~returnVal2~0)} #res := ~returnVal2~0; {58195#(<= 259 |IofCallDriver_#res|)} is VALID [2022-04-27 15:19:06,967 INFO L290 TraceCheckUtils]: 98: Hoare triple {58195#(<= 259 |IofCallDriver_#res|)} assume true; {58195#(<= 259 |IofCallDriver_#res|)} is VALID [2022-04-27 15:19:06,967 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {58195#(<= 259 |IofCallDriver_#res|)} {58080#true} #1192#return; {58156#(<= 259 |KbFilter_PnP_#t~ret109|)} is VALID [2022-04-27 15:19:06,967 INFO L290 TraceCheckUtils]: 100: Hoare triple {58156#(<= 259 |KbFilter_PnP_#t~ret109|)} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {58157#(<= 259 KbFilter_PnP_~status~3)} is VALID [2022-04-27 15:19:06,968 INFO L290 TraceCheckUtils]: 101: Hoare triple {58157#(<= 259 KbFilter_PnP_~status~3)} assume !(259 == ~status~3); {58157#(<= 259 KbFilter_PnP_~status~3)} is VALID [2022-04-27 15:19:06,968 INFO L290 TraceCheckUtils]: 102: Hoare triple {58157#(<= 259 KbFilter_PnP_~status~3)} assume !(~status~3 >= 0); {58081#false} is VALID [2022-04-27 15:19:06,968 INFO L290 TraceCheckUtils]: 103: Hoare triple {58081#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {58081#false} is VALID [2022-04-27 15:19:06,968 INFO L272 TraceCheckUtils]: 104: Hoare triple {58081#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {58081#false} is VALID [2022-04-27 15:19:06,968 INFO L290 TraceCheckUtils]: 105: Hoare triple {58081#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {58081#false} is VALID [2022-04-27 15:19:06,968 INFO L290 TraceCheckUtils]: 106: Hoare triple {58081#false} assume !(~s~0 == ~NP~0); {58081#false} is VALID [2022-04-27 15:19:06,968 INFO L272 TraceCheckUtils]: 107: Hoare triple {58081#false} call errorFn(); {58081#false} is VALID [2022-04-27 15:19:06,968 INFO L290 TraceCheckUtils]: 108: Hoare triple {58081#false} assume !false; {58081#false} is VALID [2022-04-27 15:19:06,969 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:19:06,969 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:19:06,969 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1217288648] [2022-04-27 15:19:06,969 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1217288648] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:19:06,969 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:19:06,969 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [14] imperfect sequences [] total 14 [2022-04-27 15:19:06,969 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [171475136] [2022-04-27 15:19:06,969 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:19:06,970 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 5.5) internal successors, (77), 5 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) Word has length 109 [2022-04-27 15:19:06,970 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:19:06,970 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 14 states, 14 states have (on average 5.5) internal successors, (77), 5 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:07,055 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 109 edges. 109 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:19:07,055 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-04-27 15:19:07,055 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:19:07,055 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-04-27 15:19:07,055 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=40, Invalid=142, Unknown=0, NotChecked=0, Total=182 [2022-04-27 15:19:07,056 INFO L87 Difference]: Start difference. First operand 327 states and 383 transitions. Second operand has 14 states, 14 states have (on average 5.5) internal successors, (77), 5 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:09,185 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:19:15,064 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:15,064 INFO L93 Difference]: Finished difference Result 425 states and 503 transitions. [2022-04-27 15:19:15,064 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2022-04-27 15:19:15,064 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 5.5) internal successors, (77), 5 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) Word has length 109 [2022-04-27 15:19:15,064 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:19:15,065 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 5.5) internal successors, (77), 5 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:15,066 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 13 states to 13 states and 234 transitions. [2022-04-27 15:19:15,066 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 5.5) internal successors, (77), 5 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:15,067 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 13 states to 13 states and 234 transitions. [2022-04-27 15:19:15,067 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 13 states and 234 transitions. [2022-04-27 15:19:15,309 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 234 edges. 234 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:19:15,317 INFO L225 Difference]: With dead ends: 425 [2022-04-27 15:19:15,317 INFO L226 Difference]: Without dead ends: 396 [2022-04-27 15:19:15,317 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 42 GetRequests, 24 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 28 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=84, Invalid=296, Unknown=0, NotChecked=0, Total=380 [2022-04-27 15:19:15,318 INFO L413 NwaCegarLoop]: 147 mSDtfsCounter, 208 mSDsluCounter, 367 mSDsCounter, 0 mSdLazyCounter, 884 mSolverCounterSat, 112 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 213 SdHoareTripleChecker+Valid, 514 SdHoareTripleChecker+Invalid, 997 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 112 IncrementalHoareTripleChecker+Valid, 884 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.7s IncrementalHoareTripleChecker+Time [2022-04-27 15:19:15,318 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [213 Valid, 514 Invalid, 997 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [112 Valid, 884 Invalid, 1 Unknown, 0 Unchecked, 4.7s Time] [2022-04-27 15:19:15,318 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 396 states. [2022-04-27 15:19:15,540 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 396 to 337. [2022-04-27 15:19:15,541 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:19:15,543 INFO L82 GeneralOperation]: Start isEquivalent. First operand 396 states. Second operand has 337 states, 262 states have (on average 1.2099236641221374) internal successors, (317), 266 states have internal predecessors, (317), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:19:15,543 INFO L74 IsIncluded]: Start isIncluded. First operand 396 states. Second operand has 337 states, 262 states have (on average 1.2099236641221374) internal successors, (317), 266 states have internal predecessors, (317), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:19:15,543 INFO L87 Difference]: Start difference. First operand 396 states. Second operand has 337 states, 262 states have (on average 1.2099236641221374) internal successors, (317), 266 states have internal predecessors, (317), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:19:15,549 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:15,549 INFO L93 Difference]: Finished difference Result 396 states and 467 transitions. [2022-04-27 15:19:15,549 INFO L276 IsEmpty]: Start isEmpty. Operand 396 states and 467 transitions. [2022-04-27 15:19:15,549 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:19:15,550 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:19:15,550 INFO L74 IsIncluded]: Start isIncluded. First operand has 337 states, 262 states have (on average 1.2099236641221374) internal successors, (317), 266 states have internal predecessors, (317), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) Second operand 396 states. [2022-04-27 15:19:15,550 INFO L87 Difference]: Start difference. First operand has 337 states, 262 states have (on average 1.2099236641221374) internal successors, (317), 266 states have internal predecessors, (317), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) Second operand 396 states. [2022-04-27 15:19:15,556 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:15,556 INFO L93 Difference]: Finished difference Result 396 states and 467 transitions. [2022-04-27 15:19:15,556 INFO L276 IsEmpty]: Start isEmpty. Operand 396 states and 467 transitions. [2022-04-27 15:19:15,556 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:19:15,556 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:19:15,556 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:19:15,556 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:19:15,556 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 337 states, 262 states have (on average 1.2099236641221374) internal successors, (317), 266 states have internal predecessors, (317), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:19:15,561 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 337 states to 337 states and 393 transitions. [2022-04-27 15:19:15,561 INFO L78 Accepts]: Start accepts. Automaton has 337 states and 393 transitions. Word has length 109 [2022-04-27 15:19:15,561 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:19:15,562 INFO L495 AbstractCegarLoop]: Abstraction has 337 states and 393 transitions. [2022-04-27 15:19:15,562 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 14 states have (on average 5.5) internal successors, (77), 5 states have internal predecessors, (77), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:15,562 INFO L276 IsEmpty]: Start isEmpty. Operand 337 states and 393 transitions. [2022-04-27 15:19:15,562 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 111 [2022-04-27 15:19:15,562 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:19:15,562 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:19:15,562 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable30 [2022-04-27 15:19:15,563 INFO L420 AbstractCegarLoop]: === Iteration 32 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:19:15,563 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:19:15,563 INFO L85 PathProgramCache]: Analyzing trace with hash 1216749988, now seen corresponding path program 1 times [2022-04-27 15:19:15,563 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:19:15,563 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [979330985] [2022-04-27 15:19:15,563 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:19:15,563 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:19:15,631 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:15,792 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:19:15,794 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:15,823 INFO L290 TraceCheckUtils]: 0: Hoare triple {60131#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {60053#true} is VALID [2022-04-27 15:19:15,823 INFO L290 TraceCheckUtils]: 1: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:15,823 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {60053#true} {60053#true} #1270#return; {60053#true} is VALID [2022-04-27 15:19:15,846 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:19:15,848 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:15,863 INFO L290 TraceCheckUtils]: 0: Hoare triple {60132#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {60133#(and (<= 6 ~MPR3~0) (= (+ (- 1) ~NP~0) 0))} is VALID [2022-04-27 15:19:15,864 INFO L290 TraceCheckUtils]: 1: Hoare triple {60133#(and (<= 6 ~MPR3~0) (= (+ (- 1) ~NP~0) 0))} assume true; {60133#(and (<= 6 ~MPR3~0) (= (+ (- 1) ~NP~0) 0))} is VALID [2022-04-27 15:19:15,864 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {60133#(and (<= 6 ~MPR3~0) (= (+ (- 1) ~NP~0) 0))} {60053#true} #1216#return; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:15,872 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:19:15,880 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:15,887 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:15,887 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:15,891 INFO L290 TraceCheckUtils]: 0: Hoare triple {60053#true} ~cond := #in~cond; {60053#true} is VALID [2022-04-27 15:19:15,891 INFO L290 TraceCheckUtils]: 1: Hoare triple {60053#true} assume !(0 == ~cond); {60053#true} is VALID [2022-04-27 15:19:15,891 INFO L290 TraceCheckUtils]: 2: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:15,891 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {60053#true} {60053#true} #1254#return; {60053#true} is VALID [2022-04-27 15:19:15,891 INFO L290 TraceCheckUtils]: 0: Hoare triple {60134#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {60053#true} is VALID [2022-04-27 15:19:15,891 INFO L272 TraceCheckUtils]: 1: Hoare triple {60053#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {60053#true} is VALID [2022-04-27 15:19:15,891 INFO L290 TraceCheckUtils]: 2: Hoare triple {60053#true} ~cond := #in~cond; {60053#true} is VALID [2022-04-27 15:19:15,892 INFO L290 TraceCheckUtils]: 3: Hoare triple {60053#true} assume !(0 == ~cond); {60053#true} is VALID [2022-04-27 15:19:15,892 INFO L290 TraceCheckUtils]: 4: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:15,892 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {60053#true} {60053#true} #1254#return; {60053#true} is VALID [2022-04-27 15:19:15,892 INFO L290 TraceCheckUtils]: 6: Hoare triple {60053#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {60053#true} is VALID [2022-04-27 15:19:15,892 INFO L290 TraceCheckUtils]: 7: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:15,892 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {60053#true} {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} #1218#return; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:15,902 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:19:15,916 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:15,926 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:15,929 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:15,934 INFO L290 TraceCheckUtils]: 0: Hoare triple {60139#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {60053#true} is VALID [2022-04-27 15:19:15,934 INFO L290 TraceCheckUtils]: 1: Hoare triple {60053#true} assume 0 == ~__BLAST_NONDET~5; {60053#true} is VALID [2022-04-27 15:19:15,935 INFO L290 TraceCheckUtils]: 2: Hoare triple {60053#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {60053#true} is VALID [2022-04-27 15:19:15,935 INFO L290 TraceCheckUtils]: 3: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:15,935 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {60053#true} {60053#true} #1176#return; {60053#true} is VALID [2022-04-27 15:19:15,935 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:19:15,936 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:15,941 INFO L290 TraceCheckUtils]: 0: Hoare triple {60134#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {60053#true} is VALID [2022-04-27 15:19:15,941 INFO L290 TraceCheckUtils]: 1: Hoare triple {60053#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {60053#true} is VALID [2022-04-27 15:19:15,941 INFO L290 TraceCheckUtils]: 2: Hoare triple {60053#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {60053#true} is VALID [2022-04-27 15:19:15,941 INFO L290 TraceCheckUtils]: 3: Hoare triple {60053#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {60053#true} is VALID [2022-04-27 15:19:15,941 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {60053#true} {60053#true} #1178#return; {60053#true} is VALID [2022-04-27 15:19:15,941 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:19:15,942 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:15,946 INFO L290 TraceCheckUtils]: 0: Hoare triple {60053#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {60053#true} is VALID [2022-04-27 15:19:15,946 INFO L290 TraceCheckUtils]: 1: Hoare triple {60053#true} assume 0 == ~__BLAST_NONDET~2; {60053#true} is VALID [2022-04-27 15:19:15,946 INFO L290 TraceCheckUtils]: 2: Hoare triple {60053#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {60053#true} is VALID [2022-04-27 15:19:15,946 INFO L290 TraceCheckUtils]: 3: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:15,946 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {60053#true} {60053#true} #1180#return; {60053#true} is VALID [2022-04-27 15:19:15,946 INFO L290 TraceCheckUtils]: 0: Hoare triple {60139#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {60053#true} is VALID [2022-04-27 15:19:15,947 INFO L272 TraceCheckUtils]: 1: Hoare triple {60053#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {60139#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:15,948 INFO L290 TraceCheckUtils]: 2: Hoare triple {60139#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {60053#true} is VALID [2022-04-27 15:19:15,948 INFO L290 TraceCheckUtils]: 3: Hoare triple {60053#true} assume 0 == ~__BLAST_NONDET~5; {60053#true} is VALID [2022-04-27 15:19:15,948 INFO L290 TraceCheckUtils]: 4: Hoare triple {60053#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {60053#true} is VALID [2022-04-27 15:19:15,948 INFO L290 TraceCheckUtils]: 5: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:15,948 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {60053#true} {60053#true} #1176#return; {60053#true} is VALID [2022-04-27 15:19:15,948 INFO L290 TraceCheckUtils]: 7: Hoare triple {60053#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {60053#true} is VALID [2022-04-27 15:19:15,948 INFO L290 TraceCheckUtils]: 8: Hoare triple {60053#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {60053#true} is VALID [2022-04-27 15:19:15,948 INFO L272 TraceCheckUtils]: 9: Hoare triple {60053#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {60134#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:15,948 INFO L290 TraceCheckUtils]: 10: Hoare triple {60134#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L290 TraceCheckUtils]: 11: Hoare triple {60053#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L290 TraceCheckUtils]: 12: Hoare triple {60053#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L290 TraceCheckUtils]: 13: Hoare triple {60053#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {60053#true} {60053#true} #1178#return; {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L290 TraceCheckUtils]: 15: Hoare triple {60053#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L272 TraceCheckUtils]: 16: Hoare triple {60053#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L290 TraceCheckUtils]: 17: Hoare triple {60053#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L290 TraceCheckUtils]: 18: Hoare triple {60053#true} assume 0 == ~__BLAST_NONDET~2; {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L290 TraceCheckUtils]: 19: Hoare triple {60053#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L290 TraceCheckUtils]: 20: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {60053#true} {60053#true} #1180#return; {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L290 TraceCheckUtils]: 22: Hoare triple {60053#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {60053#true} is VALID [2022-04-27 15:19:15,949 INFO L290 TraceCheckUtils]: 23: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:15,950 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {60053#true} {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} #1220#return; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:15,962 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:19:15,964 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:15,968 INFO L290 TraceCheckUtils]: 0: Hoare triple {60155#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {60053#true} is VALID [2022-04-27 15:19:15,968 INFO L290 TraceCheckUtils]: 1: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:15,969 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {60053#true} {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} #1222#return; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:15,969 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 63 [2022-04-27 15:19:15,970 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:15,975 INFO L290 TraceCheckUtils]: 0: Hoare triple {60134#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {60053#true} is VALID [2022-04-27 15:19:15,975 INFO L290 TraceCheckUtils]: 1: Hoare triple {60053#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {60053#true} is VALID [2022-04-27 15:19:15,975 INFO L290 TraceCheckUtils]: 2: Hoare triple {60053#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {60053#true} is VALID [2022-04-27 15:19:15,975 INFO L290 TraceCheckUtils]: 3: Hoare triple {60053#true} assume #res.base == dest.base && #res.offset == dest.offset; {60053#true} is VALID [2022-04-27 15:19:15,976 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {60053#true} {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} #1186#return; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:15,984 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 73 [2022-04-27 15:19:15,989 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:16,012 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:19:16,013 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:16,018 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:16,019 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:16,023 INFO L290 TraceCheckUtils]: 0: Hoare triple {60169#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {60053#true} is VALID [2022-04-27 15:19:16,023 INFO L290 TraceCheckUtils]: 1: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,023 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {60053#true} {60053#true} #1174#return; {60053#true} is VALID [2022-04-27 15:19:16,023 INFO L290 TraceCheckUtils]: 0: Hoare triple {60169#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {60053#true} is VALID [2022-04-27 15:19:16,024 INFO L272 TraceCheckUtils]: 1: Hoare triple {60053#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {60169#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:16,024 INFO L290 TraceCheckUtils]: 2: Hoare triple {60169#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {60053#true} is VALID [2022-04-27 15:19:16,024 INFO L290 TraceCheckUtils]: 3: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,024 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {60053#true} {60053#true} #1174#return; {60053#true} is VALID [2022-04-27 15:19:16,024 INFO L290 TraceCheckUtils]: 5: Hoare triple {60053#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {60053#true} is VALID [2022-04-27 15:19:16,024 INFO L290 TraceCheckUtils]: 6: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,024 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {60053#true} {60053#true} #1210#return; {60053#true} is VALID [2022-04-27 15:19:16,031 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:19:16,032 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:16,036 INFO L290 TraceCheckUtils]: 0: Hoare triple {60173#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {60053#true} is VALID [2022-04-27 15:19:16,036 INFO L290 TraceCheckUtils]: 1: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,036 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {60053#true} {60053#true} #1212#return; {60053#true} is VALID [2022-04-27 15:19:16,036 INFO L290 TraceCheckUtils]: 0: Hoare triple {60156#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {60053#true} is VALID [2022-04-27 15:19:16,036 INFO L290 TraceCheckUtils]: 1: Hoare triple {60053#true} assume 0 != ~compRegistered~0; {60053#true} is VALID [2022-04-27 15:19:16,037 INFO L272 TraceCheckUtils]: 2: Hoare triple {60053#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {60169#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:16,037 INFO L290 TraceCheckUtils]: 3: Hoare triple {60169#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {60053#true} is VALID [2022-04-27 15:19:16,037 INFO L272 TraceCheckUtils]: 4: Hoare triple {60053#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {60169#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:16,037 INFO L290 TraceCheckUtils]: 5: Hoare triple {60169#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {60053#true} is VALID [2022-04-27 15:19:16,037 INFO L290 TraceCheckUtils]: 6: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,037 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {60053#true} {60053#true} #1174#return; {60053#true} is VALID [2022-04-27 15:19:16,038 INFO L290 TraceCheckUtils]: 8: Hoare triple {60053#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {60053#true} is VALID [2022-04-27 15:19:16,038 INFO L290 TraceCheckUtils]: 9: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,038 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {60053#true} {60053#true} #1210#return; {60053#true} is VALID [2022-04-27 15:19:16,038 INFO L290 TraceCheckUtils]: 11: Hoare triple {60053#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {60053#true} is VALID [2022-04-27 15:19:16,038 INFO L290 TraceCheckUtils]: 12: Hoare triple {60053#true} assume -1073741802 == ~compRetStatus~0; {60053#true} is VALID [2022-04-27 15:19:16,038 INFO L272 TraceCheckUtils]: 13: Hoare triple {60053#true} call stubMoreProcessingRequired(); {60173#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:16,038 INFO L290 TraceCheckUtils]: 14: Hoare triple {60173#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {60053#true} is VALID [2022-04-27 15:19:16,038 INFO L290 TraceCheckUtils]: 15: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,038 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {60053#true} {60053#true} #1212#return; {60053#true} is VALID [2022-04-27 15:19:16,038 INFO L290 TraceCheckUtils]: 17: Hoare triple {60053#true} assume !(0 == ~__BLAST_NONDET~11); {60053#true} is VALID [2022-04-27 15:19:16,038 INFO L290 TraceCheckUtils]: 18: Hoare triple {60053#true} assume 1 == ~__BLAST_NONDET~11; {60053#true} is VALID [2022-04-27 15:19:16,038 INFO L290 TraceCheckUtils]: 19: Hoare triple {60053#true} ~returnVal2~0 := -1073741823; {60053#true} is VALID [2022-04-27 15:19:16,038 INFO L290 TraceCheckUtils]: 20: Hoare triple {60053#true} assume !(~s~0 == ~NP~0); {60053#true} is VALID [2022-04-27 15:19:16,039 INFO L290 TraceCheckUtils]: 21: Hoare triple {60053#true} assume ~s~0 == ~MPR1~0; {60053#true} is VALID [2022-04-27 15:19:16,039 INFO L290 TraceCheckUtils]: 22: Hoare triple {60053#true} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {60168#(or (= ~s~0 1) (= ~s~0 ~NP~0))} is VALID [2022-04-27 15:19:16,039 INFO L290 TraceCheckUtils]: 23: Hoare triple {60168#(or (= ~s~0 1) (= ~s~0 ~NP~0))} #res := ~returnVal2~0; {60168#(or (= ~s~0 1) (= ~s~0 ~NP~0))} is VALID [2022-04-27 15:19:16,039 INFO L290 TraceCheckUtils]: 24: Hoare triple {60168#(or (= ~s~0 1) (= ~s~0 ~NP~0))} assume true; {60168#(or (= ~s~0 1) (= ~s~0 ~NP~0))} is VALID [2022-04-27 15:19:16,040 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {60168#(or (= ~s~0 1) (= ~s~0 ~NP~0))} {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} #1192#return; {60130#(and (= ~s~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,041 INFO L272 TraceCheckUtils]: 0: Hoare triple {60053#true} call ULTIMATE.init(); {60131#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:19:16,041 INFO L290 TraceCheckUtils]: 1: Hoare triple {60131#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {60053#true} is VALID [2022-04-27 15:19:16,041 INFO L290 TraceCheckUtils]: 2: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,041 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {60053#true} {60053#true} #1270#return; {60053#true} is VALID [2022-04-27 15:19:16,041 INFO L272 TraceCheckUtils]: 4: Hoare triple {60053#true} call #t~ret213 := main(); {60053#true} is VALID [2022-04-27 15:19:16,041 INFO L290 TraceCheckUtils]: 5: Hoare triple {60053#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {60053#true} is VALID [2022-04-27 15:19:16,042 INFO L272 TraceCheckUtils]: 6: Hoare triple {60053#true} call _BLAST_init(); {60132#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:16,043 INFO L290 TraceCheckUtils]: 7: Hoare triple {60132#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {60133#(and (<= 6 ~MPR3~0) (= (+ (- 1) ~NP~0) 0))} is VALID [2022-04-27 15:19:16,043 INFO L290 TraceCheckUtils]: 8: Hoare triple {60133#(and (<= 6 ~MPR3~0) (= (+ (- 1) ~NP~0) 0))} assume true; {60133#(and (<= 6 ~MPR3~0) (= (+ (- 1) ~NP~0) 0))} is VALID [2022-04-27 15:19:16,043 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {60133#(and (<= 6 ~MPR3~0) (= (+ (- 1) ~NP~0) 0))} {60053#true} #1216#return; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,044 INFO L272 TraceCheckUtils]: 10: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {60134#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:16,044 INFO L290 TraceCheckUtils]: 11: Hoare triple {60134#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {60053#true} is VALID [2022-04-27 15:19:16,044 INFO L272 TraceCheckUtils]: 12: Hoare triple {60053#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {60053#true} is VALID [2022-04-27 15:19:16,044 INFO L290 TraceCheckUtils]: 13: Hoare triple {60053#true} ~cond := #in~cond; {60053#true} is VALID [2022-04-27 15:19:16,044 INFO L290 TraceCheckUtils]: 14: Hoare triple {60053#true} assume !(0 == ~cond); {60053#true} is VALID [2022-04-27 15:19:16,044 INFO L290 TraceCheckUtils]: 15: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,044 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {60053#true} {60053#true} #1254#return; {60053#true} is VALID [2022-04-27 15:19:16,044 INFO L290 TraceCheckUtils]: 17: Hoare triple {60053#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {60053#true} is VALID [2022-04-27 15:19:16,045 INFO L290 TraceCheckUtils]: 18: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,045 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {60053#true} {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} #1218#return; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,045 INFO L290 TraceCheckUtils]: 20: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,046 INFO L290 TraceCheckUtils]: 21: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,046 INFO L290 TraceCheckUtils]: 22: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,047 INFO L272 TraceCheckUtils]: 23: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {60139#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:16,047 INFO L290 TraceCheckUtils]: 24: Hoare triple {60139#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {60053#true} is VALID [2022-04-27 15:19:16,048 INFO L272 TraceCheckUtils]: 25: Hoare triple {60053#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {60139#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:16,048 INFO L290 TraceCheckUtils]: 26: Hoare triple {60139#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {60053#true} is VALID [2022-04-27 15:19:16,048 INFO L290 TraceCheckUtils]: 27: Hoare triple {60053#true} assume 0 == ~__BLAST_NONDET~5; {60053#true} is VALID [2022-04-27 15:19:16,048 INFO L290 TraceCheckUtils]: 28: Hoare triple {60053#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {60053#true} is VALID [2022-04-27 15:19:16,048 INFO L290 TraceCheckUtils]: 29: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,048 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {60053#true} {60053#true} #1176#return; {60053#true} is VALID [2022-04-27 15:19:16,048 INFO L290 TraceCheckUtils]: 31: Hoare triple {60053#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {60053#true} is VALID [2022-04-27 15:19:16,048 INFO L290 TraceCheckUtils]: 32: Hoare triple {60053#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {60053#true} is VALID [2022-04-27 15:19:16,049 INFO L272 TraceCheckUtils]: 33: Hoare triple {60053#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {60134#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:16,049 INFO L290 TraceCheckUtils]: 34: Hoare triple {60134#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {60053#true} is VALID [2022-04-27 15:19:16,049 INFO L290 TraceCheckUtils]: 35: Hoare triple {60053#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {60053#true} is VALID [2022-04-27 15:19:16,049 INFO L290 TraceCheckUtils]: 36: Hoare triple {60053#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {60053#true} is VALID [2022-04-27 15:19:16,049 INFO L290 TraceCheckUtils]: 37: Hoare triple {60053#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {60053#true} is VALID [2022-04-27 15:19:16,049 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {60053#true} {60053#true} #1178#return; {60053#true} is VALID [2022-04-27 15:19:16,049 INFO L290 TraceCheckUtils]: 39: Hoare triple {60053#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {60053#true} is VALID [2022-04-27 15:19:16,049 INFO L272 TraceCheckUtils]: 40: Hoare triple {60053#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {60053#true} is VALID [2022-04-27 15:19:16,049 INFO L290 TraceCheckUtils]: 41: Hoare triple {60053#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {60053#true} is VALID [2022-04-27 15:19:16,049 INFO L290 TraceCheckUtils]: 42: Hoare triple {60053#true} assume 0 == ~__BLAST_NONDET~2; {60053#true} is VALID [2022-04-27 15:19:16,050 INFO L290 TraceCheckUtils]: 43: Hoare triple {60053#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {60053#true} is VALID [2022-04-27 15:19:16,050 INFO L290 TraceCheckUtils]: 44: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,050 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {60053#true} {60053#true} #1180#return; {60053#true} is VALID [2022-04-27 15:19:16,050 INFO L290 TraceCheckUtils]: 46: Hoare triple {60053#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {60053#true} is VALID [2022-04-27 15:19:16,050 INFO L290 TraceCheckUtils]: 47: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,050 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {60053#true} {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} #1220#return; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,051 INFO L290 TraceCheckUtils]: 49: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,051 INFO L272 TraceCheckUtils]: 50: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} call stub_driver_init(); {60155#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:16,051 INFO L290 TraceCheckUtils]: 51: Hoare triple {60155#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {60053#true} is VALID [2022-04-27 15:19:16,051 INFO L290 TraceCheckUtils]: 52: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,052 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {60053#true} {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} #1222#return; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,052 INFO L290 TraceCheckUtils]: 54: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} assume !!(~status~5 >= 0); {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,052 INFO L290 TraceCheckUtils]: 55: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} assume !(0 == ~__BLAST_NONDET~0); {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,052 INFO L290 TraceCheckUtils]: 56: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} assume !(1 == ~__BLAST_NONDET~0); {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,053 INFO L290 TraceCheckUtils]: 57: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} assume !(2 == ~__BLAST_NONDET~0); {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,053 INFO L290 TraceCheckUtils]: 58: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} assume 3 == ~__BLAST_NONDET~0; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,053 INFO L272 TraceCheckUtils]: 59: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,054 INFO L290 TraceCheckUtils]: 60: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,054 INFO L290 TraceCheckUtils]: 61: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} assume 0 == #t~mem81 % 256;havoc #t~mem81; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,055 INFO L290 TraceCheckUtils]: 62: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,055 INFO L272 TraceCheckUtils]: 63: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {60134#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:16,055 INFO L290 TraceCheckUtils]: 64: Hoare triple {60134#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {60053#true} is VALID [2022-04-27 15:19:16,056 INFO L290 TraceCheckUtils]: 65: Hoare triple {60053#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {60053#true} is VALID [2022-04-27 15:19:16,056 INFO L290 TraceCheckUtils]: 66: Hoare triple {60053#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {60053#true} is VALID [2022-04-27 15:19:16,056 INFO L290 TraceCheckUtils]: 67: Hoare triple {60053#true} assume #res.base == dest.base && #res.offset == dest.offset; {60053#true} is VALID [2022-04-27 15:19:16,056 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {60053#true} {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} #1186#return; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,057 INFO L290 TraceCheckUtils]: 69: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,057 INFO L290 TraceCheckUtils]: 70: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} assume !(~s~0 != ~NP~0); {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,057 INFO L290 TraceCheckUtils]: 71: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,058 INFO L290 TraceCheckUtils]: 72: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,059 INFO L272 TraceCheckUtils]: 73: Hoare triple {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {60156#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:16,059 INFO L290 TraceCheckUtils]: 74: Hoare triple {60156#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {60053#true} is VALID [2022-04-27 15:19:16,059 INFO L290 TraceCheckUtils]: 75: Hoare triple {60053#true} assume 0 != ~compRegistered~0; {60053#true} is VALID [2022-04-27 15:19:16,060 INFO L272 TraceCheckUtils]: 76: Hoare triple {60053#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {60169#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:16,060 INFO L290 TraceCheckUtils]: 77: Hoare triple {60169#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {60053#true} is VALID [2022-04-27 15:19:16,060 INFO L272 TraceCheckUtils]: 78: Hoare triple {60053#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {60169#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:16,060 INFO L290 TraceCheckUtils]: 79: Hoare triple {60169#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {60053#true} is VALID [2022-04-27 15:19:16,060 INFO L290 TraceCheckUtils]: 80: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,060 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {60053#true} {60053#true} #1174#return; {60053#true} is VALID [2022-04-27 15:19:16,060 INFO L290 TraceCheckUtils]: 82: Hoare triple {60053#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {60053#true} is VALID [2022-04-27 15:19:16,060 INFO L290 TraceCheckUtils]: 83: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,061 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {60053#true} {60053#true} #1210#return; {60053#true} is VALID [2022-04-27 15:19:16,061 INFO L290 TraceCheckUtils]: 85: Hoare triple {60053#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {60053#true} is VALID [2022-04-27 15:19:16,061 INFO L290 TraceCheckUtils]: 86: Hoare triple {60053#true} assume -1073741802 == ~compRetStatus~0; {60053#true} is VALID [2022-04-27 15:19:16,061 INFO L272 TraceCheckUtils]: 87: Hoare triple {60053#true} call stubMoreProcessingRequired(); {60173#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:16,061 INFO L290 TraceCheckUtils]: 88: Hoare triple {60173#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {60053#true} is VALID [2022-04-27 15:19:16,061 INFO L290 TraceCheckUtils]: 89: Hoare triple {60053#true} assume true; {60053#true} is VALID [2022-04-27 15:19:16,061 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {60053#true} {60053#true} #1212#return; {60053#true} is VALID [2022-04-27 15:19:16,061 INFO L290 TraceCheckUtils]: 91: Hoare triple {60053#true} assume !(0 == ~__BLAST_NONDET~11); {60053#true} is VALID [2022-04-27 15:19:16,061 INFO L290 TraceCheckUtils]: 92: Hoare triple {60053#true} assume 1 == ~__BLAST_NONDET~11; {60053#true} is VALID [2022-04-27 15:19:16,061 INFO L290 TraceCheckUtils]: 93: Hoare triple {60053#true} ~returnVal2~0 := -1073741823; {60053#true} is VALID [2022-04-27 15:19:16,061 INFO L290 TraceCheckUtils]: 94: Hoare triple {60053#true} assume !(~s~0 == ~NP~0); {60053#true} is VALID [2022-04-27 15:19:16,061 INFO L290 TraceCheckUtils]: 95: Hoare triple {60053#true} assume ~s~0 == ~MPR1~0; {60053#true} is VALID [2022-04-27 15:19:16,062 INFO L290 TraceCheckUtils]: 96: Hoare triple {60053#true} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {60168#(or (= ~s~0 1) (= ~s~0 ~NP~0))} is VALID [2022-04-27 15:19:16,062 INFO L290 TraceCheckUtils]: 97: Hoare triple {60168#(or (= ~s~0 1) (= ~s~0 ~NP~0))} #res := ~returnVal2~0; {60168#(or (= ~s~0 1) (= ~s~0 ~NP~0))} is VALID [2022-04-27 15:19:16,062 INFO L290 TraceCheckUtils]: 98: Hoare triple {60168#(or (= ~s~0 1) (= ~s~0 ~NP~0))} assume true; {60168#(or (= ~s~0 1) (= ~s~0 ~NP~0))} is VALID [2022-04-27 15:19:16,063 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {60168#(or (= ~s~0 1) (= ~s~0 ~NP~0))} {60061#(and (= ~NP~0 1) (not (= ~MPR3~0 1)))} #1192#return; {60130#(and (= ~s~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,063 INFO L290 TraceCheckUtils]: 100: Hoare triple {60130#(and (= ~s~0 1) (not (= ~MPR3~0 1)))} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {60130#(and (= ~s~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,063 INFO L290 TraceCheckUtils]: 101: Hoare triple {60130#(and (= ~s~0 1) (not (= ~MPR3~0 1)))} assume 259 == ~status~3; {60130#(and (= ~s~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,064 INFO L272 TraceCheckUtils]: 102: Hoare triple {60130#(and (= ~s~0 1) (not (= ~MPR3~0 1)))} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {60130#(and (= ~s~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,064 INFO L290 TraceCheckUtils]: 103: Hoare triple {60130#(and (= ~s~0 1) (not (= ~MPR3~0 1)))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {60130#(and (= ~s~0 1) (not (= ~MPR3~0 1)))} is VALID [2022-04-27 15:19:16,065 INFO L290 TraceCheckUtils]: 104: Hoare triple {60130#(and (= ~s~0 1) (not (= ~MPR3~0 1)))} assume ~s~0 == ~MPR3~0; {60054#false} is VALID [2022-04-27 15:19:16,065 INFO L290 TraceCheckUtils]: 105: Hoare triple {60054#false} assume !(1 == ~setEventCalled~0); {60054#false} is VALID [2022-04-27 15:19:16,065 INFO L290 TraceCheckUtils]: 106: Hoare triple {60054#false} assume !(1 == ~customIrp~0); {60054#false} is VALID [2022-04-27 15:19:16,065 INFO L290 TraceCheckUtils]: 107: Hoare triple {60054#false} assume ~s~0 == ~MPR3~0; {60054#false} is VALID [2022-04-27 15:19:16,065 INFO L272 TraceCheckUtils]: 108: Hoare triple {60054#false} call errorFn(); {60054#false} is VALID [2022-04-27 15:19:16,065 INFO L290 TraceCheckUtils]: 109: Hoare triple {60054#false} assume !false; {60054#false} is VALID [2022-04-27 15:19:16,065 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:19:16,065 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:19:16,065 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [979330985] [2022-04-27 15:19:16,065 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [979330985] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:19:16,065 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:19:16,066 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [14] imperfect sequences [] total 14 [2022-04-27 15:19:16,066 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [182391070] [2022-04-27 15:19:16,066 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:19:16,066 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 6 states have internal predecessors, (78), 4 states have call successors, (18), 12 states have call predecessors, (18), 3 states have return successors, (14), 3 states have call predecessors, (14), 2 states have call successors, (14) Word has length 110 [2022-04-27 15:19:16,066 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:19:16,066 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 6 states have internal predecessors, (78), 4 states have call successors, (18), 12 states have call predecessors, (18), 3 states have return successors, (14), 3 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:19:16,142 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 110 edges. 110 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:19:16,142 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-04-27 15:19:16,142 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:19:16,142 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-04-27 15:19:16,142 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=42, Invalid=140, Unknown=0, NotChecked=0, Total=182 [2022-04-27 15:19:16,143 INFO L87 Difference]: Start difference. First operand 337 states and 393 transitions. Second operand has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 6 states have internal predecessors, (78), 4 states have call successors, (18), 12 states have call predecessors, (18), 3 states have return successors, (14), 3 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:19:18,310 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:19:22,178 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:22,178 INFO L93 Difference]: Finished difference Result 426 states and 498 transitions. [2022-04-27 15:19:22,178 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2022-04-27 15:19:22,178 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 6 states have internal predecessors, (78), 4 states have call successors, (18), 12 states have call predecessors, (18), 3 states have return successors, (14), 3 states have call predecessors, (14), 2 states have call successors, (14) Word has length 110 [2022-04-27 15:19:22,178 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:19:22,178 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 6 states have internal predecessors, (78), 4 states have call successors, (18), 12 states have call predecessors, (18), 3 states have return successors, (14), 3 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:19:22,180 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 21 states to 21 states and 271 transitions. [2022-04-27 15:19:22,180 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 6 states have internal predecessors, (78), 4 states have call successors, (18), 12 states have call predecessors, (18), 3 states have return successors, (14), 3 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:19:22,182 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 21 states to 21 states and 271 transitions. [2022-04-27 15:19:22,182 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 21 states and 271 transitions. [2022-04-27 15:19:22,465 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 271 edges. 271 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:19:22,471 INFO L225 Difference]: With dead ends: 426 [2022-04-27 15:19:22,472 INFO L226 Difference]: Without dead ends: 379 [2022-04-27 15:19:22,472 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 58 GetRequests, 29 SyntacticMatches, 0 SemanticMatches, 29 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 131 ImplicationChecksByTransitivity, 0.8s TimeCoverageRelationStatistics Valid=258, Invalid=672, Unknown=0, NotChecked=0, Total=930 [2022-04-27 15:19:22,472 INFO L413 NwaCegarLoop]: 128 mSDtfsCounter, 485 mSDsluCounter, 197 mSDsCounter, 0 mSdLazyCounter, 451 mSolverCounterSat, 223 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 490 SdHoareTripleChecker+Valid, 325 SdHoareTripleChecker+Invalid, 675 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 223 IncrementalHoareTripleChecker+Valid, 451 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.1s IncrementalHoareTripleChecker+Time [2022-04-27 15:19:22,472 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [490 Valid, 325 Invalid, 675 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [223 Valid, 451 Invalid, 1 Unknown, 0 Unchecked, 3.1s Time] [2022-04-27 15:19:22,473 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 379 states. [2022-04-27 15:19:22,743 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 379 to 331. [2022-04-27 15:19:22,743 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:19:22,743 INFO L82 GeneralOperation]: Start isEquivalent. First operand 379 states. Second operand has 331 states, 256 states have (on average 1.18359375) internal successors, (303), 260 states have internal predecessors, (303), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:19:22,744 INFO L74 IsIncluded]: Start isIncluded. First operand 379 states. Second operand has 331 states, 256 states have (on average 1.18359375) internal successors, (303), 260 states have internal predecessors, (303), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:19:22,744 INFO L87 Difference]: Start difference. First operand 379 states. Second operand has 331 states, 256 states have (on average 1.18359375) internal successors, (303), 260 states have internal predecessors, (303), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:19:22,749 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:22,749 INFO L93 Difference]: Finished difference Result 379 states and 439 transitions. [2022-04-27 15:19:22,749 INFO L276 IsEmpty]: Start isEmpty. Operand 379 states and 439 transitions. [2022-04-27 15:19:22,749 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:19:22,749 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:19:22,750 INFO L74 IsIncluded]: Start isIncluded. First operand has 331 states, 256 states have (on average 1.18359375) internal successors, (303), 260 states have internal predecessors, (303), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) Second operand 379 states. [2022-04-27 15:19:22,750 INFO L87 Difference]: Start difference. First operand has 331 states, 256 states have (on average 1.18359375) internal successors, (303), 260 states have internal predecessors, (303), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) Second operand 379 states. [2022-04-27 15:19:22,755 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:22,755 INFO L93 Difference]: Finished difference Result 379 states and 439 transitions. [2022-04-27 15:19:22,755 INFO L276 IsEmpty]: Start isEmpty. Operand 379 states and 439 transitions. [2022-04-27 15:19:22,755 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:19:22,755 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:19:22,755 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:19:22,755 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:19:22,755 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 331 states, 256 states have (on average 1.18359375) internal successors, (303), 260 states have internal predecessors, (303), 36 states have call successors, (36), 34 states have call predecessors, (36), 38 states have return successors, (40), 36 states have call predecessors, (40), 32 states have call successors, (40) [2022-04-27 15:19:22,760 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 331 states to 331 states and 379 transitions. [2022-04-27 15:19:22,760 INFO L78 Accepts]: Start accepts. Automaton has 331 states and 379 transitions. Word has length 110 [2022-04-27 15:19:22,760 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:19:22,760 INFO L495 AbstractCegarLoop]: Abstraction has 331 states and 379 transitions. [2022-04-27 15:19:22,760 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 6 states have internal predecessors, (78), 4 states have call successors, (18), 12 states have call predecessors, (18), 3 states have return successors, (14), 3 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:19:22,761 INFO L276 IsEmpty]: Start isEmpty. Operand 331 states and 379 transitions. [2022-04-27 15:19:22,761 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 111 [2022-04-27 15:19:22,761 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:19:22,761 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:19:22,761 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable31 [2022-04-27 15:19:22,761 INFO L420 AbstractCegarLoop]: === Iteration 33 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:19:22,761 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:19:22,762 INFO L85 PathProgramCache]: Analyzing trace with hash -1464166070, now seen corresponding path program 1 times [2022-04-27 15:19:22,762 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:19:22,762 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [872305403] [2022-04-27 15:19:22,762 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:19:22,762 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:19:22,862 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:22,960 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:19:22,961 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:22,972 INFO L290 TraceCheckUtils]: 0: Hoare triple {62086#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {62008#true} is VALID [2022-04-27 15:19:22,972 INFO L290 TraceCheckUtils]: 1: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:22,972 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {62008#true} {62008#true} #1270#return; {62008#true} is VALID [2022-04-27 15:19:22,997 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:19:22,998 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,002 INFO L290 TraceCheckUtils]: 0: Hoare triple {62087#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {62008#true} is VALID [2022-04-27 15:19:23,002 INFO L290 TraceCheckUtils]: 1: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,002 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {62008#true} {62008#true} #1216#return; {62008#true} is VALID [2022-04-27 15:19:23,009 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:19:23,014 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,020 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:23,020 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,024 INFO L290 TraceCheckUtils]: 0: Hoare triple {62008#true} ~cond := #in~cond; {62008#true} is VALID [2022-04-27 15:19:23,024 INFO L290 TraceCheckUtils]: 1: Hoare triple {62008#true} assume !(0 == ~cond); {62008#true} is VALID [2022-04-27 15:19:23,025 INFO L290 TraceCheckUtils]: 2: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,025 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {62008#true} {62008#true} #1254#return; {62008#true} is VALID [2022-04-27 15:19:23,025 INFO L290 TraceCheckUtils]: 0: Hoare triple {62088#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {62008#true} is VALID [2022-04-27 15:19:23,025 INFO L272 TraceCheckUtils]: 1: Hoare triple {62008#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {62008#true} is VALID [2022-04-27 15:19:23,025 INFO L290 TraceCheckUtils]: 2: Hoare triple {62008#true} ~cond := #in~cond; {62008#true} is VALID [2022-04-27 15:19:23,025 INFO L290 TraceCheckUtils]: 3: Hoare triple {62008#true} assume !(0 == ~cond); {62008#true} is VALID [2022-04-27 15:19:23,025 INFO L290 TraceCheckUtils]: 4: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,025 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {62008#true} {62008#true} #1254#return; {62008#true} is VALID [2022-04-27 15:19:23,025 INFO L290 TraceCheckUtils]: 6: Hoare triple {62008#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {62008#true} is VALID [2022-04-27 15:19:23,025 INFO L290 TraceCheckUtils]: 7: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,025 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {62008#true} {62008#true} #1218#return; {62008#true} is VALID [2022-04-27 15:19:23,035 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:19:23,046 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,054 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:23,058 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,076 INFO L290 TraceCheckUtils]: 0: Hoare triple {62093#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {62008#true} is VALID [2022-04-27 15:19:23,076 INFO L290 TraceCheckUtils]: 1: Hoare triple {62008#true} assume 0 == ~__BLAST_NONDET~5; {62008#true} is VALID [2022-04-27 15:19:23,076 INFO L290 TraceCheckUtils]: 2: Hoare triple {62008#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {62008#true} is VALID [2022-04-27 15:19:23,076 INFO L290 TraceCheckUtils]: 3: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,076 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {62008#true} {62008#true} #1176#return; {62008#true} is VALID [2022-04-27 15:19:23,076 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:19:23,078 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,083 INFO L290 TraceCheckUtils]: 0: Hoare triple {62088#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {62008#true} is VALID [2022-04-27 15:19:23,083 INFO L290 TraceCheckUtils]: 1: Hoare triple {62008#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {62008#true} is VALID [2022-04-27 15:19:23,083 INFO L290 TraceCheckUtils]: 2: Hoare triple {62008#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {62008#true} is VALID [2022-04-27 15:19:23,083 INFO L290 TraceCheckUtils]: 3: Hoare triple {62008#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {62008#true} is VALID [2022-04-27 15:19:23,083 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {62008#true} {62008#true} #1178#return; {62008#true} is VALID [2022-04-27 15:19:23,083 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:19:23,084 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,089 INFO L290 TraceCheckUtils]: 0: Hoare triple {62008#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {62008#true} is VALID [2022-04-27 15:19:23,089 INFO L290 TraceCheckUtils]: 1: Hoare triple {62008#true} assume 0 == ~__BLAST_NONDET~2; {62008#true} is VALID [2022-04-27 15:19:23,089 INFO L290 TraceCheckUtils]: 2: Hoare triple {62008#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {62008#true} is VALID [2022-04-27 15:19:23,090 INFO L290 TraceCheckUtils]: 3: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,090 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {62008#true} {62008#true} #1180#return; {62008#true} is VALID [2022-04-27 15:19:23,090 INFO L290 TraceCheckUtils]: 0: Hoare triple {62093#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {62008#true} is VALID [2022-04-27 15:19:23,091 INFO L272 TraceCheckUtils]: 1: Hoare triple {62008#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {62093#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:23,091 INFO L290 TraceCheckUtils]: 2: Hoare triple {62093#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {62008#true} is VALID [2022-04-27 15:19:23,091 INFO L290 TraceCheckUtils]: 3: Hoare triple {62008#true} assume 0 == ~__BLAST_NONDET~5; {62008#true} is VALID [2022-04-27 15:19:23,091 INFO L290 TraceCheckUtils]: 4: Hoare triple {62008#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {62008#true} is VALID [2022-04-27 15:19:23,091 INFO L290 TraceCheckUtils]: 5: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,091 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {62008#true} {62008#true} #1176#return; {62008#true} is VALID [2022-04-27 15:19:23,091 INFO L290 TraceCheckUtils]: 7: Hoare triple {62008#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {62008#true} is VALID [2022-04-27 15:19:23,091 INFO L290 TraceCheckUtils]: 8: Hoare triple {62008#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L272 TraceCheckUtils]: 9: Hoare triple {62008#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {62088#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:23,092 INFO L290 TraceCheckUtils]: 10: Hoare triple {62088#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L290 TraceCheckUtils]: 11: Hoare triple {62008#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L290 TraceCheckUtils]: 12: Hoare triple {62008#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L290 TraceCheckUtils]: 13: Hoare triple {62008#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {62008#true} {62008#true} #1178#return; {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L290 TraceCheckUtils]: 15: Hoare triple {62008#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L272 TraceCheckUtils]: 16: Hoare triple {62008#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L290 TraceCheckUtils]: 17: Hoare triple {62008#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L290 TraceCheckUtils]: 18: Hoare triple {62008#true} assume 0 == ~__BLAST_NONDET~2; {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L290 TraceCheckUtils]: 19: Hoare triple {62008#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L290 TraceCheckUtils]: 20: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {62008#true} {62008#true} #1180#return; {62008#true} is VALID [2022-04-27 15:19:23,092 INFO L290 TraceCheckUtils]: 22: Hoare triple {62008#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {62008#true} is VALID [2022-04-27 15:19:23,093 INFO L290 TraceCheckUtils]: 23: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,093 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {62008#true} {62008#true} #1220#return; {62008#true} is VALID [2022-04-27 15:19:23,106 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:19:23,107 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,111 INFO L290 TraceCheckUtils]: 0: Hoare triple {62109#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {62008#true} is VALID [2022-04-27 15:19:23,111 INFO L290 TraceCheckUtils]: 1: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,111 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {62008#true} {62008#true} #1222#return; {62008#true} is VALID [2022-04-27 15:19:23,111 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 63 [2022-04-27 15:19:23,112 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,116 INFO L290 TraceCheckUtils]: 0: Hoare triple {62088#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {62008#true} is VALID [2022-04-27 15:19:23,117 INFO L290 TraceCheckUtils]: 1: Hoare triple {62008#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {62008#true} is VALID [2022-04-27 15:19:23,117 INFO L290 TraceCheckUtils]: 2: Hoare triple {62008#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {62008#true} is VALID [2022-04-27 15:19:23,117 INFO L290 TraceCheckUtils]: 3: Hoare triple {62008#true} assume #res.base == dest.base && #res.offset == dest.offset; {62008#true} is VALID [2022-04-27 15:19:23,117 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {62008#true} {62008#true} #1186#return; {62008#true} is VALID [2022-04-27 15:19:23,125 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 73 [2022-04-27 15:19:23,130 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,179 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:19:23,181 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,186 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:23,187 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,191 INFO L290 TraceCheckUtils]: 0: Hoare triple {62124#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {62008#true} is VALID [2022-04-27 15:19:23,192 INFO L290 TraceCheckUtils]: 1: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,192 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {62008#true} {62008#true} #1174#return; {62008#true} is VALID [2022-04-27 15:19:23,192 INFO L290 TraceCheckUtils]: 0: Hoare triple {62124#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {62008#true} is VALID [2022-04-27 15:19:23,192 INFO L272 TraceCheckUtils]: 1: Hoare triple {62008#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {62124#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:23,192 INFO L290 TraceCheckUtils]: 2: Hoare triple {62124#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {62008#true} is VALID [2022-04-27 15:19:23,193 INFO L290 TraceCheckUtils]: 3: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,193 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {62008#true} {62008#true} #1174#return; {62008#true} is VALID [2022-04-27 15:19:23,193 INFO L290 TraceCheckUtils]: 5: Hoare triple {62008#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {62008#true} is VALID [2022-04-27 15:19:23,193 INFO L290 TraceCheckUtils]: 6: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,193 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {62008#true} {62008#true} #1210#return; {62008#true} is VALID [2022-04-27 15:19:23,202 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:19:23,203 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:23,207 INFO L290 TraceCheckUtils]: 0: Hoare triple {62128#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {62008#true} is VALID [2022-04-27 15:19:23,207 INFO L290 TraceCheckUtils]: 1: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,207 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {62008#true} {62008#true} #1212#return; {62008#true} is VALID [2022-04-27 15:19:23,207 INFO L290 TraceCheckUtils]: 0: Hoare triple {62110#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {62008#true} is VALID [2022-04-27 15:19:23,207 INFO L290 TraceCheckUtils]: 1: Hoare triple {62008#true} assume 0 != ~compRegistered~0; {62008#true} is VALID [2022-04-27 15:19:23,208 INFO L272 TraceCheckUtils]: 2: Hoare triple {62008#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {62124#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:23,208 INFO L290 TraceCheckUtils]: 3: Hoare triple {62124#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {62008#true} is VALID [2022-04-27 15:19:23,209 INFO L272 TraceCheckUtils]: 4: Hoare triple {62008#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {62124#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:23,209 INFO L290 TraceCheckUtils]: 5: Hoare triple {62124#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {62008#true} is VALID [2022-04-27 15:19:23,209 INFO L290 TraceCheckUtils]: 6: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,209 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {62008#true} {62008#true} #1174#return; {62008#true} is VALID [2022-04-27 15:19:23,209 INFO L290 TraceCheckUtils]: 8: Hoare triple {62008#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {62008#true} is VALID [2022-04-27 15:19:23,209 INFO L290 TraceCheckUtils]: 9: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,209 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {62008#true} {62008#true} #1210#return; {62008#true} is VALID [2022-04-27 15:19:23,209 INFO L290 TraceCheckUtils]: 11: Hoare triple {62008#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {62008#true} is VALID [2022-04-27 15:19:23,209 INFO L290 TraceCheckUtils]: 12: Hoare triple {62008#true} assume -1073741802 == ~compRetStatus~0; {62008#true} is VALID [2022-04-27 15:19:23,210 INFO L272 TraceCheckUtils]: 13: Hoare triple {62008#true} call stubMoreProcessingRequired(); {62128#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:23,210 INFO L290 TraceCheckUtils]: 14: Hoare triple {62128#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {62008#true} is VALID [2022-04-27 15:19:23,210 INFO L290 TraceCheckUtils]: 15: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,210 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {62008#true} {62008#true} #1212#return; {62008#true} is VALID [2022-04-27 15:19:23,210 INFO L290 TraceCheckUtils]: 17: Hoare triple {62008#true} assume !(0 == ~__BLAST_NONDET~11); {62008#true} is VALID [2022-04-27 15:19:23,210 INFO L290 TraceCheckUtils]: 18: Hoare triple {62008#true} assume !(1 == ~__BLAST_NONDET~11); {62008#true} is VALID [2022-04-27 15:19:23,211 INFO L290 TraceCheckUtils]: 19: Hoare triple {62008#true} ~returnVal2~0 := 259; {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:23,211 INFO L290 TraceCheckUtils]: 20: Hoare triple {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} assume !(~s~0 == ~NP~0); {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:23,212 INFO L290 TraceCheckUtils]: 21: Hoare triple {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} assume ~s~0 == ~MPR1~0; {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:23,213 INFO L290 TraceCheckUtils]: 22: Hoare triple {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:23,213 INFO L290 TraceCheckUtils]: 23: Hoare triple {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} #res := ~returnVal2~0; {62123#(and (<= 259 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 259))} is VALID [2022-04-27 15:19:23,213 INFO L290 TraceCheckUtils]: 24: Hoare triple {62123#(and (<= 259 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 259))} assume true; {62123#(and (<= 259 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 259))} is VALID [2022-04-27 15:19:23,214 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {62123#(and (<= 259 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 259))} {62008#true} #1192#return; {62084#(and (<= 259 |KbFilter_PnP_#t~ret109|) (<= |KbFilter_PnP_#t~ret109| 259))} is VALID [2022-04-27 15:19:23,215 INFO L272 TraceCheckUtils]: 0: Hoare triple {62008#true} call ULTIMATE.init(); {62086#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:19:23,215 INFO L290 TraceCheckUtils]: 1: Hoare triple {62086#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {62008#true} is VALID [2022-04-27 15:19:23,215 INFO L290 TraceCheckUtils]: 2: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,215 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {62008#true} {62008#true} #1270#return; {62008#true} is VALID [2022-04-27 15:19:23,215 INFO L272 TraceCheckUtils]: 4: Hoare triple {62008#true} call #t~ret213 := main(); {62008#true} is VALID [2022-04-27 15:19:23,215 INFO L290 TraceCheckUtils]: 5: Hoare triple {62008#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {62008#true} is VALID [2022-04-27 15:19:23,216 INFO L272 TraceCheckUtils]: 6: Hoare triple {62008#true} call _BLAST_init(); {62087#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:23,216 INFO L290 TraceCheckUtils]: 7: Hoare triple {62087#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {62008#true} is VALID [2022-04-27 15:19:23,216 INFO L290 TraceCheckUtils]: 8: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,216 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {62008#true} {62008#true} #1216#return; {62008#true} is VALID [2022-04-27 15:19:23,217 INFO L272 TraceCheckUtils]: 10: Hoare triple {62008#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {62088#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:23,217 INFO L290 TraceCheckUtils]: 11: Hoare triple {62088#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {62008#true} is VALID [2022-04-27 15:19:23,217 INFO L272 TraceCheckUtils]: 12: Hoare triple {62008#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {62008#true} is VALID [2022-04-27 15:19:23,217 INFO L290 TraceCheckUtils]: 13: Hoare triple {62008#true} ~cond := #in~cond; {62008#true} is VALID [2022-04-27 15:19:23,217 INFO L290 TraceCheckUtils]: 14: Hoare triple {62008#true} assume !(0 == ~cond); {62008#true} is VALID [2022-04-27 15:19:23,217 INFO L290 TraceCheckUtils]: 15: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,217 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {62008#true} {62008#true} #1254#return; {62008#true} is VALID [2022-04-27 15:19:23,217 INFO L290 TraceCheckUtils]: 17: Hoare triple {62008#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {62008#true} is VALID [2022-04-27 15:19:23,218 INFO L290 TraceCheckUtils]: 18: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,218 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {62008#true} {62008#true} #1218#return; {62008#true} is VALID [2022-04-27 15:19:23,218 INFO L290 TraceCheckUtils]: 20: Hoare triple {62008#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {62008#true} is VALID [2022-04-27 15:19:23,218 INFO L290 TraceCheckUtils]: 21: Hoare triple {62008#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {62008#true} is VALID [2022-04-27 15:19:23,218 INFO L290 TraceCheckUtils]: 22: Hoare triple {62008#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {62008#true} is VALID [2022-04-27 15:19:23,218 INFO L272 TraceCheckUtils]: 23: Hoare triple {62008#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {62093#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:23,219 INFO L290 TraceCheckUtils]: 24: Hoare triple {62093#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {62008#true} is VALID [2022-04-27 15:19:23,219 INFO L272 TraceCheckUtils]: 25: Hoare triple {62008#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {62093#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:23,220 INFO L290 TraceCheckUtils]: 26: Hoare triple {62093#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {62008#true} is VALID [2022-04-27 15:19:23,220 INFO L290 TraceCheckUtils]: 27: Hoare triple {62008#true} assume 0 == ~__BLAST_NONDET~5; {62008#true} is VALID [2022-04-27 15:19:23,220 INFO L290 TraceCheckUtils]: 28: Hoare triple {62008#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {62008#true} is VALID [2022-04-27 15:19:23,220 INFO L290 TraceCheckUtils]: 29: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,220 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {62008#true} {62008#true} #1176#return; {62008#true} is VALID [2022-04-27 15:19:23,220 INFO L290 TraceCheckUtils]: 31: Hoare triple {62008#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {62008#true} is VALID [2022-04-27 15:19:23,220 INFO L290 TraceCheckUtils]: 32: Hoare triple {62008#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {62008#true} is VALID [2022-04-27 15:19:23,220 INFO L272 TraceCheckUtils]: 33: Hoare triple {62008#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {62088#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:23,221 INFO L290 TraceCheckUtils]: 34: Hoare triple {62088#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L290 TraceCheckUtils]: 35: Hoare triple {62008#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L290 TraceCheckUtils]: 36: Hoare triple {62008#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L290 TraceCheckUtils]: 37: Hoare triple {62008#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {62008#true} {62008#true} #1178#return; {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L290 TraceCheckUtils]: 39: Hoare triple {62008#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L272 TraceCheckUtils]: 40: Hoare triple {62008#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L290 TraceCheckUtils]: 41: Hoare triple {62008#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L290 TraceCheckUtils]: 42: Hoare triple {62008#true} assume 0 == ~__BLAST_NONDET~2; {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L290 TraceCheckUtils]: 43: Hoare triple {62008#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L290 TraceCheckUtils]: 44: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {62008#true} {62008#true} #1180#return; {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L290 TraceCheckUtils]: 46: Hoare triple {62008#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L290 TraceCheckUtils]: 47: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {62008#true} {62008#true} #1220#return; {62008#true} is VALID [2022-04-27 15:19:23,221 INFO L290 TraceCheckUtils]: 49: Hoare triple {62008#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {62008#true} is VALID [2022-04-27 15:19:23,222 INFO L272 TraceCheckUtils]: 50: Hoare triple {62008#true} call stub_driver_init(); {62109#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:23,222 INFO L290 TraceCheckUtils]: 51: Hoare triple {62109#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {62008#true} is VALID [2022-04-27 15:19:23,222 INFO L290 TraceCheckUtils]: 52: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,222 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {62008#true} {62008#true} #1222#return; {62008#true} is VALID [2022-04-27 15:19:23,222 INFO L290 TraceCheckUtils]: 54: Hoare triple {62008#true} assume !!(~status~5 >= 0); {62008#true} is VALID [2022-04-27 15:19:23,222 INFO L290 TraceCheckUtils]: 55: Hoare triple {62008#true} assume !(0 == ~__BLAST_NONDET~0); {62008#true} is VALID [2022-04-27 15:19:23,222 INFO L290 TraceCheckUtils]: 56: Hoare triple {62008#true} assume !(1 == ~__BLAST_NONDET~0); {62008#true} is VALID [2022-04-27 15:19:23,222 INFO L290 TraceCheckUtils]: 57: Hoare triple {62008#true} assume !(2 == ~__BLAST_NONDET~0); {62008#true} is VALID [2022-04-27 15:19:23,222 INFO L290 TraceCheckUtils]: 58: Hoare triple {62008#true} assume 3 == ~__BLAST_NONDET~0; {62008#true} is VALID [2022-04-27 15:19:23,223 INFO L272 TraceCheckUtils]: 59: Hoare triple {62008#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {62008#true} is VALID [2022-04-27 15:19:23,223 INFO L290 TraceCheckUtils]: 60: Hoare triple {62008#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {62008#true} is VALID [2022-04-27 15:19:23,223 INFO L290 TraceCheckUtils]: 61: Hoare triple {62008#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {62008#true} is VALID [2022-04-27 15:19:23,223 INFO L290 TraceCheckUtils]: 62: Hoare triple {62008#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {62008#true} is VALID [2022-04-27 15:19:23,223 INFO L272 TraceCheckUtils]: 63: Hoare triple {62008#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {62088#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:23,224 INFO L290 TraceCheckUtils]: 64: Hoare triple {62088#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {62008#true} is VALID [2022-04-27 15:19:23,224 INFO L290 TraceCheckUtils]: 65: Hoare triple {62008#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {62008#true} is VALID [2022-04-27 15:19:23,224 INFO L290 TraceCheckUtils]: 66: Hoare triple {62008#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {62008#true} is VALID [2022-04-27 15:19:23,224 INFO L290 TraceCheckUtils]: 67: Hoare triple {62008#true} assume #res.base == dest.base && #res.offset == dest.offset; {62008#true} is VALID [2022-04-27 15:19:23,224 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {62008#true} {62008#true} #1186#return; {62008#true} is VALID [2022-04-27 15:19:23,224 INFO L290 TraceCheckUtils]: 69: Hoare triple {62008#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {62008#true} is VALID [2022-04-27 15:19:23,224 INFO L290 TraceCheckUtils]: 70: Hoare triple {62008#true} assume !(~s~0 != ~NP~0); {62008#true} is VALID [2022-04-27 15:19:23,224 INFO L290 TraceCheckUtils]: 71: Hoare triple {62008#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {62008#true} is VALID [2022-04-27 15:19:23,224 INFO L290 TraceCheckUtils]: 72: Hoare triple {62008#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {62008#true} is VALID [2022-04-27 15:19:23,225 INFO L272 TraceCheckUtils]: 73: Hoare triple {62008#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {62110#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:23,225 INFO L290 TraceCheckUtils]: 74: Hoare triple {62110#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {62008#true} is VALID [2022-04-27 15:19:23,225 INFO L290 TraceCheckUtils]: 75: Hoare triple {62008#true} assume 0 != ~compRegistered~0; {62008#true} is VALID [2022-04-27 15:19:23,225 INFO L272 TraceCheckUtils]: 76: Hoare triple {62008#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {62124#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:23,226 INFO L290 TraceCheckUtils]: 77: Hoare triple {62124#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {62008#true} is VALID [2022-04-27 15:19:23,226 INFO L272 TraceCheckUtils]: 78: Hoare triple {62008#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {62124#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:23,226 INFO L290 TraceCheckUtils]: 79: Hoare triple {62124#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {62008#true} is VALID [2022-04-27 15:19:23,226 INFO L290 TraceCheckUtils]: 80: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,226 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {62008#true} {62008#true} #1174#return; {62008#true} is VALID [2022-04-27 15:19:23,226 INFO L290 TraceCheckUtils]: 82: Hoare triple {62008#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {62008#true} is VALID [2022-04-27 15:19:23,226 INFO L290 TraceCheckUtils]: 83: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,226 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {62008#true} {62008#true} #1210#return; {62008#true} is VALID [2022-04-27 15:19:23,226 INFO L290 TraceCheckUtils]: 85: Hoare triple {62008#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {62008#true} is VALID [2022-04-27 15:19:23,226 INFO L290 TraceCheckUtils]: 86: Hoare triple {62008#true} assume -1073741802 == ~compRetStatus~0; {62008#true} is VALID [2022-04-27 15:19:23,227 INFO L272 TraceCheckUtils]: 87: Hoare triple {62008#true} call stubMoreProcessingRequired(); {62128#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:23,227 INFO L290 TraceCheckUtils]: 88: Hoare triple {62128#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {62008#true} is VALID [2022-04-27 15:19:23,227 INFO L290 TraceCheckUtils]: 89: Hoare triple {62008#true} assume true; {62008#true} is VALID [2022-04-27 15:19:23,227 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {62008#true} {62008#true} #1212#return; {62008#true} is VALID [2022-04-27 15:19:23,227 INFO L290 TraceCheckUtils]: 91: Hoare triple {62008#true} assume !(0 == ~__BLAST_NONDET~11); {62008#true} is VALID [2022-04-27 15:19:23,227 INFO L290 TraceCheckUtils]: 92: Hoare triple {62008#true} assume !(1 == ~__BLAST_NONDET~11); {62008#true} is VALID [2022-04-27 15:19:23,228 INFO L290 TraceCheckUtils]: 93: Hoare triple {62008#true} ~returnVal2~0 := 259; {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:23,228 INFO L290 TraceCheckUtils]: 94: Hoare triple {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} assume !(~s~0 == ~NP~0); {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:23,228 INFO L290 TraceCheckUtils]: 95: Hoare triple {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} assume ~s~0 == ~MPR1~0; {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:23,229 INFO L290 TraceCheckUtils]: 96: Hoare triple {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:23,229 INFO L290 TraceCheckUtils]: 97: Hoare triple {62122#(and (<= IofCallDriver_~returnVal2~0 259) (<= 259 IofCallDriver_~returnVal2~0))} #res := ~returnVal2~0; {62123#(and (<= 259 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 259))} is VALID [2022-04-27 15:19:23,229 INFO L290 TraceCheckUtils]: 98: Hoare triple {62123#(and (<= 259 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 259))} assume true; {62123#(and (<= 259 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 259))} is VALID [2022-04-27 15:19:23,230 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {62123#(and (<= 259 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 259))} {62008#true} #1192#return; {62084#(and (<= 259 |KbFilter_PnP_#t~ret109|) (<= |KbFilter_PnP_#t~ret109| 259))} is VALID [2022-04-27 15:19:23,230 INFO L290 TraceCheckUtils]: 100: Hoare triple {62084#(and (<= 259 |KbFilter_PnP_#t~ret109|) (<= |KbFilter_PnP_#t~ret109| 259))} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {62085#(and (< 258 KbFilter_PnP_~status~3) (<= KbFilter_PnP_~status~3 259))} is VALID [2022-04-27 15:19:23,231 INFO L290 TraceCheckUtils]: 101: Hoare triple {62085#(and (< 258 KbFilter_PnP_~status~3) (<= KbFilter_PnP_~status~3 259))} assume !(259 == ~status~3); {62009#false} is VALID [2022-04-27 15:19:23,231 INFO L290 TraceCheckUtils]: 102: Hoare triple {62009#false} assume ~status~3 >= 0; {62009#false} is VALID [2022-04-27 15:19:23,231 INFO L290 TraceCheckUtils]: 103: Hoare triple {62009#false} assume !(~myStatus~0 >= 0); {62009#false} is VALID [2022-04-27 15:19:23,231 INFO L290 TraceCheckUtils]: 104: Hoare triple {62009#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {62009#false} is VALID [2022-04-27 15:19:23,231 INFO L272 TraceCheckUtils]: 105: Hoare triple {62009#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {62009#false} is VALID [2022-04-27 15:19:23,231 INFO L290 TraceCheckUtils]: 106: Hoare triple {62009#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {62009#false} is VALID [2022-04-27 15:19:23,231 INFO L290 TraceCheckUtils]: 107: Hoare triple {62009#false} assume !(~s~0 == ~NP~0); {62009#false} is VALID [2022-04-27 15:19:23,231 INFO L272 TraceCheckUtils]: 108: Hoare triple {62009#false} call errorFn(); {62009#false} is VALID [2022-04-27 15:19:23,231 INFO L290 TraceCheckUtils]: 109: Hoare triple {62009#false} assume !false; {62009#false} is VALID [2022-04-27 15:19:23,231 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:19:23,232 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:19:23,232 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [872305403] [2022-04-27 15:19:23,232 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [872305403] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:19:23,232 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:19:23,232 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [14] imperfect sequences [] total 14 [2022-04-27 15:19:23,232 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [464793303] [2022-04-27 15:19:23,232 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:19:23,232 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 5 states have internal predecessors, (78), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) Word has length 110 [2022-04-27 15:19:23,232 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:19:23,233 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 5 states have internal predecessors, (78), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:23,307 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 110 edges. 110 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:19:23,307 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-04-27 15:19:23,307 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:19:23,307 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-04-27 15:19:23,307 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=40, Invalid=142, Unknown=0, NotChecked=0, Total=182 [2022-04-27 15:19:23,308 INFO L87 Difference]: Start difference. First operand 331 states and 379 transitions. Second operand has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 5 states have internal predecessors, (78), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:25,424 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:19:30,482 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:30,482 INFO L93 Difference]: Finished difference Result 439 states and 509 transitions. [2022-04-27 15:19:30,483 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2022-04-27 15:19:30,483 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 5 states have internal predecessors, (78), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) Word has length 110 [2022-04-27 15:19:30,483 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:19:30,483 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 5 states have internal predecessors, (78), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:30,484 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 13 states to 13 states and 255 transitions. [2022-04-27 15:19:30,484 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 5 states have internal predecessors, (78), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:30,486 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 13 states to 13 states and 255 transitions. [2022-04-27 15:19:30,486 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 13 states and 255 transitions. [2022-04-27 15:19:30,729 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 255 edges. 255 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:19:30,735 INFO L225 Difference]: With dead ends: 439 [2022-04-27 15:19:30,735 INFO L226 Difference]: Without dead ends: 370 [2022-04-27 15:19:30,735 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 43 GetRequests, 25 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 28 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=84, Invalid=296, Unknown=0, NotChecked=0, Total=380 [2022-04-27 15:19:30,735 INFO L413 NwaCegarLoop]: 147 mSDtfsCounter, 275 mSDsluCounter, 334 mSDsCounter, 0 mSdLazyCounter, 821 mSolverCounterSat, 139 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 280 SdHoareTripleChecker+Valid, 481 SdHoareTripleChecker+Invalid, 961 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 139 IncrementalHoareTripleChecker+Valid, 821 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.8s IncrementalHoareTripleChecker+Time [2022-04-27 15:19:30,735 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [280 Valid, 481 Invalid, 961 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [139 Valid, 821 Invalid, 1 Unknown, 0 Unchecked, 3.8s Time] [2022-04-27 15:19:30,736 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 370 states. [2022-04-27 15:19:31,001 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 370 to 321. [2022-04-27 15:19:31,001 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:19:31,002 INFO L82 GeneralOperation]: Start isEquivalent. First operand 370 states. Second operand has 321 states, 248 states have (on average 1.1653225806451613) internal successors, (289), 252 states have internal predecessors, (289), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:19:31,002 INFO L74 IsIncluded]: Start isIncluded. First operand 370 states. Second operand has 321 states, 248 states have (on average 1.1653225806451613) internal successors, (289), 252 states have internal predecessors, (289), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:19:31,002 INFO L87 Difference]: Start difference. First operand 370 states. Second operand has 321 states, 248 states have (on average 1.1653225806451613) internal successors, (289), 252 states have internal predecessors, (289), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:19:31,007 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:31,007 INFO L93 Difference]: Finished difference Result 370 states and 425 transitions. [2022-04-27 15:19:31,007 INFO L276 IsEmpty]: Start isEmpty. Operand 370 states and 425 transitions. [2022-04-27 15:19:31,007 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:19:31,007 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:19:31,008 INFO L74 IsIncluded]: Start isIncluded. First operand has 321 states, 248 states have (on average 1.1653225806451613) internal successors, (289), 252 states have internal predecessors, (289), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) Second operand 370 states. [2022-04-27 15:19:31,008 INFO L87 Difference]: Start difference. First operand has 321 states, 248 states have (on average 1.1653225806451613) internal successors, (289), 252 states have internal predecessors, (289), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) Second operand 370 states. [2022-04-27 15:19:31,012 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:31,012 INFO L93 Difference]: Finished difference Result 370 states and 425 transitions. [2022-04-27 15:19:31,012 INFO L276 IsEmpty]: Start isEmpty. Operand 370 states and 425 transitions. [2022-04-27 15:19:31,013 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:19:31,013 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:19:31,013 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:19:31,013 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:19:31,013 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 321 states, 248 states have (on average 1.1653225806451613) internal successors, (289), 252 states have internal predecessors, (289), 36 states have call successors, (36), 34 states have call predecessors, (36), 36 states have return successors, (38), 34 states have call predecessors, (38), 32 states have call successors, (38) [2022-04-27 15:19:31,017 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 321 states to 321 states and 363 transitions. [2022-04-27 15:19:31,018 INFO L78 Accepts]: Start accepts. Automaton has 321 states and 363 transitions. Word has length 110 [2022-04-27 15:19:31,018 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:19:31,018 INFO L495 AbstractCegarLoop]: Abstraction has 321 states and 363 transitions. [2022-04-27 15:19:31,018 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 14 states have (on average 5.571428571428571) internal successors, (78), 5 states have internal predecessors, (78), 2 states have call successors, (18), 10 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 1 states have call successors, (14) [2022-04-27 15:19:31,018 INFO L276 IsEmpty]: Start isEmpty. Operand 321 states and 363 transitions. [2022-04-27 15:19:31,018 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 111 [2022-04-27 15:19:31,018 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:19:31,019 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:19:31,019 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable32 [2022-04-27 15:19:31,019 INFO L420 AbstractCegarLoop]: === Iteration 34 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:19:31,019 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:19:31,019 INFO L85 PathProgramCache]: Analyzing trace with hash -1354625370, now seen corresponding path program 1 times [2022-04-27 15:19:31,019 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:19:31,019 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1945028278] [2022-04-27 15:19:31,019 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:19:31,019 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:19:31,102 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,195 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:19:31,197 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,202 INFO L290 TraceCheckUtils]: 0: Hoare triple {64006#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {63929#true} is VALID [2022-04-27 15:19:31,202 INFO L290 TraceCheckUtils]: 1: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,202 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {63929#true} {63929#true} #1270#return; {63929#true} is VALID [2022-04-27 15:19:31,227 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:19:31,228 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,233 INFO L290 TraceCheckUtils]: 0: Hoare triple {64007#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {63929#true} is VALID [2022-04-27 15:19:31,233 INFO L290 TraceCheckUtils]: 1: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,233 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {63929#true} {63929#true} #1216#return; {63929#true} is VALID [2022-04-27 15:19:31,239 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:19:31,245 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,252 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:31,252 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,256 INFO L290 TraceCheckUtils]: 0: Hoare triple {63929#true} ~cond := #in~cond; {63929#true} is VALID [2022-04-27 15:19:31,257 INFO L290 TraceCheckUtils]: 1: Hoare triple {63929#true} assume !(0 == ~cond); {63929#true} is VALID [2022-04-27 15:19:31,257 INFO L290 TraceCheckUtils]: 2: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,257 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {63929#true} {63929#true} #1254#return; {63929#true} is VALID [2022-04-27 15:19:31,257 INFO L290 TraceCheckUtils]: 0: Hoare triple {64008#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {63929#true} is VALID [2022-04-27 15:19:31,257 INFO L272 TraceCheckUtils]: 1: Hoare triple {63929#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {63929#true} is VALID [2022-04-27 15:19:31,257 INFO L290 TraceCheckUtils]: 2: Hoare triple {63929#true} ~cond := #in~cond; {63929#true} is VALID [2022-04-27 15:19:31,257 INFO L290 TraceCheckUtils]: 3: Hoare triple {63929#true} assume !(0 == ~cond); {63929#true} is VALID [2022-04-27 15:19:31,257 INFO L290 TraceCheckUtils]: 4: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,257 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {63929#true} {63929#true} #1254#return; {63929#true} is VALID [2022-04-27 15:19:31,257 INFO L290 TraceCheckUtils]: 6: Hoare triple {63929#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {63929#true} is VALID [2022-04-27 15:19:31,257 INFO L290 TraceCheckUtils]: 7: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,257 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {63929#true} {63929#true} #1218#return; {63929#true} is VALID [2022-04-27 15:19:31,267 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:19:31,279 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,287 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:31,290 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,295 INFO L290 TraceCheckUtils]: 0: Hoare triple {64013#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {63929#true} is VALID [2022-04-27 15:19:31,295 INFO L290 TraceCheckUtils]: 1: Hoare triple {63929#true} assume 0 == ~__BLAST_NONDET~5; {63929#true} is VALID [2022-04-27 15:19:31,295 INFO L290 TraceCheckUtils]: 2: Hoare triple {63929#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {63929#true} is VALID [2022-04-27 15:19:31,295 INFO L290 TraceCheckUtils]: 3: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,295 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {63929#true} {63929#true} #1176#return; {63929#true} is VALID [2022-04-27 15:19:31,295 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:19:31,297 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,301 INFO L290 TraceCheckUtils]: 0: Hoare triple {64008#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {63929#true} is VALID [2022-04-27 15:19:31,301 INFO L290 TraceCheckUtils]: 1: Hoare triple {63929#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {63929#true} is VALID [2022-04-27 15:19:31,301 INFO L290 TraceCheckUtils]: 2: Hoare triple {63929#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {63929#true} is VALID [2022-04-27 15:19:31,302 INFO L290 TraceCheckUtils]: 3: Hoare triple {63929#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {63929#true} is VALID [2022-04-27 15:19:31,302 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {63929#true} {63929#true} #1178#return; {63929#true} is VALID [2022-04-27 15:19:31,302 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:19:31,303 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,307 INFO L290 TraceCheckUtils]: 0: Hoare triple {63929#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {63929#true} is VALID [2022-04-27 15:19:31,307 INFO L290 TraceCheckUtils]: 1: Hoare triple {63929#true} assume 0 == ~__BLAST_NONDET~2; {63929#true} is VALID [2022-04-27 15:19:31,307 INFO L290 TraceCheckUtils]: 2: Hoare triple {63929#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {63929#true} is VALID [2022-04-27 15:19:31,307 INFO L290 TraceCheckUtils]: 3: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,307 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {63929#true} {63929#true} #1180#return; {63929#true} is VALID [2022-04-27 15:19:31,307 INFO L290 TraceCheckUtils]: 0: Hoare triple {64013#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {63929#true} is VALID [2022-04-27 15:19:31,308 INFO L272 TraceCheckUtils]: 1: Hoare triple {63929#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {64013#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:31,309 INFO L290 TraceCheckUtils]: 2: Hoare triple {64013#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {63929#true} is VALID [2022-04-27 15:19:31,309 INFO L290 TraceCheckUtils]: 3: Hoare triple {63929#true} assume 0 == ~__BLAST_NONDET~5; {63929#true} is VALID [2022-04-27 15:19:31,309 INFO L290 TraceCheckUtils]: 4: Hoare triple {63929#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {63929#true} is VALID [2022-04-27 15:19:31,309 INFO L290 TraceCheckUtils]: 5: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,309 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {63929#true} {63929#true} #1176#return; {63929#true} is VALID [2022-04-27 15:19:31,309 INFO L290 TraceCheckUtils]: 7: Hoare triple {63929#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {63929#true} is VALID [2022-04-27 15:19:31,309 INFO L290 TraceCheckUtils]: 8: Hoare triple {63929#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L272 TraceCheckUtils]: 9: Hoare triple {63929#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {64008#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:31,310 INFO L290 TraceCheckUtils]: 10: Hoare triple {64008#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L290 TraceCheckUtils]: 11: Hoare triple {63929#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L290 TraceCheckUtils]: 12: Hoare triple {63929#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L290 TraceCheckUtils]: 13: Hoare triple {63929#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {63929#true} {63929#true} #1178#return; {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L290 TraceCheckUtils]: 15: Hoare triple {63929#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L272 TraceCheckUtils]: 16: Hoare triple {63929#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L290 TraceCheckUtils]: 17: Hoare triple {63929#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L290 TraceCheckUtils]: 18: Hoare triple {63929#true} assume 0 == ~__BLAST_NONDET~2; {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L290 TraceCheckUtils]: 19: Hoare triple {63929#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L290 TraceCheckUtils]: 20: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {63929#true} {63929#true} #1180#return; {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L290 TraceCheckUtils]: 22: Hoare triple {63929#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {63929#true} is VALID [2022-04-27 15:19:31,310 INFO L290 TraceCheckUtils]: 23: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,311 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {63929#true} {63929#true} #1220#return; {63929#true} is VALID [2022-04-27 15:19:31,324 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:19:31,325 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,329 INFO L290 TraceCheckUtils]: 0: Hoare triple {64029#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {63929#true} is VALID [2022-04-27 15:19:31,329 INFO L290 TraceCheckUtils]: 1: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,329 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {63929#true} {63929#true} #1222#return; {63929#true} is VALID [2022-04-27 15:19:31,329 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 63 [2022-04-27 15:19:31,331 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,335 INFO L290 TraceCheckUtils]: 0: Hoare triple {64008#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {63929#true} is VALID [2022-04-27 15:19:31,335 INFO L290 TraceCheckUtils]: 1: Hoare triple {63929#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {63929#true} is VALID [2022-04-27 15:19:31,336 INFO L290 TraceCheckUtils]: 2: Hoare triple {63929#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {63929#true} is VALID [2022-04-27 15:19:31,336 INFO L290 TraceCheckUtils]: 3: Hoare triple {63929#true} assume #res.base == dest.base && #res.offset == dest.offset; {63929#true} is VALID [2022-04-27 15:19:31,336 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {63929#true} {63929#true} #1186#return; {63929#true} is VALID [2022-04-27 15:19:31,344 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 73 [2022-04-27 15:19:31,348 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,368 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:19:31,370 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,378 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:31,379 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,386 INFO L290 TraceCheckUtils]: 0: Hoare triple {64042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,386 INFO L290 TraceCheckUtils]: 1: Hoare triple {64005#(= ~setEventCalled~0 1)} assume true; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,387 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {64005#(= ~setEventCalled~0 1)} {63929#true} #1174#return; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,387 INFO L290 TraceCheckUtils]: 0: Hoare triple {64042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {63929#true} is VALID [2022-04-27 15:19:31,391 INFO L272 TraceCheckUtils]: 1: Hoare triple {63929#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {64042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:31,392 INFO L290 TraceCheckUtils]: 2: Hoare triple {64042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,392 INFO L290 TraceCheckUtils]: 3: Hoare triple {64005#(= ~setEventCalled~0 1)} assume true; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,393 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {64005#(= ~setEventCalled~0 1)} {63929#true} #1174#return; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,393 INFO L290 TraceCheckUtils]: 5: Hoare triple {64005#(= ~setEventCalled~0 1)} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,393 INFO L290 TraceCheckUtils]: 6: Hoare triple {64005#(= ~setEventCalled~0 1)} assume true; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,394 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {64005#(= ~setEventCalled~0 1)} {63929#true} #1210#return; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,401 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:19:31,402 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:31,406 INFO L290 TraceCheckUtils]: 0: Hoare triple {64046#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {63929#true} is VALID [2022-04-27 15:19:31,406 INFO L290 TraceCheckUtils]: 1: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,407 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {63929#true} {64005#(= ~setEventCalled~0 1)} #1212#return; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,407 INFO L290 TraceCheckUtils]: 0: Hoare triple {64030#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {63929#true} is VALID [2022-04-27 15:19:31,407 INFO L290 TraceCheckUtils]: 1: Hoare triple {63929#true} assume 0 != ~compRegistered~0; {63929#true} is VALID [2022-04-27 15:19:31,408 INFO L272 TraceCheckUtils]: 2: Hoare triple {63929#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {64042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:31,408 INFO L290 TraceCheckUtils]: 3: Hoare triple {64042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {63929#true} is VALID [2022-04-27 15:19:31,408 INFO L272 TraceCheckUtils]: 4: Hoare triple {63929#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {64042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:31,409 INFO L290 TraceCheckUtils]: 5: Hoare triple {64042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,409 INFO L290 TraceCheckUtils]: 6: Hoare triple {64005#(= ~setEventCalled~0 1)} assume true; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,409 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {64005#(= ~setEventCalled~0 1)} {63929#true} #1174#return; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,410 INFO L290 TraceCheckUtils]: 8: Hoare triple {64005#(= ~setEventCalled~0 1)} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,410 INFO L290 TraceCheckUtils]: 9: Hoare triple {64005#(= ~setEventCalled~0 1)} assume true; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,411 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {64005#(= ~setEventCalled~0 1)} {63929#true} #1210#return; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,411 INFO L290 TraceCheckUtils]: 11: Hoare triple {64005#(= ~setEventCalled~0 1)} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,411 INFO L290 TraceCheckUtils]: 12: Hoare triple {64005#(= ~setEventCalled~0 1)} assume -1073741802 == ~compRetStatus~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,412 INFO L272 TraceCheckUtils]: 13: Hoare triple {64005#(= ~setEventCalled~0 1)} call stubMoreProcessingRequired(); {64046#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:31,412 INFO L290 TraceCheckUtils]: 14: Hoare triple {64046#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {63929#true} is VALID [2022-04-27 15:19:31,412 INFO L290 TraceCheckUtils]: 15: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,412 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {63929#true} {64005#(= ~setEventCalled~0 1)} #1212#return; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,412 INFO L290 TraceCheckUtils]: 17: Hoare triple {64005#(= ~setEventCalled~0 1)} assume !(0 == ~__BLAST_NONDET~11); {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,412 INFO L290 TraceCheckUtils]: 18: Hoare triple {64005#(= ~setEventCalled~0 1)} assume !(1 == ~__BLAST_NONDET~11); {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,413 INFO L290 TraceCheckUtils]: 19: Hoare triple {64005#(= ~setEventCalled~0 1)} ~returnVal2~0 := 259; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,413 INFO L290 TraceCheckUtils]: 20: Hoare triple {64005#(= ~setEventCalled~0 1)} assume !(~s~0 == ~NP~0); {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,413 INFO L290 TraceCheckUtils]: 21: Hoare triple {64005#(= ~setEventCalled~0 1)} assume ~s~0 == ~MPR1~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,413 INFO L290 TraceCheckUtils]: 22: Hoare triple {64005#(= ~setEventCalled~0 1)} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,414 INFO L290 TraceCheckUtils]: 23: Hoare triple {64005#(= ~setEventCalled~0 1)} #res := ~returnVal2~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,414 INFO L290 TraceCheckUtils]: 24: Hoare triple {64005#(= ~setEventCalled~0 1)} assume true; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,415 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {64005#(= ~setEventCalled~0 1)} {63929#true} #1192#return; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,416 INFO L272 TraceCheckUtils]: 0: Hoare triple {63929#true} call ULTIMATE.init(); {64006#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:19:31,416 INFO L290 TraceCheckUtils]: 1: Hoare triple {64006#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {63929#true} is VALID [2022-04-27 15:19:31,416 INFO L290 TraceCheckUtils]: 2: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,416 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {63929#true} {63929#true} #1270#return; {63929#true} is VALID [2022-04-27 15:19:31,416 INFO L272 TraceCheckUtils]: 4: Hoare triple {63929#true} call #t~ret213 := main(); {63929#true} is VALID [2022-04-27 15:19:31,416 INFO L290 TraceCheckUtils]: 5: Hoare triple {63929#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {63929#true} is VALID [2022-04-27 15:19:31,417 INFO L272 TraceCheckUtils]: 6: Hoare triple {63929#true} call _BLAST_init(); {64007#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:31,417 INFO L290 TraceCheckUtils]: 7: Hoare triple {64007#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {63929#true} is VALID [2022-04-27 15:19:31,417 INFO L290 TraceCheckUtils]: 8: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,417 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {63929#true} {63929#true} #1216#return; {63929#true} is VALID [2022-04-27 15:19:31,418 INFO L272 TraceCheckUtils]: 10: Hoare triple {63929#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {64008#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:31,418 INFO L290 TraceCheckUtils]: 11: Hoare triple {64008#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {63929#true} is VALID [2022-04-27 15:19:31,418 INFO L272 TraceCheckUtils]: 12: Hoare triple {63929#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {63929#true} is VALID [2022-04-27 15:19:31,418 INFO L290 TraceCheckUtils]: 13: Hoare triple {63929#true} ~cond := #in~cond; {63929#true} is VALID [2022-04-27 15:19:31,418 INFO L290 TraceCheckUtils]: 14: Hoare triple {63929#true} assume !(0 == ~cond); {63929#true} is VALID [2022-04-27 15:19:31,418 INFO L290 TraceCheckUtils]: 15: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,419 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {63929#true} {63929#true} #1254#return; {63929#true} is VALID [2022-04-27 15:19:31,419 INFO L290 TraceCheckUtils]: 17: Hoare triple {63929#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {63929#true} is VALID [2022-04-27 15:19:31,419 INFO L290 TraceCheckUtils]: 18: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,419 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {63929#true} {63929#true} #1218#return; {63929#true} is VALID [2022-04-27 15:19:31,419 INFO L290 TraceCheckUtils]: 20: Hoare triple {63929#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {63929#true} is VALID [2022-04-27 15:19:31,419 INFO L290 TraceCheckUtils]: 21: Hoare triple {63929#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {63929#true} is VALID [2022-04-27 15:19:31,419 INFO L290 TraceCheckUtils]: 22: Hoare triple {63929#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {63929#true} is VALID [2022-04-27 15:19:31,420 INFO L272 TraceCheckUtils]: 23: Hoare triple {63929#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {64013#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:31,420 INFO L290 TraceCheckUtils]: 24: Hoare triple {64013#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {63929#true} is VALID [2022-04-27 15:19:31,421 INFO L272 TraceCheckUtils]: 25: Hoare triple {63929#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {64013#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:31,421 INFO L290 TraceCheckUtils]: 26: Hoare triple {64013#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {63929#true} is VALID [2022-04-27 15:19:31,421 INFO L290 TraceCheckUtils]: 27: Hoare triple {63929#true} assume 0 == ~__BLAST_NONDET~5; {63929#true} is VALID [2022-04-27 15:19:31,421 INFO L290 TraceCheckUtils]: 28: Hoare triple {63929#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {63929#true} is VALID [2022-04-27 15:19:31,421 INFO L290 TraceCheckUtils]: 29: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,421 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {63929#true} {63929#true} #1176#return; {63929#true} is VALID [2022-04-27 15:19:31,421 INFO L290 TraceCheckUtils]: 31: Hoare triple {63929#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {63929#true} is VALID [2022-04-27 15:19:31,421 INFO L290 TraceCheckUtils]: 32: Hoare triple {63929#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {63929#true} is VALID [2022-04-27 15:19:31,422 INFO L272 TraceCheckUtils]: 33: Hoare triple {63929#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {64008#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:31,422 INFO L290 TraceCheckUtils]: 34: Hoare triple {64008#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {63929#true} is VALID [2022-04-27 15:19:31,422 INFO L290 TraceCheckUtils]: 35: Hoare triple {63929#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {63929#true} is VALID [2022-04-27 15:19:31,422 INFO L290 TraceCheckUtils]: 36: Hoare triple {63929#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {63929#true} is VALID [2022-04-27 15:19:31,422 INFO L290 TraceCheckUtils]: 37: Hoare triple {63929#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {63929#true} is VALID [2022-04-27 15:19:31,422 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {63929#true} {63929#true} #1178#return; {63929#true} is VALID [2022-04-27 15:19:31,422 INFO L290 TraceCheckUtils]: 39: Hoare triple {63929#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {63929#true} is VALID [2022-04-27 15:19:31,422 INFO L272 TraceCheckUtils]: 40: Hoare triple {63929#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {63929#true} is VALID [2022-04-27 15:19:31,422 INFO L290 TraceCheckUtils]: 41: Hoare triple {63929#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {63929#true} is VALID [2022-04-27 15:19:31,422 INFO L290 TraceCheckUtils]: 42: Hoare triple {63929#true} assume 0 == ~__BLAST_NONDET~2; {63929#true} is VALID [2022-04-27 15:19:31,422 INFO L290 TraceCheckUtils]: 43: Hoare triple {63929#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {63929#true} is VALID [2022-04-27 15:19:31,422 INFO L290 TraceCheckUtils]: 44: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,423 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {63929#true} {63929#true} #1180#return; {63929#true} is VALID [2022-04-27 15:19:31,423 INFO L290 TraceCheckUtils]: 46: Hoare triple {63929#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {63929#true} is VALID [2022-04-27 15:19:31,423 INFO L290 TraceCheckUtils]: 47: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,423 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {63929#true} {63929#true} #1220#return; {63929#true} is VALID [2022-04-27 15:19:31,423 INFO L290 TraceCheckUtils]: 49: Hoare triple {63929#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {63929#true} is VALID [2022-04-27 15:19:31,423 INFO L272 TraceCheckUtils]: 50: Hoare triple {63929#true} call stub_driver_init(); {64029#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:31,423 INFO L290 TraceCheckUtils]: 51: Hoare triple {64029#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {63929#true} is VALID [2022-04-27 15:19:31,423 INFO L290 TraceCheckUtils]: 52: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,424 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {63929#true} {63929#true} #1222#return; {63929#true} is VALID [2022-04-27 15:19:31,424 INFO L290 TraceCheckUtils]: 54: Hoare triple {63929#true} assume !!(~status~5 >= 0); {63929#true} is VALID [2022-04-27 15:19:31,424 INFO L290 TraceCheckUtils]: 55: Hoare triple {63929#true} assume !(0 == ~__BLAST_NONDET~0); {63929#true} is VALID [2022-04-27 15:19:31,424 INFO L290 TraceCheckUtils]: 56: Hoare triple {63929#true} assume !(1 == ~__BLAST_NONDET~0); {63929#true} is VALID [2022-04-27 15:19:31,424 INFO L290 TraceCheckUtils]: 57: Hoare triple {63929#true} assume !(2 == ~__BLAST_NONDET~0); {63929#true} is VALID [2022-04-27 15:19:31,424 INFO L290 TraceCheckUtils]: 58: Hoare triple {63929#true} assume 3 == ~__BLAST_NONDET~0; {63929#true} is VALID [2022-04-27 15:19:31,424 INFO L272 TraceCheckUtils]: 59: Hoare triple {63929#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {63929#true} is VALID [2022-04-27 15:19:31,424 INFO L290 TraceCheckUtils]: 60: Hoare triple {63929#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {63929#true} is VALID [2022-04-27 15:19:31,424 INFO L290 TraceCheckUtils]: 61: Hoare triple {63929#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {63929#true} is VALID [2022-04-27 15:19:31,424 INFO L290 TraceCheckUtils]: 62: Hoare triple {63929#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {63929#true} is VALID [2022-04-27 15:19:31,430 INFO L272 TraceCheckUtils]: 63: Hoare triple {63929#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {64008#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:31,430 INFO L290 TraceCheckUtils]: 64: Hoare triple {64008#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {63929#true} is VALID [2022-04-27 15:19:31,430 INFO L290 TraceCheckUtils]: 65: Hoare triple {63929#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {63929#true} is VALID [2022-04-27 15:19:31,430 INFO L290 TraceCheckUtils]: 66: Hoare triple {63929#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {63929#true} is VALID [2022-04-27 15:19:31,430 INFO L290 TraceCheckUtils]: 67: Hoare triple {63929#true} assume #res.base == dest.base && #res.offset == dest.offset; {63929#true} is VALID [2022-04-27 15:19:31,430 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {63929#true} {63929#true} #1186#return; {63929#true} is VALID [2022-04-27 15:19:31,430 INFO L290 TraceCheckUtils]: 69: Hoare triple {63929#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {63929#true} is VALID [2022-04-27 15:19:31,430 INFO L290 TraceCheckUtils]: 70: Hoare triple {63929#true} assume !(~s~0 != ~NP~0); {63929#true} is VALID [2022-04-27 15:19:31,430 INFO L290 TraceCheckUtils]: 71: Hoare triple {63929#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {63929#true} is VALID [2022-04-27 15:19:31,430 INFO L290 TraceCheckUtils]: 72: Hoare triple {63929#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {63929#true} is VALID [2022-04-27 15:19:31,431 INFO L272 TraceCheckUtils]: 73: Hoare triple {63929#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {64030#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:31,431 INFO L290 TraceCheckUtils]: 74: Hoare triple {64030#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {63929#true} is VALID [2022-04-27 15:19:31,431 INFO L290 TraceCheckUtils]: 75: Hoare triple {63929#true} assume 0 != ~compRegistered~0; {63929#true} is VALID [2022-04-27 15:19:31,432 INFO L272 TraceCheckUtils]: 76: Hoare triple {63929#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {64042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:31,432 INFO L290 TraceCheckUtils]: 77: Hoare triple {64042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {63929#true} is VALID [2022-04-27 15:19:31,433 INFO L272 TraceCheckUtils]: 78: Hoare triple {63929#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {64042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:31,433 INFO L290 TraceCheckUtils]: 79: Hoare triple {64042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,434 INFO L290 TraceCheckUtils]: 80: Hoare triple {64005#(= ~setEventCalled~0 1)} assume true; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,434 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {64005#(= ~setEventCalled~0 1)} {63929#true} #1174#return; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,435 INFO L290 TraceCheckUtils]: 82: Hoare triple {64005#(= ~setEventCalled~0 1)} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,435 INFO L290 TraceCheckUtils]: 83: Hoare triple {64005#(= ~setEventCalled~0 1)} assume true; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,436 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {64005#(= ~setEventCalled~0 1)} {63929#true} #1210#return; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,436 INFO L290 TraceCheckUtils]: 85: Hoare triple {64005#(= ~setEventCalled~0 1)} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,436 INFO L290 TraceCheckUtils]: 86: Hoare triple {64005#(= ~setEventCalled~0 1)} assume -1073741802 == ~compRetStatus~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,437 INFO L272 TraceCheckUtils]: 87: Hoare triple {64005#(= ~setEventCalled~0 1)} call stubMoreProcessingRequired(); {64046#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:31,437 INFO L290 TraceCheckUtils]: 88: Hoare triple {64046#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {63929#true} is VALID [2022-04-27 15:19:31,437 INFO L290 TraceCheckUtils]: 89: Hoare triple {63929#true} assume true; {63929#true} is VALID [2022-04-27 15:19:31,437 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {63929#true} {64005#(= ~setEventCalled~0 1)} #1212#return; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,437 INFO L290 TraceCheckUtils]: 91: Hoare triple {64005#(= ~setEventCalled~0 1)} assume !(0 == ~__BLAST_NONDET~11); {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,438 INFO L290 TraceCheckUtils]: 92: Hoare triple {64005#(= ~setEventCalled~0 1)} assume !(1 == ~__BLAST_NONDET~11); {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,438 INFO L290 TraceCheckUtils]: 93: Hoare triple {64005#(= ~setEventCalled~0 1)} ~returnVal2~0 := 259; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,438 INFO L290 TraceCheckUtils]: 94: Hoare triple {64005#(= ~setEventCalled~0 1)} assume !(~s~0 == ~NP~0); {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,438 INFO L290 TraceCheckUtils]: 95: Hoare triple {64005#(= ~setEventCalled~0 1)} assume ~s~0 == ~MPR1~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,439 INFO L290 TraceCheckUtils]: 96: Hoare triple {64005#(= ~setEventCalled~0 1)} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,439 INFO L290 TraceCheckUtils]: 97: Hoare triple {64005#(= ~setEventCalled~0 1)} #res := ~returnVal2~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,439 INFO L290 TraceCheckUtils]: 98: Hoare triple {64005#(= ~setEventCalled~0 1)} assume true; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,440 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {64005#(= ~setEventCalled~0 1)} {63929#true} #1192#return; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,440 INFO L290 TraceCheckUtils]: 100: Hoare triple {64005#(= ~setEventCalled~0 1)} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,440 INFO L290 TraceCheckUtils]: 101: Hoare triple {64005#(= ~setEventCalled~0 1)} assume 259 == ~status~3; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,441 INFO L272 TraceCheckUtils]: 102: Hoare triple {64005#(= ~setEventCalled~0 1)} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,441 INFO L290 TraceCheckUtils]: 103: Hoare triple {64005#(= ~setEventCalled~0 1)} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,442 INFO L290 TraceCheckUtils]: 104: Hoare triple {64005#(= ~setEventCalled~0 1)} assume ~s~0 == ~MPR3~0; {64005#(= ~setEventCalled~0 1)} is VALID [2022-04-27 15:19:31,442 INFO L290 TraceCheckUtils]: 105: Hoare triple {64005#(= ~setEventCalled~0 1)} assume !(1 == ~setEventCalled~0); {63930#false} is VALID [2022-04-27 15:19:31,442 INFO L290 TraceCheckUtils]: 106: Hoare triple {63930#false} assume !(1 == ~customIrp~0); {63930#false} is VALID [2022-04-27 15:19:31,442 INFO L290 TraceCheckUtils]: 107: Hoare triple {63930#false} assume ~s~0 == ~MPR3~0; {63930#false} is VALID [2022-04-27 15:19:31,442 INFO L272 TraceCheckUtils]: 108: Hoare triple {63930#false} call errorFn(); {63930#false} is VALID [2022-04-27 15:19:31,442 INFO L290 TraceCheckUtils]: 109: Hoare triple {63930#false} assume !false; {63930#false} is VALID [2022-04-27 15:19:31,442 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:19:31,442 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:19:31,442 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1945028278] [2022-04-27 15:19:31,443 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1945028278] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:19:31,443 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:19:31,443 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [11] imperfect sequences [] total 11 [2022-04-27 15:19:31,443 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1041814460] [2022-04-27 15:19:31,443 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:19:31,443 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 11 states have (on average 7.090909090909091) internal successors, (78), 3 states have internal predecessors, (78), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 110 [2022-04-27 15:19:31,443 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:19:31,443 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 11 states, 11 states have (on average 7.090909090909091) internal successors, (78), 3 states have internal predecessors, (78), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:19:31,524 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 110 edges. 110 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:19:31,524 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2022-04-27 15:19:31,524 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:19:31,524 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2022-04-27 15:19:31,525 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=34, Invalid=76, Unknown=0, NotChecked=0, Total=110 [2022-04-27 15:19:31,525 INFO L87 Difference]: Start difference. First operand 321 states and 363 transitions. Second operand has 11 states, 11 states have (on average 7.090909090909091) internal successors, (78), 3 states have internal predecessors, (78), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:19:34,956 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.32s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:19:36,968 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:19:40,264 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.26s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:19:42,270 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:19:45,363 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:45,364 INFO L93 Difference]: Finished difference Result 452 states and 515 transitions. [2022-04-27 15:19:45,364 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 14 states. [2022-04-27 15:19:45,364 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 11 states have (on average 7.090909090909091) internal successors, (78), 3 states have internal predecessors, (78), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 110 [2022-04-27 15:19:45,364 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:19:45,364 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11 states, 11 states have (on average 7.090909090909091) internal successors, (78), 3 states have internal predecessors, (78), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:19:45,365 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 14 states to 14 states and 256 transitions. [2022-04-27 15:19:45,366 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11 states, 11 states have (on average 7.090909090909091) internal successors, (78), 3 states have internal predecessors, (78), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:19:45,367 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 14 states to 14 states and 256 transitions. [2022-04-27 15:19:45,367 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 14 states and 256 transitions. [2022-04-27 15:19:45,621 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 256 edges. 256 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:19:45,628 INFO L225 Difference]: With dead ends: 452 [2022-04-27 15:19:45,628 INFO L226 Difference]: Without dead ends: 386 [2022-04-27 15:19:45,629 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 43 GetRequests, 24 SyntacticMatches, 3 SemanticMatches, 16 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 27 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=97, Invalid=209, Unknown=0, NotChecked=0, Total=306 [2022-04-27 15:19:45,629 INFO L413 NwaCegarLoop]: 135 mSDtfsCounter, 369 mSDsluCounter, 146 mSDsCounter, 0 mSdLazyCounter, 347 mSolverCounterSat, 187 mSolverCounterUnsat, 2 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 7.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 372 SdHoareTripleChecker+Valid, 281 SdHoareTripleChecker+Invalid, 536 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 187 IncrementalHoareTripleChecker+Valid, 347 IncrementalHoareTripleChecker+Invalid, 2 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 7.8s IncrementalHoareTripleChecker+Time [2022-04-27 15:19:45,629 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [372 Valid, 281 Invalid, 536 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [187 Valid, 347 Invalid, 2 Unknown, 0 Unchecked, 7.8s Time] [2022-04-27 15:19:45,629 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 386 states. [2022-04-27 15:19:45,907 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 386 to 338. [2022-04-27 15:19:45,907 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:19:45,908 INFO L82 GeneralOperation]: Start isEquivalent. First operand 386 states. Second operand has 338 states, 262 states have (on average 1.1450381679389312) internal successors, (300), 266 states have internal predecessors, (300), 36 states have call successors, (36), 35 states have call predecessors, (36), 39 states have return successors, (41), 36 states have call predecessors, (41), 33 states have call successors, (41) [2022-04-27 15:19:45,908 INFO L74 IsIncluded]: Start isIncluded. First operand 386 states. Second operand has 338 states, 262 states have (on average 1.1450381679389312) internal successors, (300), 266 states have internal predecessors, (300), 36 states have call successors, (36), 35 states have call predecessors, (36), 39 states have return successors, (41), 36 states have call predecessors, (41), 33 states have call successors, (41) [2022-04-27 15:19:45,908 INFO L87 Difference]: Start difference. First operand 386 states. Second operand has 338 states, 262 states have (on average 1.1450381679389312) internal successors, (300), 266 states have internal predecessors, (300), 36 states have call successors, (36), 35 states have call predecessors, (36), 39 states have return successors, (41), 36 states have call predecessors, (41), 33 states have call successors, (41) [2022-04-27 15:19:45,913 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:45,913 INFO L93 Difference]: Finished difference Result 386 states and 434 transitions. [2022-04-27 15:19:45,913 INFO L276 IsEmpty]: Start isEmpty. Operand 386 states and 434 transitions. [2022-04-27 15:19:45,914 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:19:45,914 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:19:45,914 INFO L74 IsIncluded]: Start isIncluded. First operand has 338 states, 262 states have (on average 1.1450381679389312) internal successors, (300), 266 states have internal predecessors, (300), 36 states have call successors, (36), 35 states have call predecessors, (36), 39 states have return successors, (41), 36 states have call predecessors, (41), 33 states have call successors, (41) Second operand 386 states. [2022-04-27 15:19:45,914 INFO L87 Difference]: Start difference. First operand has 338 states, 262 states have (on average 1.1450381679389312) internal successors, (300), 266 states have internal predecessors, (300), 36 states have call successors, (36), 35 states have call predecessors, (36), 39 states have return successors, (41), 36 states have call predecessors, (41), 33 states have call successors, (41) Second operand 386 states. [2022-04-27 15:19:45,919 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:45,920 INFO L93 Difference]: Finished difference Result 386 states and 434 transitions. [2022-04-27 15:19:45,920 INFO L276 IsEmpty]: Start isEmpty. Operand 386 states and 434 transitions. [2022-04-27 15:19:45,920 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:19:45,920 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:19:45,920 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:19:45,920 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:19:45,920 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 338 states, 262 states have (on average 1.1450381679389312) internal successors, (300), 266 states have internal predecessors, (300), 36 states have call successors, (36), 35 states have call predecessors, (36), 39 states have return successors, (41), 36 states have call predecessors, (41), 33 states have call successors, (41) [2022-04-27 15:19:45,925 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 338 states to 338 states and 377 transitions. [2022-04-27 15:19:45,925 INFO L78 Accepts]: Start accepts. Automaton has 338 states and 377 transitions. Word has length 110 [2022-04-27 15:19:45,925 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:19:45,925 INFO L495 AbstractCegarLoop]: Abstraction has 338 states and 377 transitions. [2022-04-27 15:19:45,926 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 11 states have (on average 7.090909090909091) internal successors, (78), 3 states have internal predecessors, (78), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2022-04-27 15:19:45,926 INFO L276 IsEmpty]: Start isEmpty. Operand 338 states and 377 transitions. [2022-04-27 15:19:45,926 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 121 [2022-04-27 15:19:45,926 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:19:45,926 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:19:45,926 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable33 [2022-04-27 15:19:45,926 INFO L420 AbstractCegarLoop]: === Iteration 35 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:19:45,927 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:19:45,927 INFO L85 PathProgramCache]: Analyzing trace with hash 820803447, now seen corresponding path program 1 times [2022-04-27 15:19:45,927 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:19:45,927 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [564818291] [2022-04-27 15:19:45,927 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:19:45,927 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:19:46,184 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,248 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:19:46,250 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,254 INFO L290 TraceCheckUtils]: 0: Hoare triple {66003#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {65919#true} is VALID [2022-04-27 15:19:46,254 INFO L290 TraceCheckUtils]: 1: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,255 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {65919#true} {65919#true} #1270#return; {65919#true} is VALID [2022-04-27 15:19:46,274 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:19:46,275 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,279 INFO L290 TraceCheckUtils]: 0: Hoare triple {66004#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {65919#true} is VALID [2022-04-27 15:19:46,279 INFO L290 TraceCheckUtils]: 1: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,279 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {65919#true} {65919#true} #1216#return; {65919#true} is VALID [2022-04-27 15:19:46,285 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:19:46,294 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,300 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:46,300 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,304 INFO L290 TraceCheckUtils]: 0: Hoare triple {65919#true} ~cond := #in~cond; {65919#true} is VALID [2022-04-27 15:19:46,304 INFO L290 TraceCheckUtils]: 1: Hoare triple {65919#true} assume !(0 == ~cond); {65919#true} is VALID [2022-04-27 15:19:46,304 INFO L290 TraceCheckUtils]: 2: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,304 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {65919#true} {65919#true} #1254#return; {65919#true} is VALID [2022-04-27 15:19:46,304 INFO L290 TraceCheckUtils]: 0: Hoare triple {66005#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {65919#true} is VALID [2022-04-27 15:19:46,304 INFO L272 TraceCheckUtils]: 1: Hoare triple {65919#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {65919#true} is VALID [2022-04-27 15:19:46,304 INFO L290 TraceCheckUtils]: 2: Hoare triple {65919#true} ~cond := #in~cond; {65919#true} is VALID [2022-04-27 15:19:46,304 INFO L290 TraceCheckUtils]: 3: Hoare triple {65919#true} assume !(0 == ~cond); {65919#true} is VALID [2022-04-27 15:19:46,304 INFO L290 TraceCheckUtils]: 4: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,305 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {65919#true} {65919#true} #1254#return; {65919#true} is VALID [2022-04-27 15:19:46,305 INFO L290 TraceCheckUtils]: 6: Hoare triple {65919#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {65919#true} is VALID [2022-04-27 15:19:46,305 INFO L290 TraceCheckUtils]: 7: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,305 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {65919#true} {65919#true} #1218#return; {65919#true} is VALID [2022-04-27 15:19:46,312 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:19:46,336 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,350 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:46,353 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,359 INFO L290 TraceCheckUtils]: 0: Hoare triple {66010#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {65919#true} is VALID [2022-04-27 15:19:46,359 INFO L290 TraceCheckUtils]: 1: Hoare triple {65919#true} assume 0 == ~__BLAST_NONDET~5; {65919#true} is VALID [2022-04-27 15:19:46,359 INFO L290 TraceCheckUtils]: 2: Hoare triple {65919#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {65919#true} is VALID [2022-04-27 15:19:46,359 INFO L290 TraceCheckUtils]: 3: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,359 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {65919#true} {65919#true} #1176#return; {65919#true} is VALID [2022-04-27 15:19:46,359 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:19:46,364 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,432 INFO L290 TraceCheckUtils]: 0: Hoare triple {66005#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {66026#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:19:46,433 INFO L290 TraceCheckUtils]: 1: Hoare triple {66026#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {66027#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} is VALID [2022-04-27 15:19:46,434 INFO L290 TraceCheckUtils]: 2: Hoare triple {66027#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {66028#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:19:46,434 INFO L290 TraceCheckUtils]: 3: Hoare triple {66028#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {66028#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:19:46,435 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {66028#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {65919#true} #1178#return; {65920#false} is VALID [2022-04-27 15:19:46,435 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:19:46,436 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,441 INFO L290 TraceCheckUtils]: 0: Hoare triple {65919#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {65919#true} is VALID [2022-04-27 15:19:46,441 INFO L290 TraceCheckUtils]: 1: Hoare triple {65919#true} assume 0 == ~__BLAST_NONDET~2; {65919#true} is VALID [2022-04-27 15:19:46,441 INFO L290 TraceCheckUtils]: 2: Hoare triple {65919#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {65919#true} is VALID [2022-04-27 15:19:46,441 INFO L290 TraceCheckUtils]: 3: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,441 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {65919#true} {65920#false} #1180#return; {65920#false} is VALID [2022-04-27 15:19:46,441 INFO L290 TraceCheckUtils]: 0: Hoare triple {66010#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {65919#true} is VALID [2022-04-27 15:19:46,442 INFO L272 TraceCheckUtils]: 1: Hoare triple {65919#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {66010#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:46,442 INFO L290 TraceCheckUtils]: 2: Hoare triple {66010#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {65919#true} is VALID [2022-04-27 15:19:46,442 INFO L290 TraceCheckUtils]: 3: Hoare triple {65919#true} assume 0 == ~__BLAST_NONDET~5; {65919#true} is VALID [2022-04-27 15:19:46,442 INFO L290 TraceCheckUtils]: 4: Hoare triple {65919#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {65919#true} is VALID [2022-04-27 15:19:46,442 INFO L290 TraceCheckUtils]: 5: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,442 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {65919#true} {65919#true} #1176#return; {65919#true} is VALID [2022-04-27 15:19:46,443 INFO L290 TraceCheckUtils]: 7: Hoare triple {65919#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {65919#true} is VALID [2022-04-27 15:19:46,443 INFO L290 TraceCheckUtils]: 8: Hoare triple {65919#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {65919#true} is VALID [2022-04-27 15:19:46,443 INFO L272 TraceCheckUtils]: 9: Hoare triple {65919#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {66005#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:46,444 INFO L290 TraceCheckUtils]: 10: Hoare triple {66005#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {66026#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:19:46,445 INFO L290 TraceCheckUtils]: 11: Hoare triple {66026#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {66027#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} is VALID [2022-04-27 15:19:46,445 INFO L290 TraceCheckUtils]: 12: Hoare triple {66027#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {66028#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:19:46,446 INFO L290 TraceCheckUtils]: 13: Hoare triple {66028#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {66028#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:19:46,447 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {66028#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {65919#true} #1178#return; {65920#false} is VALID [2022-04-27 15:19:46,447 INFO L290 TraceCheckUtils]: 15: Hoare triple {65920#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {65920#false} is VALID [2022-04-27 15:19:46,447 INFO L272 TraceCheckUtils]: 16: Hoare triple {65920#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {65919#true} is VALID [2022-04-27 15:19:46,447 INFO L290 TraceCheckUtils]: 17: Hoare triple {65919#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {65919#true} is VALID [2022-04-27 15:19:46,447 INFO L290 TraceCheckUtils]: 18: Hoare triple {65919#true} assume 0 == ~__BLAST_NONDET~2; {65919#true} is VALID [2022-04-27 15:19:46,447 INFO L290 TraceCheckUtils]: 19: Hoare triple {65919#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {65919#true} is VALID [2022-04-27 15:19:46,447 INFO L290 TraceCheckUtils]: 20: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,447 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {65919#true} {65920#false} #1180#return; {65920#false} is VALID [2022-04-27 15:19:46,447 INFO L290 TraceCheckUtils]: 22: Hoare triple {65920#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {65920#false} is VALID [2022-04-27 15:19:46,447 INFO L290 TraceCheckUtils]: 23: Hoare triple {65920#false} assume true; {65920#false} is VALID [2022-04-27 15:19:46,447 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {65920#false} {65919#true} #1220#return; {65920#false} is VALID [2022-04-27 15:19:46,462 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:19:46,465 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,470 INFO L290 TraceCheckUtils]: 0: Hoare triple {66029#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {65919#true} is VALID [2022-04-27 15:19:46,470 INFO L290 TraceCheckUtils]: 1: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,470 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {65919#true} {65920#false} #1222#return; {65920#false} is VALID [2022-04-27 15:19:46,470 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 63 [2022-04-27 15:19:46,472 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,477 INFO L290 TraceCheckUtils]: 0: Hoare triple {66005#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {65919#true} is VALID [2022-04-27 15:19:46,477 INFO L290 TraceCheckUtils]: 1: Hoare triple {65919#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {65919#true} is VALID [2022-04-27 15:19:46,477 INFO L290 TraceCheckUtils]: 2: Hoare triple {65919#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {65919#true} is VALID [2022-04-27 15:19:46,477 INFO L290 TraceCheckUtils]: 3: Hoare triple {65919#true} assume #res.base == dest.base && #res.offset == dest.offset; {65919#true} is VALID [2022-04-27 15:19:46,477 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {65919#true} {65920#false} #1186#return; {65920#false} is VALID [2022-04-27 15:19:46,486 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 73 [2022-04-27 15:19:46,490 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,509 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:19:46,510 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,514 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:46,515 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,519 INFO L290 TraceCheckUtils]: 0: Hoare triple {66042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {65919#true} is VALID [2022-04-27 15:19:46,519 INFO L290 TraceCheckUtils]: 1: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,519 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {65919#true} {65919#true} #1174#return; {65919#true} is VALID [2022-04-27 15:19:46,519 INFO L290 TraceCheckUtils]: 0: Hoare triple {66042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {65919#true} is VALID [2022-04-27 15:19:46,520 INFO L272 TraceCheckUtils]: 1: Hoare triple {65919#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {66042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:46,520 INFO L290 TraceCheckUtils]: 2: Hoare triple {66042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {65919#true} is VALID [2022-04-27 15:19:46,520 INFO L290 TraceCheckUtils]: 3: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,520 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {65919#true} {65919#true} #1174#return; {65919#true} is VALID [2022-04-27 15:19:46,520 INFO L290 TraceCheckUtils]: 5: Hoare triple {65919#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {65919#true} is VALID [2022-04-27 15:19:46,520 INFO L290 TraceCheckUtils]: 6: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,520 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {65919#true} {65919#true} #1210#return; {65919#true} is VALID [2022-04-27 15:19:46,528 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:19:46,528 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,532 INFO L290 TraceCheckUtils]: 0: Hoare triple {66046#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {65919#true} is VALID [2022-04-27 15:19:46,532 INFO L290 TraceCheckUtils]: 1: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,532 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {65919#true} {65919#true} #1212#return; {65919#true} is VALID [2022-04-27 15:19:46,532 INFO L290 TraceCheckUtils]: 0: Hoare triple {66030#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {65919#true} is VALID [2022-04-27 15:19:46,533 INFO L290 TraceCheckUtils]: 1: Hoare triple {65919#true} assume 0 != ~compRegistered~0; {65919#true} is VALID [2022-04-27 15:19:46,533 INFO L272 TraceCheckUtils]: 2: Hoare triple {65919#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {66042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:46,533 INFO L290 TraceCheckUtils]: 3: Hoare triple {66042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {65919#true} is VALID [2022-04-27 15:19:46,534 INFO L272 TraceCheckUtils]: 4: Hoare triple {65919#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {66042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:46,534 INFO L290 TraceCheckUtils]: 5: Hoare triple {66042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {65919#true} is VALID [2022-04-27 15:19:46,534 INFO L290 TraceCheckUtils]: 6: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,534 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {65919#true} {65919#true} #1174#return; {65919#true} is VALID [2022-04-27 15:19:46,534 INFO L290 TraceCheckUtils]: 8: Hoare triple {65919#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {65919#true} is VALID [2022-04-27 15:19:46,534 INFO L290 TraceCheckUtils]: 9: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,534 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {65919#true} {65919#true} #1210#return; {65919#true} is VALID [2022-04-27 15:19:46,534 INFO L290 TraceCheckUtils]: 11: Hoare triple {65919#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {65919#true} is VALID [2022-04-27 15:19:46,534 INFO L290 TraceCheckUtils]: 12: Hoare triple {65919#true} assume -1073741802 == ~compRetStatus~0; {65919#true} is VALID [2022-04-27 15:19:46,545 INFO L272 TraceCheckUtils]: 13: Hoare triple {65919#true} call stubMoreProcessingRequired(); {66046#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:46,545 INFO L290 TraceCheckUtils]: 14: Hoare triple {66046#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {65919#true} is VALID [2022-04-27 15:19:46,545 INFO L290 TraceCheckUtils]: 15: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,545 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {65919#true} {65919#true} #1212#return; {65919#true} is VALID [2022-04-27 15:19:46,545 INFO L290 TraceCheckUtils]: 17: Hoare triple {65919#true} assume !(0 == ~__BLAST_NONDET~11); {65919#true} is VALID [2022-04-27 15:19:46,545 INFO L290 TraceCheckUtils]: 18: Hoare triple {65919#true} assume !(1 == ~__BLAST_NONDET~11); {65919#true} is VALID [2022-04-27 15:19:46,545 INFO L290 TraceCheckUtils]: 19: Hoare triple {65919#true} ~returnVal2~0 := 259; {65919#true} is VALID [2022-04-27 15:19:46,545 INFO L290 TraceCheckUtils]: 20: Hoare triple {65919#true} assume !(~s~0 == ~NP~0); {65919#true} is VALID [2022-04-27 15:19:46,545 INFO L290 TraceCheckUtils]: 21: Hoare triple {65919#true} assume ~s~0 == ~MPR1~0; {65919#true} is VALID [2022-04-27 15:19:46,545 INFO L290 TraceCheckUtils]: 22: Hoare triple {65919#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {65919#true} is VALID [2022-04-27 15:19:46,545 INFO L290 TraceCheckUtils]: 23: Hoare triple {65919#true} #res := ~returnVal2~0; {65919#true} is VALID [2022-04-27 15:19:46,545 INFO L290 TraceCheckUtils]: 24: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,545 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {65919#true} {65920#false} #1192#return; {65920#false} is VALID [2022-04-27 15:19:46,556 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 102 [2022-04-27 15:19:46,557 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:46,561 INFO L290 TraceCheckUtils]: 0: Hoare triple {66047#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {65919#true} is VALID [2022-04-27 15:19:46,562 INFO L290 TraceCheckUtils]: 1: Hoare triple {65919#true} assume !(~s~0 == ~MPR3~0); {65919#true} is VALID [2022-04-27 15:19:46,562 INFO L290 TraceCheckUtils]: 2: Hoare triple {65919#true} assume !(1 == ~customIrp~0); {65919#true} is VALID [2022-04-27 15:19:46,562 INFO L290 TraceCheckUtils]: 3: Hoare triple {65919#true} assume !(~s~0 == ~MPR3~0); {65919#true} is VALID [2022-04-27 15:19:46,562 INFO L290 TraceCheckUtils]: 4: Hoare triple {65919#true} assume 0 == ~__BLAST_NONDET~13; {65919#true} is VALID [2022-04-27 15:19:46,562 INFO L290 TraceCheckUtils]: 5: Hoare triple {65919#true} #res := 0; {65919#true} is VALID [2022-04-27 15:19:46,562 INFO L290 TraceCheckUtils]: 6: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,562 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {65919#true} {65920#false} #1194#return; {65920#false} is VALID [2022-04-27 15:19:46,563 INFO L272 TraceCheckUtils]: 0: Hoare triple {65919#true} call ULTIMATE.init(); {66003#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:19:46,563 INFO L290 TraceCheckUtils]: 1: Hoare triple {66003#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {65919#true} is VALID [2022-04-27 15:19:46,563 INFO L290 TraceCheckUtils]: 2: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,563 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {65919#true} {65919#true} #1270#return; {65919#true} is VALID [2022-04-27 15:19:46,563 INFO L272 TraceCheckUtils]: 4: Hoare triple {65919#true} call #t~ret213 := main(); {65919#true} is VALID [2022-04-27 15:19:46,563 INFO L290 TraceCheckUtils]: 5: Hoare triple {65919#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {65919#true} is VALID [2022-04-27 15:19:46,564 INFO L272 TraceCheckUtils]: 6: Hoare triple {65919#true} call _BLAST_init(); {66004#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:46,564 INFO L290 TraceCheckUtils]: 7: Hoare triple {66004#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {65919#true} is VALID [2022-04-27 15:19:46,564 INFO L290 TraceCheckUtils]: 8: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,564 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {65919#true} {65919#true} #1216#return; {65919#true} is VALID [2022-04-27 15:19:46,565 INFO L272 TraceCheckUtils]: 10: Hoare triple {65919#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {66005#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:46,565 INFO L290 TraceCheckUtils]: 11: Hoare triple {66005#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {65919#true} is VALID [2022-04-27 15:19:46,565 INFO L272 TraceCheckUtils]: 12: Hoare triple {65919#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {65919#true} is VALID [2022-04-27 15:19:46,565 INFO L290 TraceCheckUtils]: 13: Hoare triple {65919#true} ~cond := #in~cond; {65919#true} is VALID [2022-04-27 15:19:46,565 INFO L290 TraceCheckUtils]: 14: Hoare triple {65919#true} assume !(0 == ~cond); {65919#true} is VALID [2022-04-27 15:19:46,565 INFO L290 TraceCheckUtils]: 15: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,565 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {65919#true} {65919#true} #1254#return; {65919#true} is VALID [2022-04-27 15:19:46,565 INFO L290 TraceCheckUtils]: 17: Hoare triple {65919#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {65919#true} is VALID [2022-04-27 15:19:46,565 INFO L290 TraceCheckUtils]: 18: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,565 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {65919#true} {65919#true} #1218#return; {65919#true} is VALID [2022-04-27 15:19:46,565 INFO L290 TraceCheckUtils]: 20: Hoare triple {65919#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {65919#true} is VALID [2022-04-27 15:19:46,566 INFO L290 TraceCheckUtils]: 21: Hoare triple {65919#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {65919#true} is VALID [2022-04-27 15:19:46,566 INFO L290 TraceCheckUtils]: 22: Hoare triple {65919#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {65919#true} is VALID [2022-04-27 15:19:46,566 INFO L272 TraceCheckUtils]: 23: Hoare triple {65919#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {66010#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:46,566 INFO L290 TraceCheckUtils]: 24: Hoare triple {66010#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {65919#true} is VALID [2022-04-27 15:19:46,567 INFO L272 TraceCheckUtils]: 25: Hoare triple {65919#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {66010#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:46,567 INFO L290 TraceCheckUtils]: 26: Hoare triple {66010#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {65919#true} is VALID [2022-04-27 15:19:46,567 INFO L290 TraceCheckUtils]: 27: Hoare triple {65919#true} assume 0 == ~__BLAST_NONDET~5; {65919#true} is VALID [2022-04-27 15:19:46,567 INFO L290 TraceCheckUtils]: 28: Hoare triple {65919#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {65919#true} is VALID [2022-04-27 15:19:46,568 INFO L290 TraceCheckUtils]: 29: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,568 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {65919#true} {65919#true} #1176#return; {65919#true} is VALID [2022-04-27 15:19:46,568 INFO L290 TraceCheckUtils]: 31: Hoare triple {65919#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {65919#true} is VALID [2022-04-27 15:19:46,568 INFO L290 TraceCheckUtils]: 32: Hoare triple {65919#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {65919#true} is VALID [2022-04-27 15:19:46,568 INFO L272 TraceCheckUtils]: 33: Hoare triple {65919#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {66005#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:46,568 INFO L290 TraceCheckUtils]: 34: Hoare triple {66005#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {66026#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:19:46,570 INFO L290 TraceCheckUtils]: 35: Hoare triple {66026#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {66027#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} is VALID [2022-04-27 15:19:46,570 INFO L290 TraceCheckUtils]: 36: Hoare triple {66027#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {66028#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:19:46,571 INFO L290 TraceCheckUtils]: 37: Hoare triple {66028#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {66028#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:19:46,571 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {66028#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {65919#true} #1178#return; {65920#false} is VALID [2022-04-27 15:19:46,571 INFO L290 TraceCheckUtils]: 39: Hoare triple {65920#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {65920#false} is VALID [2022-04-27 15:19:46,571 INFO L272 TraceCheckUtils]: 40: Hoare triple {65920#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {65919#true} is VALID [2022-04-27 15:19:46,571 INFO L290 TraceCheckUtils]: 41: Hoare triple {65919#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {65919#true} is VALID [2022-04-27 15:19:46,571 INFO L290 TraceCheckUtils]: 42: Hoare triple {65919#true} assume 0 == ~__BLAST_NONDET~2; {65919#true} is VALID [2022-04-27 15:19:46,571 INFO L290 TraceCheckUtils]: 43: Hoare triple {65919#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {65919#true} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 44: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,572 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {65919#true} {65920#false} #1180#return; {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 46: Hoare triple {65920#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 47: Hoare triple {65920#false} assume true; {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {65920#false} {65919#true} #1220#return; {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 49: Hoare triple {65920#false} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L272 TraceCheckUtils]: 50: Hoare triple {65920#false} call stub_driver_init(); {66029#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 51: Hoare triple {66029#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {65919#true} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 52: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,572 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {65919#true} {65920#false} #1222#return; {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 54: Hoare triple {65920#false} assume !!(~status~5 >= 0); {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 55: Hoare triple {65920#false} assume !(0 == ~__BLAST_NONDET~0); {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 56: Hoare triple {65920#false} assume !(1 == ~__BLAST_NONDET~0); {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 57: Hoare triple {65920#false} assume !(2 == ~__BLAST_NONDET~0); {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 58: Hoare triple {65920#false} assume 3 == ~__BLAST_NONDET~0; {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L272 TraceCheckUtils]: 59: Hoare triple {65920#false} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 60: Hoare triple {65920#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {65920#false} is VALID [2022-04-27 15:19:46,572 INFO L290 TraceCheckUtils]: 61: Hoare triple {65920#false} assume 0 == #t~mem81 % 256;havoc #t~mem81; {65920#false} is VALID [2022-04-27 15:19:46,573 INFO L290 TraceCheckUtils]: 62: Hoare triple {65920#false} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {65920#false} is VALID [2022-04-27 15:19:46,573 INFO L272 TraceCheckUtils]: 63: Hoare triple {65920#false} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {66005#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:46,573 INFO L290 TraceCheckUtils]: 64: Hoare triple {66005#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {65919#true} is VALID [2022-04-27 15:19:46,573 INFO L290 TraceCheckUtils]: 65: Hoare triple {65919#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {65919#true} is VALID [2022-04-27 15:19:46,573 INFO L290 TraceCheckUtils]: 66: Hoare triple {65919#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {65919#true} is VALID [2022-04-27 15:19:46,573 INFO L290 TraceCheckUtils]: 67: Hoare triple {65919#true} assume #res.base == dest.base && #res.offset == dest.offset; {65919#true} is VALID [2022-04-27 15:19:46,573 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {65919#true} {65920#false} #1186#return; {65920#false} is VALID [2022-04-27 15:19:46,573 INFO L290 TraceCheckUtils]: 69: Hoare triple {65920#false} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {65920#false} is VALID [2022-04-27 15:19:46,573 INFO L290 TraceCheckUtils]: 70: Hoare triple {65920#false} assume !(~s~0 != ~NP~0); {65920#false} is VALID [2022-04-27 15:19:46,573 INFO L290 TraceCheckUtils]: 71: Hoare triple {65920#false} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {65920#false} is VALID [2022-04-27 15:19:46,573 INFO L290 TraceCheckUtils]: 72: Hoare triple {65920#false} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {65920#false} is VALID [2022-04-27 15:19:46,573 INFO L272 TraceCheckUtils]: 73: Hoare triple {65920#false} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {66030#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:46,573 INFO L290 TraceCheckUtils]: 74: Hoare triple {66030#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {65919#true} is VALID [2022-04-27 15:19:46,573 INFO L290 TraceCheckUtils]: 75: Hoare triple {65919#true} assume 0 != ~compRegistered~0; {65919#true} is VALID [2022-04-27 15:19:46,574 INFO L272 TraceCheckUtils]: 76: Hoare triple {65919#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {66042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:46,574 INFO L290 TraceCheckUtils]: 77: Hoare triple {66042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {65919#true} is VALID [2022-04-27 15:19:46,574 INFO L272 TraceCheckUtils]: 78: Hoare triple {65919#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {66042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:46,575 INFO L290 TraceCheckUtils]: 79: Hoare triple {66042#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {65919#true} is VALID [2022-04-27 15:19:46,575 INFO L290 TraceCheckUtils]: 80: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,575 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {65919#true} {65919#true} #1174#return; {65919#true} is VALID [2022-04-27 15:19:46,575 INFO L290 TraceCheckUtils]: 82: Hoare triple {65919#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {65919#true} is VALID [2022-04-27 15:19:46,575 INFO L290 TraceCheckUtils]: 83: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,575 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {65919#true} {65919#true} #1210#return; {65919#true} is VALID [2022-04-27 15:19:46,575 INFO L290 TraceCheckUtils]: 85: Hoare triple {65919#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {65919#true} is VALID [2022-04-27 15:19:46,575 INFO L290 TraceCheckUtils]: 86: Hoare triple {65919#true} assume -1073741802 == ~compRetStatus~0; {65919#true} is VALID [2022-04-27 15:19:46,575 INFO L272 TraceCheckUtils]: 87: Hoare triple {65919#true} call stubMoreProcessingRequired(); {66046#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:46,575 INFO L290 TraceCheckUtils]: 88: Hoare triple {66046#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {65919#true} is VALID [2022-04-27 15:19:46,575 INFO L290 TraceCheckUtils]: 89: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,575 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {65919#true} {65919#true} #1212#return; {65919#true} is VALID [2022-04-27 15:19:46,575 INFO L290 TraceCheckUtils]: 91: Hoare triple {65919#true} assume !(0 == ~__BLAST_NONDET~11); {65919#true} is VALID [2022-04-27 15:19:46,575 INFO L290 TraceCheckUtils]: 92: Hoare triple {65919#true} assume !(1 == ~__BLAST_NONDET~11); {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 93: Hoare triple {65919#true} ~returnVal2~0 := 259; {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 94: Hoare triple {65919#true} assume !(~s~0 == ~NP~0); {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 95: Hoare triple {65919#true} assume ~s~0 == ~MPR1~0; {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 96: Hoare triple {65919#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 97: Hoare triple {65919#true} #res := ~returnVal2~0; {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 98: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {65919#true} {65920#false} #1192#return; {65920#false} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 100: Hoare triple {65920#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {65920#false} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 101: Hoare triple {65920#false} assume 259 == ~status~3; {65920#false} is VALID [2022-04-27 15:19:46,576 INFO L272 TraceCheckUtils]: 102: Hoare triple {65920#false} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {66047#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 103: Hoare triple {66047#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 104: Hoare triple {65919#true} assume !(~s~0 == ~MPR3~0); {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 105: Hoare triple {65919#true} assume !(1 == ~customIrp~0); {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 106: Hoare triple {65919#true} assume !(~s~0 == ~MPR3~0); {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 107: Hoare triple {65919#true} assume 0 == ~__BLAST_NONDET~13; {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 108: Hoare triple {65919#true} #res := 0; {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L290 TraceCheckUtils]: 109: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:46,576 INFO L284 TraceCheckUtils]: 110: Hoare quadruple {65919#true} {65920#false} #1194#return; {65920#false} is VALID [2022-04-27 15:19:46,577 INFO L290 TraceCheckUtils]: 111: Hoare triple {65920#false} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {65920#false} is VALID [2022-04-27 15:19:46,577 INFO L290 TraceCheckUtils]: 112: Hoare triple {65920#false} assume ~status~3 >= 0; {65920#false} is VALID [2022-04-27 15:19:46,577 INFO L290 TraceCheckUtils]: 113: Hoare triple {65920#false} assume !(~myStatus~0 >= 0); {65920#false} is VALID [2022-04-27 15:19:46,577 INFO L290 TraceCheckUtils]: 114: Hoare triple {65920#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {65920#false} is VALID [2022-04-27 15:19:46,577 INFO L272 TraceCheckUtils]: 115: Hoare triple {65920#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {65920#false} is VALID [2022-04-27 15:19:46,577 INFO L290 TraceCheckUtils]: 116: Hoare triple {65920#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {65920#false} is VALID [2022-04-27 15:19:46,577 INFO L290 TraceCheckUtils]: 117: Hoare triple {65920#false} assume !(~s~0 == ~NP~0); {65920#false} is VALID [2022-04-27 15:19:46,577 INFO L272 TraceCheckUtils]: 118: Hoare triple {65920#false} call errorFn(); {65920#false} is VALID [2022-04-27 15:19:46,577 INFO L290 TraceCheckUtils]: 119: Hoare triple {65920#false} assume !false; {65920#false} is VALID [2022-04-27 15:19:46,577 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:19:46,577 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:19:46,577 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [564818291] [2022-04-27 15:19:46,577 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [564818291] provided 0 perfect and 1 imperfect interpolant sequences [2022-04-27 15:19:46,578 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1329304916] [2022-04-27 15:19:46,578 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:19:46,578 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-04-27 15:19:46,578 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2022-04-27 15:19:46,579 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-04-27 15:19:46,580 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-04-27 15:19:47,489 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:47,496 INFO L263 TraceCheckSpWp]: Trace formula consists of 1839 conjuncts, 7 conjunts are in the unsatisfiable core [2022-04-27 15:19:47,528 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:47,531 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-04-27 15:19:47,785 INFO L272 TraceCheckUtils]: 0: Hoare triple {65919#true} call ULTIMATE.init(); {65919#true} is VALID [2022-04-27 15:19:47,785 INFO L290 TraceCheckUtils]: 1: Hoare triple {65919#true} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {65919#true} is VALID [2022-04-27 15:19:47,785 INFO L290 TraceCheckUtils]: 2: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:47,785 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {65919#true} {65919#true} #1270#return; {65919#true} is VALID [2022-04-27 15:19:47,785 INFO L272 TraceCheckUtils]: 4: Hoare triple {65919#true} call #t~ret213 := main(); {65919#true} is VALID [2022-04-27 15:19:47,785 INFO L290 TraceCheckUtils]: 5: Hoare triple {65919#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {65919#true} is VALID [2022-04-27 15:19:47,785 INFO L272 TraceCheckUtils]: 6: Hoare triple {65919#true} call _BLAST_init(); {65919#true} is VALID [2022-04-27 15:19:47,785 INFO L290 TraceCheckUtils]: 7: Hoare triple {65919#true} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {65919#true} is VALID [2022-04-27 15:19:47,785 INFO L290 TraceCheckUtils]: 8: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:47,785 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {65919#true} {65919#true} #1216#return; {65919#true} is VALID [2022-04-27 15:19:47,785 INFO L272 TraceCheckUtils]: 10: Hoare triple {65919#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L290 TraceCheckUtils]: 11: Hoare triple {65919#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L272 TraceCheckUtils]: 12: Hoare triple {65919#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L290 TraceCheckUtils]: 13: Hoare triple {65919#true} ~cond := #in~cond; {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L290 TraceCheckUtils]: 14: Hoare triple {65919#true} assume !(0 == ~cond); {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L290 TraceCheckUtils]: 15: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {65919#true} {65919#true} #1254#return; {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L290 TraceCheckUtils]: 17: Hoare triple {65919#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L290 TraceCheckUtils]: 18: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {65919#true} {65919#true} #1218#return; {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L290 TraceCheckUtils]: 20: Hoare triple {65919#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L290 TraceCheckUtils]: 21: Hoare triple {65919#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L290 TraceCheckUtils]: 22: Hoare triple {65919#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L272 TraceCheckUtils]: 23: Hoare triple {65919#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L290 TraceCheckUtils]: 24: Hoare triple {65919#true} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L272 TraceCheckUtils]: 25: Hoare triple {65919#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {65919#true} is VALID [2022-04-27 15:19:47,786 INFO L290 TraceCheckUtils]: 26: Hoare triple {65919#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 27: Hoare triple {65919#true} assume 0 == ~__BLAST_NONDET~5; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 28: Hoare triple {65919#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 29: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {65919#true} {65919#true} #1176#return; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 31: Hoare triple {65919#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 32: Hoare triple {65919#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L272 TraceCheckUtils]: 33: Hoare triple {65919#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 34: Hoare triple {65919#true} #t~loopctr214 := 0; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 35: Hoare triple {65919#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 36: Hoare triple {65919#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 37: Hoare triple {65919#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {65919#true} {65919#true} #1178#return; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 39: Hoare triple {65919#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L272 TraceCheckUtils]: 40: Hoare triple {65919#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 41: Hoare triple {65919#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 42: Hoare triple {65919#true} assume 0 == ~__BLAST_NONDET~2; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 43: Hoare triple {65919#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {65919#true} is VALID [2022-04-27 15:19:47,787 INFO L290 TraceCheckUtils]: 44: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {65919#true} {65919#true} #1180#return; {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L290 TraceCheckUtils]: 46: Hoare triple {65919#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L290 TraceCheckUtils]: 47: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {65919#true} {65919#true} #1220#return; {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L290 TraceCheckUtils]: 49: Hoare triple {65919#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L272 TraceCheckUtils]: 50: Hoare triple {65919#true} call stub_driver_init(); {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L290 TraceCheckUtils]: 51: Hoare triple {65919#true} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L290 TraceCheckUtils]: 52: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {65919#true} {65919#true} #1222#return; {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L290 TraceCheckUtils]: 54: Hoare triple {65919#true} assume !!(~status~5 >= 0); {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L290 TraceCheckUtils]: 55: Hoare triple {65919#true} assume !(0 == ~__BLAST_NONDET~0); {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L290 TraceCheckUtils]: 56: Hoare triple {65919#true} assume !(1 == ~__BLAST_NONDET~0); {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L290 TraceCheckUtils]: 57: Hoare triple {65919#true} assume !(2 == ~__BLAST_NONDET~0); {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L290 TraceCheckUtils]: 58: Hoare triple {65919#true} assume 3 == ~__BLAST_NONDET~0; {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L272 TraceCheckUtils]: 59: Hoare triple {65919#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L290 TraceCheckUtils]: 60: Hoare triple {65919#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {65919#true} is VALID [2022-04-27 15:19:47,788 INFO L290 TraceCheckUtils]: 61: Hoare triple {65919#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 62: Hoare triple {65919#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L272 TraceCheckUtils]: 63: Hoare triple {65919#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 64: Hoare triple {65919#true} #t~loopctr215 := 0; {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 65: Hoare triple {65919#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 66: Hoare triple {65919#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 67: Hoare triple {65919#true} assume #res.base == dest.base && #res.offset == dest.offset; {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {65919#true} {65919#true} #1186#return; {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 69: Hoare triple {65919#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 70: Hoare triple {65919#true} assume !(~s~0 != ~NP~0); {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 71: Hoare triple {65919#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 72: Hoare triple {65919#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L272 TraceCheckUtils]: 73: Hoare triple {65919#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 74: Hoare triple {65919#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 75: Hoare triple {65919#true} assume 0 != ~compRegistered~0; {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L272 TraceCheckUtils]: 76: Hoare triple {65919#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 77: Hoare triple {65919#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L272 TraceCheckUtils]: 78: Hoare triple {65919#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {65919#true} is VALID [2022-04-27 15:19:47,789 INFO L290 TraceCheckUtils]: 79: Hoare triple {65919#true} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L290 TraceCheckUtils]: 80: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {65919#true} {65919#true} #1174#return; {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L290 TraceCheckUtils]: 82: Hoare triple {65919#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L290 TraceCheckUtils]: 83: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {65919#true} {65919#true} #1210#return; {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L290 TraceCheckUtils]: 85: Hoare triple {65919#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L290 TraceCheckUtils]: 86: Hoare triple {65919#true} assume -1073741802 == ~compRetStatus~0; {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L272 TraceCheckUtils]: 87: Hoare triple {65919#true} call stubMoreProcessingRequired(); {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L290 TraceCheckUtils]: 88: Hoare triple {65919#true} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L290 TraceCheckUtils]: 89: Hoare triple {65919#true} assume true; {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {65919#true} {65919#true} #1212#return; {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L290 TraceCheckUtils]: 91: Hoare triple {65919#true} assume !(0 == ~__BLAST_NONDET~11); {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L290 TraceCheckUtils]: 92: Hoare triple {65919#true} assume !(1 == ~__BLAST_NONDET~11); {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L290 TraceCheckUtils]: 93: Hoare triple {65919#true} ~returnVal2~0 := 259; {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L290 TraceCheckUtils]: 94: Hoare triple {65919#true} assume !(~s~0 == ~NP~0); {65919#true} is VALID [2022-04-27 15:19:47,790 INFO L290 TraceCheckUtils]: 95: Hoare triple {65919#true} assume ~s~0 == ~MPR1~0; {65919#true} is VALID [2022-04-27 15:19:47,791 INFO L290 TraceCheckUtils]: 96: Hoare triple {65919#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {66339#(= ~MPR3~0 ~s~0)} is VALID [2022-04-27 15:19:47,791 INFO L290 TraceCheckUtils]: 97: Hoare triple {66339#(= ~MPR3~0 ~s~0)} #res := ~returnVal2~0; {66339#(= ~MPR3~0 ~s~0)} is VALID [2022-04-27 15:19:47,791 INFO L290 TraceCheckUtils]: 98: Hoare triple {66339#(= ~MPR3~0 ~s~0)} assume true; {66339#(= ~MPR3~0 ~s~0)} is VALID [2022-04-27 15:19:47,792 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {66339#(= ~MPR3~0 ~s~0)} {65919#true} #1192#return; {66339#(= ~MPR3~0 ~s~0)} is VALID [2022-04-27 15:19:47,793 INFO L290 TraceCheckUtils]: 100: Hoare triple {66339#(= ~MPR3~0 ~s~0)} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {66339#(= ~MPR3~0 ~s~0)} is VALID [2022-04-27 15:19:47,793 INFO L290 TraceCheckUtils]: 101: Hoare triple {66339#(= ~MPR3~0 ~s~0)} assume 259 == ~status~3; {66339#(= ~MPR3~0 ~s~0)} is VALID [2022-04-27 15:19:47,794 INFO L272 TraceCheckUtils]: 102: Hoare triple {66339#(= ~MPR3~0 ~s~0)} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {66046#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:47,794 INFO L290 TraceCheckUtils]: 103: Hoare triple {66046#(= ~s~0 |old(~s~0)|)} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {66046#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:47,795 INFO L290 TraceCheckUtils]: 104: Hoare triple {66046#(= ~s~0 |old(~s~0)|)} assume !(~s~0 == ~MPR3~0); {66364#(and (= ~s~0 |old(~s~0)|) (not (= ~MPR3~0 ~s~0)))} is VALID [2022-04-27 15:19:47,795 INFO L290 TraceCheckUtils]: 105: Hoare triple {66364#(and (= ~s~0 |old(~s~0)|) (not (= ~MPR3~0 ~s~0)))} assume !(1 == ~customIrp~0); {66364#(and (= ~s~0 |old(~s~0)|) (not (= ~MPR3~0 ~s~0)))} is VALID [2022-04-27 15:19:47,795 INFO L290 TraceCheckUtils]: 106: Hoare triple {66364#(and (= ~s~0 |old(~s~0)|) (not (= ~MPR3~0 ~s~0)))} assume !(~s~0 == ~MPR3~0); {66364#(and (= ~s~0 |old(~s~0)|) (not (= ~MPR3~0 ~s~0)))} is VALID [2022-04-27 15:19:47,796 INFO L290 TraceCheckUtils]: 107: Hoare triple {66364#(and (= ~s~0 |old(~s~0)|) (not (= ~MPR3~0 ~s~0)))} assume 0 == ~__BLAST_NONDET~13; {66364#(and (= ~s~0 |old(~s~0)|) (not (= ~MPR3~0 ~s~0)))} is VALID [2022-04-27 15:19:47,796 INFO L290 TraceCheckUtils]: 108: Hoare triple {66364#(and (= ~s~0 |old(~s~0)|) (not (= ~MPR3~0 ~s~0)))} #res := 0; {66364#(and (= ~s~0 |old(~s~0)|) (not (= ~MPR3~0 ~s~0)))} is VALID [2022-04-27 15:19:47,797 INFO L290 TraceCheckUtils]: 109: Hoare triple {66364#(and (= ~s~0 |old(~s~0)|) (not (= ~MPR3~0 ~s~0)))} assume true; {66364#(and (= ~s~0 |old(~s~0)|) (not (= ~MPR3~0 ~s~0)))} is VALID [2022-04-27 15:19:47,798 INFO L284 TraceCheckUtils]: 110: Hoare quadruple {66364#(and (= ~s~0 |old(~s~0)|) (not (= ~MPR3~0 ~s~0)))} {66339#(= ~MPR3~0 ~s~0)} #1194#return; {65920#false} is VALID [2022-04-27 15:19:47,798 INFO L290 TraceCheckUtils]: 111: Hoare triple {65920#false} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {65920#false} is VALID [2022-04-27 15:19:47,798 INFO L290 TraceCheckUtils]: 112: Hoare triple {65920#false} assume ~status~3 >= 0; {65920#false} is VALID [2022-04-27 15:19:47,798 INFO L290 TraceCheckUtils]: 113: Hoare triple {65920#false} assume !(~myStatus~0 >= 0); {65920#false} is VALID [2022-04-27 15:19:47,798 INFO L290 TraceCheckUtils]: 114: Hoare triple {65920#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {65920#false} is VALID [2022-04-27 15:19:47,798 INFO L272 TraceCheckUtils]: 115: Hoare triple {65920#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {65920#false} is VALID [2022-04-27 15:19:47,798 INFO L290 TraceCheckUtils]: 116: Hoare triple {65920#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {65920#false} is VALID [2022-04-27 15:19:47,798 INFO L290 TraceCheckUtils]: 117: Hoare triple {65920#false} assume !(~s~0 == ~NP~0); {65920#false} is VALID [2022-04-27 15:19:47,798 INFO L272 TraceCheckUtils]: 118: Hoare triple {65920#false} call errorFn(); {65920#false} is VALID [2022-04-27 15:19:47,798 INFO L290 TraceCheckUtils]: 119: Hoare triple {65920#false} assume !false; {65920#false} is VALID [2022-04-27 15:19:47,799 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:19:47,799 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-04-27 15:19:47,799 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1329304916] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:19:47,799 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-04-27 15:19:47,799 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [14] total 16 [2022-04-27 15:19:47,799 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1767662353] [2022-04-27 15:19:47,799 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:19:47,799 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 17.2) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (19), 3 states have call predecessors, (19), 3 states have return successors, (15), 3 states have call predecessors, (15), 2 states have call successors, (15) Word has length 120 [2022-04-27 15:19:47,800 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:19:47,800 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 5 states, 5 states have (on average 17.2) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (19), 3 states have call predecessors, (19), 3 states have return successors, (15), 3 states have call predecessors, (15), 2 states have call successors, (15) [2022-04-27 15:19:47,891 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 120 edges. 120 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:19:47,892 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-04-27 15:19:47,892 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:19:47,892 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-04-27 15:19:47,892 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=50, Invalid=190, Unknown=0, NotChecked=0, Total=240 [2022-04-27 15:19:47,892 INFO L87 Difference]: Start difference. First operand 338 states and 377 transitions. Second operand has 5 states, 5 states have (on average 17.2) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (19), 3 states have call predecessors, (19), 3 states have return successors, (15), 3 states have call predecessors, (15), 2 states have call successors, (15) [2022-04-27 15:19:53,579 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:53,579 INFO L93 Difference]: Finished difference Result 378 states and 421 transitions. [2022-04-27 15:19:53,580 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2022-04-27 15:19:53,580 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 17.2) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (19), 3 states have call predecessors, (19), 3 states have return successors, (15), 3 states have call predecessors, (15), 2 states have call successors, (15) Word has length 120 [2022-04-27 15:19:53,580 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:19:53,580 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 5 states, 5 states have (on average 17.2) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (19), 3 states have call predecessors, (19), 3 states have return successors, (15), 3 states have call predecessors, (15), 2 states have call successors, (15) [2022-04-27 15:19:53,581 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 6 states to 6 states and 212 transitions. [2022-04-27 15:19:53,581 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 5 states, 5 states have (on average 17.2) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (19), 3 states have call predecessors, (19), 3 states have return successors, (15), 3 states have call predecessors, (15), 2 states have call successors, (15) [2022-04-27 15:19:53,582 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 6 states to 6 states and 212 transitions. [2022-04-27 15:19:53,582 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 6 states and 212 transitions. [2022-04-27 15:19:53,722 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 212 edges. 212 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:19:53,727 INFO L225 Difference]: With dead ends: 378 [2022-04-27 15:19:53,727 INFO L226 Difference]: Without dead ends: 313 [2022-04-27 15:19:53,727 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 156 GetRequests, 141 SyntacticMatches, 0 SemanticMatches, 15 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 33 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=54, Invalid=218, Unknown=0, NotChecked=0, Total=272 [2022-04-27 15:19:53,728 INFO L413 NwaCegarLoop]: 159 mSDtfsCounter, 69 mSDsluCounter, 204 mSDsCounter, 0 mSdLazyCounter, 211 mSolverCounterSat, 22 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 76 SdHoareTripleChecker+Valid, 363 SdHoareTripleChecker+Invalid, 233 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 22 IncrementalHoareTripleChecker+Valid, 211 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2022-04-27 15:19:53,728 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [76 Valid, 363 Invalid, 233 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [22 Valid, 211 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2022-04-27 15:19:53,728 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 313 states. [2022-04-27 15:19:53,965 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 313 to 291. [2022-04-27 15:19:53,965 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:19:53,966 INFO L82 GeneralOperation]: Start isEquivalent. First operand 313 states. Second operand has 291 states, 223 states have (on average 1.1210762331838564) internal successors, (250), 225 states have internal predecessors, (250), 33 states have call successors, (33), 33 states have call predecessors, (33), 34 states have return successors, (35), 32 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:19:53,966 INFO L74 IsIncluded]: Start isIncluded. First operand 313 states. Second operand has 291 states, 223 states have (on average 1.1210762331838564) internal successors, (250), 225 states have internal predecessors, (250), 33 states have call successors, (33), 33 states have call predecessors, (33), 34 states have return successors, (35), 32 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:19:53,966 INFO L87 Difference]: Start difference. First operand 313 states. Second operand has 291 states, 223 states have (on average 1.1210762331838564) internal successors, (250), 225 states have internal predecessors, (250), 33 states have call successors, (33), 33 states have call predecessors, (33), 34 states have return successors, (35), 32 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:19:53,970 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:53,970 INFO L93 Difference]: Finished difference Result 313 states and 343 transitions. [2022-04-27 15:19:53,970 INFO L276 IsEmpty]: Start isEmpty. Operand 313 states and 343 transitions. [2022-04-27 15:19:53,970 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:19:53,970 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:19:53,970 INFO L74 IsIncluded]: Start isIncluded. First operand has 291 states, 223 states have (on average 1.1210762331838564) internal successors, (250), 225 states have internal predecessors, (250), 33 states have call successors, (33), 33 states have call predecessors, (33), 34 states have return successors, (35), 32 states have call predecessors, (35), 31 states have call successors, (35) Second operand 313 states. [2022-04-27 15:19:53,971 INFO L87 Difference]: Start difference. First operand has 291 states, 223 states have (on average 1.1210762331838564) internal successors, (250), 225 states have internal predecessors, (250), 33 states have call successors, (33), 33 states have call predecessors, (33), 34 states have return successors, (35), 32 states have call predecessors, (35), 31 states have call successors, (35) Second operand 313 states. [2022-04-27 15:19:53,974 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:19:53,974 INFO L93 Difference]: Finished difference Result 313 states and 343 transitions. [2022-04-27 15:19:53,974 INFO L276 IsEmpty]: Start isEmpty. Operand 313 states and 343 transitions. [2022-04-27 15:19:53,974 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:19:53,974 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:19:53,974 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:19:53,975 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:19:53,975 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 291 states, 223 states have (on average 1.1210762331838564) internal successors, (250), 225 states have internal predecessors, (250), 33 states have call successors, (33), 33 states have call predecessors, (33), 34 states have return successors, (35), 32 states have call predecessors, (35), 31 states have call successors, (35) [2022-04-27 15:19:53,979 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 291 states to 291 states and 318 transitions. [2022-04-27 15:19:53,979 INFO L78 Accepts]: Start accepts. Automaton has 291 states and 318 transitions. Word has length 120 [2022-04-27 15:19:53,979 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:19:53,979 INFO L495 AbstractCegarLoop]: Abstraction has 291 states and 318 transitions. [2022-04-27 15:19:53,979 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 17.2) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (19), 3 states have call predecessors, (19), 3 states have return successors, (15), 3 states have call predecessors, (15), 2 states have call successors, (15) [2022-04-27 15:19:53,979 INFO L276 IsEmpty]: Start isEmpty. Operand 291 states and 318 transitions. [2022-04-27 15:19:53,980 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 127 [2022-04-27 15:19:53,980 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:19:53,980 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:19:54,008 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2022-04-27 15:19:54,202 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable34 [2022-04-27 15:19:54,202 INFO L420 AbstractCegarLoop]: === Iteration 36 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:19:54,202 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:19:54,202 INFO L85 PathProgramCache]: Analyzing trace with hash 1988173063, now seen corresponding path program 1 times [2022-04-27 15:19:54,203 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:19:54,203 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [821316001] [2022-04-27 15:19:54,203 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:19:54,203 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:19:54,298 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,392 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:19:54,393 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,398 INFO L290 TraceCheckUtils]: 0: Hoare triple {68056#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {67957#true} is VALID [2022-04-27 15:19:54,398 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,398 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {67957#true} {67957#true} #1270#return; {67957#true} is VALID [2022-04-27 15:19:54,420 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:19:54,421 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,425 INFO L290 TraceCheckUtils]: 0: Hoare triple {68057#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {67957#true} is VALID [2022-04-27 15:19:54,425 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,425 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {67957#true} {67957#true} #1216#return; {67957#true} is VALID [2022-04-27 15:19:54,432 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:19:54,437 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,443 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:54,444 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,447 INFO L290 TraceCheckUtils]: 0: Hoare triple {67957#true} ~cond := #in~cond; {67957#true} is VALID [2022-04-27 15:19:54,447 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume !(0 == ~cond); {67957#true} is VALID [2022-04-27 15:19:54,448 INFO L290 TraceCheckUtils]: 2: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,448 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {67957#true} {67957#true} #1254#return; {67957#true} is VALID [2022-04-27 15:19:54,448 INFO L290 TraceCheckUtils]: 0: Hoare triple {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {67957#true} is VALID [2022-04-27 15:19:54,448 INFO L272 TraceCheckUtils]: 1: Hoare triple {67957#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {67957#true} is VALID [2022-04-27 15:19:54,448 INFO L290 TraceCheckUtils]: 2: Hoare triple {67957#true} ~cond := #in~cond; {67957#true} is VALID [2022-04-27 15:19:54,448 INFO L290 TraceCheckUtils]: 3: Hoare triple {67957#true} assume !(0 == ~cond); {67957#true} is VALID [2022-04-27 15:19:54,448 INFO L290 TraceCheckUtils]: 4: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,448 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {67957#true} {67957#true} #1254#return; {67957#true} is VALID [2022-04-27 15:19:54,448 INFO L290 TraceCheckUtils]: 6: Hoare triple {67957#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {67957#true} is VALID [2022-04-27 15:19:54,448 INFO L290 TraceCheckUtils]: 7: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,448 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {67957#true} {67957#true} #1218#return; {67957#true} is VALID [2022-04-27 15:19:54,460 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:19:54,472 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,480 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:54,483 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,488 INFO L290 TraceCheckUtils]: 0: Hoare triple {68063#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {67957#true} is VALID [2022-04-27 15:19:54,488 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume 0 == ~__BLAST_NONDET~5; {67957#true} is VALID [2022-04-27 15:19:54,488 INFO L290 TraceCheckUtils]: 2: Hoare triple {67957#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {67957#true} is VALID [2022-04-27 15:19:54,488 INFO L290 TraceCheckUtils]: 3: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,488 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {67957#true} {67957#true} #1176#return; {67957#true} is VALID [2022-04-27 15:19:54,488 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:19:54,491 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,495 INFO L290 TraceCheckUtils]: 0: Hoare triple {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {67957#true} is VALID [2022-04-27 15:19:54,495 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {67957#true} is VALID [2022-04-27 15:19:54,495 INFO L290 TraceCheckUtils]: 2: Hoare triple {67957#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {67957#true} is VALID [2022-04-27 15:19:54,495 INFO L290 TraceCheckUtils]: 3: Hoare triple {67957#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {67957#true} is VALID [2022-04-27 15:19:54,495 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {67957#true} {67957#true} #1178#return; {67957#true} is VALID [2022-04-27 15:19:54,496 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:19:54,500 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,504 INFO L290 TraceCheckUtils]: 0: Hoare triple {67957#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {67957#true} is VALID [2022-04-27 15:19:54,504 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume 0 == ~__BLAST_NONDET~2; {67957#true} is VALID [2022-04-27 15:19:54,504 INFO L290 TraceCheckUtils]: 2: Hoare triple {67957#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {67957#true} is VALID [2022-04-27 15:19:54,504 INFO L290 TraceCheckUtils]: 3: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,504 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {67957#true} {67957#true} #1180#return; {67957#true} is VALID [2022-04-27 15:19:54,505 INFO L290 TraceCheckUtils]: 0: Hoare triple {68063#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {67957#true} is VALID [2022-04-27 15:19:54,516 INFO L272 TraceCheckUtils]: 1: Hoare triple {67957#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {68063#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:54,516 INFO L290 TraceCheckUtils]: 2: Hoare triple {68063#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {67957#true} is VALID [2022-04-27 15:19:54,516 INFO L290 TraceCheckUtils]: 3: Hoare triple {67957#true} assume 0 == ~__BLAST_NONDET~5; {67957#true} is VALID [2022-04-27 15:19:54,516 INFO L290 TraceCheckUtils]: 4: Hoare triple {67957#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {67957#true} is VALID [2022-04-27 15:19:54,516 INFO L290 TraceCheckUtils]: 5: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,516 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {67957#true} {67957#true} #1176#return; {67957#true} is VALID [2022-04-27 15:19:54,516 INFO L290 TraceCheckUtils]: 7: Hoare triple {67957#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {67957#true} is VALID [2022-04-27 15:19:54,516 INFO L290 TraceCheckUtils]: 8: Hoare triple {67957#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {67957#true} is VALID [2022-04-27 15:19:54,517 INFO L272 TraceCheckUtils]: 9: Hoare triple {67957#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:54,517 INFO L290 TraceCheckUtils]: 10: Hoare triple {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {67957#true} is VALID [2022-04-27 15:19:54,517 INFO L290 TraceCheckUtils]: 11: Hoare triple {67957#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {67957#true} is VALID [2022-04-27 15:19:54,517 INFO L290 TraceCheckUtils]: 12: Hoare triple {67957#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {67957#true} is VALID [2022-04-27 15:19:54,517 INFO L290 TraceCheckUtils]: 13: Hoare triple {67957#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {67957#true} is VALID [2022-04-27 15:19:54,517 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {67957#true} {67957#true} #1178#return; {67957#true} is VALID [2022-04-27 15:19:54,517 INFO L290 TraceCheckUtils]: 15: Hoare triple {67957#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {67957#true} is VALID [2022-04-27 15:19:54,517 INFO L272 TraceCheckUtils]: 16: Hoare triple {67957#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {67957#true} is VALID [2022-04-27 15:19:54,517 INFO L290 TraceCheckUtils]: 17: Hoare triple {67957#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {67957#true} is VALID [2022-04-27 15:19:54,517 INFO L290 TraceCheckUtils]: 18: Hoare triple {67957#true} assume 0 == ~__BLAST_NONDET~2; {67957#true} is VALID [2022-04-27 15:19:54,517 INFO L290 TraceCheckUtils]: 19: Hoare triple {67957#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {67957#true} is VALID [2022-04-27 15:19:54,517 INFO L290 TraceCheckUtils]: 20: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,518 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {67957#true} {67957#true} #1180#return; {67957#true} is VALID [2022-04-27 15:19:54,518 INFO L290 TraceCheckUtils]: 22: Hoare triple {67957#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {67957#true} is VALID [2022-04-27 15:19:54,518 INFO L290 TraceCheckUtils]: 23: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,518 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {67957#true} {67957#true} #1220#return; {67957#true} is VALID [2022-04-27 15:19:54,530 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:19:54,531 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,535 INFO L290 TraceCheckUtils]: 0: Hoare triple {68079#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {67957#true} is VALID [2022-04-27 15:19:54,535 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,535 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {67957#true} {67957#true} #1222#return; {67957#true} is VALID [2022-04-27 15:19:54,556 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 59 [2022-04-27 15:19:54,580 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,627 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2022-04-27 15:19:54,628 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,633 INFO L290 TraceCheckUtils]: 0: Hoare triple {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {67957#true} is VALID [2022-04-27 15:19:54,633 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {67957#true} is VALID [2022-04-27 15:19:54,633 INFO L290 TraceCheckUtils]: 2: Hoare triple {67957#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {67957#true} is VALID [2022-04-27 15:19:54,633 INFO L290 TraceCheckUtils]: 3: Hoare triple {67957#true} assume #res.base == dest.base && #res.offset == dest.offset; {67957#true} is VALID [2022-04-27 15:19:54,633 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {67957#true} {67957#true} #1186#return; {67957#true} is VALID [2022-04-27 15:19:54,643 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:19:54,650 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,707 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:19:54,709 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,725 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:19:54,726 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,730 INFO L290 TraceCheckUtils]: 0: Hoare triple {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {67957#true} is VALID [2022-04-27 15:19:54,730 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,730 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {67957#true} {67957#true} #1174#return; {67957#true} is VALID [2022-04-27 15:19:54,730 INFO L290 TraceCheckUtils]: 0: Hoare triple {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {67957#true} is VALID [2022-04-27 15:19:54,731 INFO L272 TraceCheckUtils]: 1: Hoare triple {67957#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:54,731 INFO L290 TraceCheckUtils]: 2: Hoare triple {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {67957#true} is VALID [2022-04-27 15:19:54,731 INFO L290 TraceCheckUtils]: 3: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,731 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {67957#true} {67957#true} #1174#return; {67957#true} is VALID [2022-04-27 15:19:54,731 INFO L290 TraceCheckUtils]: 5: Hoare triple {67957#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {67957#true} is VALID [2022-04-27 15:19:54,731 INFO L290 TraceCheckUtils]: 6: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,731 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {67957#true} {67957#true} #1210#return; {67957#true} is VALID [2022-04-27 15:19:54,744 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:19:54,748 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,752 INFO L290 TraceCheckUtils]: 0: Hoare triple {68136#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {67957#true} is VALID [2022-04-27 15:19:54,752 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,752 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {67957#true} {67957#true} #1212#return; {67957#true} is VALID [2022-04-27 15:19:54,752 INFO L290 TraceCheckUtils]: 0: Hoare triple {68118#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {67957#true} is VALID [2022-04-27 15:19:54,752 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume 0 != ~compRegistered~0; {67957#true} is VALID [2022-04-27 15:19:54,753 INFO L272 TraceCheckUtils]: 2: Hoare triple {67957#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:54,753 INFO L290 TraceCheckUtils]: 3: Hoare triple {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {67957#true} is VALID [2022-04-27 15:19:54,753 INFO L272 TraceCheckUtils]: 4: Hoare triple {67957#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:54,753 INFO L290 TraceCheckUtils]: 5: Hoare triple {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {67957#true} is VALID [2022-04-27 15:19:54,753 INFO L290 TraceCheckUtils]: 6: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,754 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {67957#true} {67957#true} #1174#return; {67957#true} is VALID [2022-04-27 15:19:54,754 INFO L290 TraceCheckUtils]: 8: Hoare triple {67957#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {67957#true} is VALID [2022-04-27 15:19:54,754 INFO L290 TraceCheckUtils]: 9: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,754 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {67957#true} {67957#true} #1210#return; {67957#true} is VALID [2022-04-27 15:19:54,754 INFO L290 TraceCheckUtils]: 11: Hoare triple {67957#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {67957#true} is VALID [2022-04-27 15:19:54,754 INFO L290 TraceCheckUtils]: 12: Hoare triple {67957#true} assume -1073741802 == ~compRetStatus~0; {67957#true} is VALID [2022-04-27 15:19:54,754 INFO L272 TraceCheckUtils]: 13: Hoare triple {67957#true} call stubMoreProcessingRequired(); {68136#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:54,754 INFO L290 TraceCheckUtils]: 14: Hoare triple {68136#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {67957#true} is VALID [2022-04-27 15:19:54,754 INFO L290 TraceCheckUtils]: 15: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,754 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {67957#true} {67957#true} #1212#return; {67957#true} is VALID [2022-04-27 15:19:54,754 INFO L290 TraceCheckUtils]: 17: Hoare triple {67957#true} assume 0 == ~__BLAST_NONDET~11; {67957#true} is VALID [2022-04-27 15:19:54,755 INFO L290 TraceCheckUtils]: 18: Hoare triple {67957#true} ~returnVal2~0 := 0; {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:54,755 INFO L290 TraceCheckUtils]: 19: Hoare triple {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume !(~s~0 == ~NP~0); {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:54,755 INFO L290 TraceCheckUtils]: 20: Hoare triple {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume ~s~0 == ~MPR1~0; {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:54,756 INFO L290 TraceCheckUtils]: 21: Hoare triple {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:54,756 INFO L290 TraceCheckUtils]: 22: Hoare triple {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} #res := ~returnVal2~0; {68131#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:19:54,756 INFO L290 TraceCheckUtils]: 23: Hoare triple {68131#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} assume true; {68131#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:19:54,757 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {68131#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} {67957#true} #1192#return; {68111#(= |KbFilter_PnP_#t~ret109| 0)} is VALID [2022-04-27 15:19:54,757 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 44 [2022-04-27 15:19:54,758 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:19:54,762 INFO L290 TraceCheckUtils]: 0: Hoare triple {68136#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {67957#true} is VALID [2022-04-27 15:19:54,762 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {67957#true} is VALID [2022-04-27 15:19:54,762 INFO L290 TraceCheckUtils]: 2: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,763 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {67957#true} {68112#(= KbFilter_PnP_~status~3 0)} #1196#return; {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,763 INFO L290 TraceCheckUtils]: 0: Hoare triple {68080#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {67957#true} is VALID [2022-04-27 15:19:54,763 INFO L290 TraceCheckUtils]: 1: Hoare triple {67957#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {67957#true} is VALID [2022-04-27 15:19:54,763 INFO L290 TraceCheckUtils]: 2: Hoare triple {67957#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {67957#true} is VALID [2022-04-27 15:19:54,764 INFO L272 TraceCheckUtils]: 3: Hoare triple {67957#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:54,764 INFO L290 TraceCheckUtils]: 4: Hoare triple {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {67957#true} is VALID [2022-04-27 15:19:54,764 INFO L290 TraceCheckUtils]: 5: Hoare triple {67957#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {67957#true} is VALID [2022-04-27 15:19:54,764 INFO L290 TraceCheckUtils]: 6: Hoare triple {67957#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {67957#true} is VALID [2022-04-27 15:19:54,764 INFO L290 TraceCheckUtils]: 7: Hoare triple {67957#true} assume #res.base == dest.base && #res.offset == dest.offset; {67957#true} is VALID [2022-04-27 15:19:54,764 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {67957#true} {67957#true} #1186#return; {67957#true} is VALID [2022-04-27 15:19:54,764 INFO L290 TraceCheckUtils]: 9: Hoare triple {67957#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {67957#true} is VALID [2022-04-27 15:19:54,764 INFO L290 TraceCheckUtils]: 10: Hoare triple {67957#true} assume !(~s~0 != ~NP~0); {67957#true} is VALID [2022-04-27 15:19:54,764 INFO L290 TraceCheckUtils]: 11: Hoare triple {67957#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {67957#true} is VALID [2022-04-27 15:19:54,764 INFO L290 TraceCheckUtils]: 12: Hoare triple {67957#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {67957#true} is VALID [2022-04-27 15:19:54,765 INFO L272 TraceCheckUtils]: 13: Hoare triple {67957#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {68118#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:54,765 INFO L290 TraceCheckUtils]: 14: Hoare triple {68118#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {67957#true} is VALID [2022-04-27 15:19:54,765 INFO L290 TraceCheckUtils]: 15: Hoare triple {67957#true} assume 0 != ~compRegistered~0; {67957#true} is VALID [2022-04-27 15:19:54,765 INFO L272 TraceCheckUtils]: 16: Hoare triple {67957#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:54,766 INFO L290 TraceCheckUtils]: 17: Hoare triple {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {67957#true} is VALID [2022-04-27 15:19:54,766 INFO L272 TraceCheckUtils]: 18: Hoare triple {67957#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:54,766 INFO L290 TraceCheckUtils]: 19: Hoare triple {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {67957#true} is VALID [2022-04-27 15:19:54,766 INFO L290 TraceCheckUtils]: 20: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,766 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {67957#true} {67957#true} #1174#return; {67957#true} is VALID [2022-04-27 15:19:54,766 INFO L290 TraceCheckUtils]: 22: Hoare triple {67957#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {67957#true} is VALID [2022-04-27 15:19:54,766 INFO L290 TraceCheckUtils]: 23: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,766 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {67957#true} {67957#true} #1210#return; {67957#true} is VALID [2022-04-27 15:19:54,766 INFO L290 TraceCheckUtils]: 25: Hoare triple {67957#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {67957#true} is VALID [2022-04-27 15:19:54,766 INFO L290 TraceCheckUtils]: 26: Hoare triple {67957#true} assume -1073741802 == ~compRetStatus~0; {67957#true} is VALID [2022-04-27 15:19:54,767 INFO L272 TraceCheckUtils]: 27: Hoare triple {67957#true} call stubMoreProcessingRequired(); {68136#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:54,767 INFO L290 TraceCheckUtils]: 28: Hoare triple {68136#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {67957#true} is VALID [2022-04-27 15:19:54,767 INFO L290 TraceCheckUtils]: 29: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,767 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {67957#true} {67957#true} #1212#return; {67957#true} is VALID [2022-04-27 15:19:54,767 INFO L290 TraceCheckUtils]: 31: Hoare triple {67957#true} assume 0 == ~__BLAST_NONDET~11; {67957#true} is VALID [2022-04-27 15:19:54,767 INFO L290 TraceCheckUtils]: 32: Hoare triple {67957#true} ~returnVal2~0 := 0; {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:54,768 INFO L290 TraceCheckUtils]: 33: Hoare triple {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume !(~s~0 == ~NP~0); {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:54,768 INFO L290 TraceCheckUtils]: 34: Hoare triple {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume ~s~0 == ~MPR1~0; {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:54,768 INFO L290 TraceCheckUtils]: 35: Hoare triple {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:54,769 INFO L290 TraceCheckUtils]: 36: Hoare triple {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} #res := ~returnVal2~0; {68131#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:19:54,769 INFO L290 TraceCheckUtils]: 37: Hoare triple {68131#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} assume true; {68131#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:19:54,770 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {68131#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} {67957#true} #1192#return; {68111#(= |KbFilter_PnP_#t~ret109| 0)} is VALID [2022-04-27 15:19:54,770 INFO L290 TraceCheckUtils]: 39: Hoare triple {68111#(= |KbFilter_PnP_#t~ret109| 0)} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,770 INFO L290 TraceCheckUtils]: 40: Hoare triple {68112#(= KbFilter_PnP_~status~3 0)} assume !(259 == ~status~3); {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,771 INFO L290 TraceCheckUtils]: 41: Hoare triple {68112#(= KbFilter_PnP_~status~3 0)} assume ~status~3 >= 0; {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,771 INFO L290 TraceCheckUtils]: 42: Hoare triple {68112#(= KbFilter_PnP_~status~3 0)} assume !(~myStatus~0 >= 0); {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,771 INFO L290 TraceCheckUtils]: 43: Hoare triple {68112#(= KbFilter_PnP_~status~3 0)} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,772 INFO L272 TraceCheckUtils]: 44: Hoare triple {68112#(= KbFilter_PnP_~status~3 0)} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {68136#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:54,772 INFO L290 TraceCheckUtils]: 45: Hoare triple {68136#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {67957#true} is VALID [2022-04-27 15:19:54,772 INFO L290 TraceCheckUtils]: 46: Hoare triple {67957#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {67957#true} is VALID [2022-04-27 15:19:54,772 INFO L290 TraceCheckUtils]: 47: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,772 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {67957#true} {68112#(= KbFilter_PnP_~status~3 0)} #1196#return; {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,772 INFO L290 TraceCheckUtils]: 49: Hoare triple {68112#(= KbFilter_PnP_~status~3 0)} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {68117#(= |KbFilter_PnP_#res| 0)} is VALID [2022-04-27 15:19:54,773 INFO L290 TraceCheckUtils]: 50: Hoare triple {68117#(= |KbFilter_PnP_#res| 0)} assume true; {68117#(= |KbFilter_PnP_#res| 0)} is VALID [2022-04-27 15:19:54,773 INFO L284 TraceCheckUtils]: 51: Hoare quadruple {68117#(= |KbFilter_PnP_#res| 0)} {67957#true} #1230#return; {68054#(not (= 259 |main_#t~ret174|))} is VALID [2022-04-27 15:19:54,780 INFO L272 TraceCheckUtils]: 0: Hoare triple {67957#true} call ULTIMATE.init(); {68056#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:19:54,780 INFO L290 TraceCheckUtils]: 1: Hoare triple {68056#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {67957#true} is VALID [2022-04-27 15:19:54,780 INFO L290 TraceCheckUtils]: 2: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,780 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {67957#true} {67957#true} #1270#return; {67957#true} is VALID [2022-04-27 15:19:54,780 INFO L272 TraceCheckUtils]: 4: Hoare triple {67957#true} call #t~ret213 := main(); {67957#true} is VALID [2022-04-27 15:19:54,780 INFO L290 TraceCheckUtils]: 5: Hoare triple {67957#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {67957#true} is VALID [2022-04-27 15:19:54,781 INFO L272 TraceCheckUtils]: 6: Hoare triple {67957#true} call _BLAST_init(); {68057#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:54,781 INFO L290 TraceCheckUtils]: 7: Hoare triple {68057#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {67957#true} is VALID [2022-04-27 15:19:54,781 INFO L290 TraceCheckUtils]: 8: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,781 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {67957#true} {67957#true} #1216#return; {67957#true} is VALID [2022-04-27 15:19:54,782 INFO L272 TraceCheckUtils]: 10: Hoare triple {67957#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:54,782 INFO L290 TraceCheckUtils]: 11: Hoare triple {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {67957#true} is VALID [2022-04-27 15:19:54,782 INFO L272 TraceCheckUtils]: 12: Hoare triple {67957#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {67957#true} is VALID [2022-04-27 15:19:54,782 INFO L290 TraceCheckUtils]: 13: Hoare triple {67957#true} ~cond := #in~cond; {67957#true} is VALID [2022-04-27 15:19:54,782 INFO L290 TraceCheckUtils]: 14: Hoare triple {67957#true} assume !(0 == ~cond); {67957#true} is VALID [2022-04-27 15:19:54,782 INFO L290 TraceCheckUtils]: 15: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,782 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {67957#true} {67957#true} #1254#return; {67957#true} is VALID [2022-04-27 15:19:54,782 INFO L290 TraceCheckUtils]: 17: Hoare triple {67957#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {67957#true} is VALID [2022-04-27 15:19:54,782 INFO L290 TraceCheckUtils]: 18: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,782 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {67957#true} {67957#true} #1218#return; {67957#true} is VALID [2022-04-27 15:19:54,782 INFO L290 TraceCheckUtils]: 20: Hoare triple {67957#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {67957#true} is VALID [2022-04-27 15:19:54,782 INFO L290 TraceCheckUtils]: 21: Hoare triple {67957#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {67957#true} is VALID [2022-04-27 15:19:54,782 INFO L290 TraceCheckUtils]: 22: Hoare triple {67957#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {67957#true} is VALID [2022-04-27 15:19:54,783 INFO L272 TraceCheckUtils]: 23: Hoare triple {67957#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {68063#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:54,784 INFO L290 TraceCheckUtils]: 24: Hoare triple {68063#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {67957#true} is VALID [2022-04-27 15:19:54,785 INFO L272 TraceCheckUtils]: 25: Hoare triple {67957#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {68063#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:19:54,785 INFO L290 TraceCheckUtils]: 26: Hoare triple {68063#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {67957#true} is VALID [2022-04-27 15:19:54,785 INFO L290 TraceCheckUtils]: 27: Hoare triple {67957#true} assume 0 == ~__BLAST_NONDET~5; {67957#true} is VALID [2022-04-27 15:19:54,786 INFO L290 TraceCheckUtils]: 28: Hoare triple {67957#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {67957#true} is VALID [2022-04-27 15:19:54,786 INFO L290 TraceCheckUtils]: 29: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,786 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {67957#true} {67957#true} #1176#return; {67957#true} is VALID [2022-04-27 15:19:54,786 INFO L290 TraceCheckUtils]: 31: Hoare triple {67957#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {67957#true} is VALID [2022-04-27 15:19:54,786 INFO L290 TraceCheckUtils]: 32: Hoare triple {67957#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {67957#true} is VALID [2022-04-27 15:19:54,786 INFO L272 TraceCheckUtils]: 33: Hoare triple {67957#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:54,786 INFO L290 TraceCheckUtils]: 34: Hoare triple {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {67957#true} is VALID [2022-04-27 15:19:54,786 INFO L290 TraceCheckUtils]: 35: Hoare triple {67957#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {67957#true} is VALID [2022-04-27 15:19:54,786 INFO L290 TraceCheckUtils]: 36: Hoare triple {67957#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L290 TraceCheckUtils]: 37: Hoare triple {67957#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {67957#true} {67957#true} #1178#return; {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L290 TraceCheckUtils]: 39: Hoare triple {67957#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L272 TraceCheckUtils]: 40: Hoare triple {67957#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L290 TraceCheckUtils]: 41: Hoare triple {67957#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L290 TraceCheckUtils]: 42: Hoare triple {67957#true} assume 0 == ~__BLAST_NONDET~2; {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L290 TraceCheckUtils]: 43: Hoare triple {67957#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L290 TraceCheckUtils]: 44: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {67957#true} {67957#true} #1180#return; {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L290 TraceCheckUtils]: 46: Hoare triple {67957#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L290 TraceCheckUtils]: 47: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {67957#true} {67957#true} #1220#return; {67957#true} is VALID [2022-04-27 15:19:54,787 INFO L290 TraceCheckUtils]: 49: Hoare triple {67957#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {67957#true} is VALID [2022-04-27 15:19:54,788 INFO L272 TraceCheckUtils]: 50: Hoare triple {67957#true} call stub_driver_init(); {68079#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:54,788 INFO L290 TraceCheckUtils]: 51: Hoare triple {68079#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {67957#true} is VALID [2022-04-27 15:19:54,788 INFO L290 TraceCheckUtils]: 52: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,788 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {67957#true} {67957#true} #1222#return; {67957#true} is VALID [2022-04-27 15:19:54,788 INFO L290 TraceCheckUtils]: 54: Hoare triple {67957#true} assume !!(~status~5 >= 0); {67957#true} is VALID [2022-04-27 15:19:54,788 INFO L290 TraceCheckUtils]: 55: Hoare triple {67957#true} assume !(0 == ~__BLAST_NONDET~0); {67957#true} is VALID [2022-04-27 15:19:54,788 INFO L290 TraceCheckUtils]: 56: Hoare triple {67957#true} assume !(1 == ~__BLAST_NONDET~0); {67957#true} is VALID [2022-04-27 15:19:54,788 INFO L290 TraceCheckUtils]: 57: Hoare triple {67957#true} assume !(2 == ~__BLAST_NONDET~0); {67957#true} is VALID [2022-04-27 15:19:54,788 INFO L290 TraceCheckUtils]: 58: Hoare triple {67957#true} assume 3 == ~__BLAST_NONDET~0; {67957#true} is VALID [2022-04-27 15:19:54,789 INFO L272 TraceCheckUtils]: 59: Hoare triple {67957#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {68080#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:54,789 INFO L290 TraceCheckUtils]: 60: Hoare triple {68080#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {67957#true} is VALID [2022-04-27 15:19:54,789 INFO L290 TraceCheckUtils]: 61: Hoare triple {67957#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {67957#true} is VALID [2022-04-27 15:19:54,789 INFO L290 TraceCheckUtils]: 62: Hoare triple {67957#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {67957#true} is VALID [2022-04-27 15:19:54,790 INFO L272 TraceCheckUtils]: 63: Hoare triple {67957#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:19:54,790 INFO L290 TraceCheckUtils]: 64: Hoare triple {68058#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {67957#true} is VALID [2022-04-27 15:19:54,790 INFO L290 TraceCheckUtils]: 65: Hoare triple {67957#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {67957#true} is VALID [2022-04-27 15:19:54,790 INFO L290 TraceCheckUtils]: 66: Hoare triple {67957#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {67957#true} is VALID [2022-04-27 15:19:54,790 INFO L290 TraceCheckUtils]: 67: Hoare triple {67957#true} assume #res.base == dest.base && #res.offset == dest.offset; {67957#true} is VALID [2022-04-27 15:19:54,790 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {67957#true} {67957#true} #1186#return; {67957#true} is VALID [2022-04-27 15:19:54,790 INFO L290 TraceCheckUtils]: 69: Hoare triple {67957#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {67957#true} is VALID [2022-04-27 15:19:54,790 INFO L290 TraceCheckUtils]: 70: Hoare triple {67957#true} assume !(~s~0 != ~NP~0); {67957#true} is VALID [2022-04-27 15:19:54,790 INFO L290 TraceCheckUtils]: 71: Hoare triple {67957#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {67957#true} is VALID [2022-04-27 15:19:54,790 INFO L290 TraceCheckUtils]: 72: Hoare triple {67957#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {67957#true} is VALID [2022-04-27 15:19:54,791 INFO L272 TraceCheckUtils]: 73: Hoare triple {67957#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {68118#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:19:54,791 INFO L290 TraceCheckUtils]: 74: Hoare triple {68118#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {67957#true} is VALID [2022-04-27 15:19:54,791 INFO L290 TraceCheckUtils]: 75: Hoare triple {67957#true} assume 0 != ~compRegistered~0; {67957#true} is VALID [2022-04-27 15:19:54,791 INFO L272 TraceCheckUtils]: 76: Hoare triple {67957#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:54,792 INFO L290 TraceCheckUtils]: 77: Hoare triple {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {67957#true} is VALID [2022-04-27 15:19:54,792 INFO L272 TraceCheckUtils]: 78: Hoare triple {67957#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:19:54,792 INFO L290 TraceCheckUtils]: 79: Hoare triple {68132#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {67957#true} is VALID [2022-04-27 15:19:54,792 INFO L290 TraceCheckUtils]: 80: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,792 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {67957#true} {67957#true} #1174#return; {67957#true} is VALID [2022-04-27 15:19:54,792 INFO L290 TraceCheckUtils]: 82: Hoare triple {67957#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {67957#true} is VALID [2022-04-27 15:19:54,792 INFO L290 TraceCheckUtils]: 83: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,792 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {67957#true} {67957#true} #1210#return; {67957#true} is VALID [2022-04-27 15:19:54,792 INFO L290 TraceCheckUtils]: 85: Hoare triple {67957#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {67957#true} is VALID [2022-04-27 15:19:54,792 INFO L290 TraceCheckUtils]: 86: Hoare triple {67957#true} assume -1073741802 == ~compRetStatus~0; {67957#true} is VALID [2022-04-27 15:19:54,793 INFO L272 TraceCheckUtils]: 87: Hoare triple {67957#true} call stubMoreProcessingRequired(); {68136#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:54,793 INFO L290 TraceCheckUtils]: 88: Hoare triple {68136#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {67957#true} is VALID [2022-04-27 15:19:54,793 INFO L290 TraceCheckUtils]: 89: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,793 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {67957#true} {67957#true} #1212#return; {67957#true} is VALID [2022-04-27 15:19:54,793 INFO L290 TraceCheckUtils]: 91: Hoare triple {67957#true} assume 0 == ~__BLAST_NONDET~11; {67957#true} is VALID [2022-04-27 15:19:54,793 INFO L290 TraceCheckUtils]: 92: Hoare triple {67957#true} ~returnVal2~0 := 0; {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:54,793 INFO L290 TraceCheckUtils]: 93: Hoare triple {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume !(~s~0 == ~NP~0); {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:54,794 INFO L290 TraceCheckUtils]: 94: Hoare triple {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume ~s~0 == ~MPR1~0; {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:54,794 INFO L290 TraceCheckUtils]: 95: Hoare triple {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} is VALID [2022-04-27 15:19:54,794 INFO L290 TraceCheckUtils]: 96: Hoare triple {68130#(and (<= IofCallDriver_~returnVal2~0 0) (<= 0 IofCallDriver_~returnVal2~0))} #res := ~returnVal2~0; {68131#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:19:54,795 INFO L290 TraceCheckUtils]: 97: Hoare triple {68131#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} assume true; {68131#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} is VALID [2022-04-27 15:19:54,795 INFO L284 TraceCheckUtils]: 98: Hoare quadruple {68131#(and (<= 0 |IofCallDriver_#res|) (<= |IofCallDriver_#res| 0))} {67957#true} #1192#return; {68111#(= |KbFilter_PnP_#t~ret109| 0)} is VALID [2022-04-27 15:19:54,796 INFO L290 TraceCheckUtils]: 99: Hoare triple {68111#(= |KbFilter_PnP_#t~ret109| 0)} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,796 INFO L290 TraceCheckUtils]: 100: Hoare triple {68112#(= KbFilter_PnP_~status~3 0)} assume !(259 == ~status~3); {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,796 INFO L290 TraceCheckUtils]: 101: Hoare triple {68112#(= KbFilter_PnP_~status~3 0)} assume ~status~3 >= 0; {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,796 INFO L290 TraceCheckUtils]: 102: Hoare triple {68112#(= KbFilter_PnP_~status~3 0)} assume !(~myStatus~0 >= 0); {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,797 INFO L290 TraceCheckUtils]: 103: Hoare triple {68112#(= KbFilter_PnP_~status~3 0)} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,797 INFO L272 TraceCheckUtils]: 104: Hoare triple {68112#(= KbFilter_PnP_~status~3 0)} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {68136#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:19:54,797 INFO L290 TraceCheckUtils]: 105: Hoare triple {68136#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {67957#true} is VALID [2022-04-27 15:19:54,797 INFO L290 TraceCheckUtils]: 106: Hoare triple {67957#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {67957#true} is VALID [2022-04-27 15:19:54,797 INFO L290 TraceCheckUtils]: 107: Hoare triple {67957#true} assume true; {67957#true} is VALID [2022-04-27 15:19:54,797 INFO L284 TraceCheckUtils]: 108: Hoare quadruple {67957#true} {68112#(= KbFilter_PnP_~status~3 0)} #1196#return; {68112#(= KbFilter_PnP_~status~3 0)} is VALID [2022-04-27 15:19:54,798 INFO L290 TraceCheckUtils]: 109: Hoare triple {68112#(= KbFilter_PnP_~status~3 0)} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {68117#(= |KbFilter_PnP_#res| 0)} is VALID [2022-04-27 15:19:54,798 INFO L290 TraceCheckUtils]: 110: Hoare triple {68117#(= |KbFilter_PnP_#res| 0)} assume true; {68117#(= |KbFilter_PnP_#res| 0)} is VALID [2022-04-27 15:19:54,799 INFO L284 TraceCheckUtils]: 111: Hoare quadruple {68117#(= |KbFilter_PnP_#res| 0)} {67957#true} #1230#return; {68054#(not (= 259 |main_#t~ret174|))} is VALID [2022-04-27 15:19:54,799 INFO L290 TraceCheckUtils]: 112: Hoare triple {68054#(not (= 259 |main_#t~ret174|))} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {68055#(not (= main_~status~5 259))} is VALID [2022-04-27 15:19:54,799 INFO L290 TraceCheckUtils]: 113: Hoare triple {68055#(not (= main_~status~5 259))} assume 0 != ~we_should_unload~0; {68055#(not (= main_~status~5 259))} is VALID [2022-04-27 15:19:54,799 INFO L290 TraceCheckUtils]: 114: Hoare triple {68055#(not (= main_~status~5 259))} assume !(1 == ~pended~0); {68055#(not (= main_~status~5 259))} is VALID [2022-04-27 15:19:54,800 INFO L290 TraceCheckUtils]: 115: Hoare triple {68055#(not (= main_~status~5 259))} assume !(1 == ~pended~0); {68055#(not (= main_~status~5 259))} is VALID [2022-04-27 15:19:54,800 INFO L290 TraceCheckUtils]: 116: Hoare triple {68055#(not (= main_~status~5 259))} assume !(~s~0 == ~UNLOADED~0); {68055#(not (= main_~status~5 259))} is VALID [2022-04-27 15:19:54,800 INFO L290 TraceCheckUtils]: 117: Hoare triple {68055#(not (= main_~status~5 259))} assume !(-1 == ~status~5); {68055#(not (= main_~status~5 259))} is VALID [2022-04-27 15:19:54,800 INFO L290 TraceCheckUtils]: 118: Hoare triple {68055#(not (= main_~status~5 259))} assume ~s~0 != ~SKIP2~0; {68055#(not (= main_~status~5 259))} is VALID [2022-04-27 15:19:54,801 INFO L290 TraceCheckUtils]: 119: Hoare triple {68055#(not (= main_~status~5 259))} assume ~s~0 != ~IPC~0; {68055#(not (= main_~status~5 259))} is VALID [2022-04-27 15:19:54,801 INFO L290 TraceCheckUtils]: 120: Hoare triple {68055#(not (= main_~status~5 259))} assume !(~s~0 != ~DC~0); {68055#(not (= main_~status~5 259))} is VALID [2022-04-27 15:19:54,801 INFO L290 TraceCheckUtils]: 121: Hoare triple {68055#(not (= main_~status~5 259))} assume !(1 == ~pended~0); {68055#(not (= main_~status~5 259))} is VALID [2022-04-27 15:19:54,801 INFO L290 TraceCheckUtils]: 122: Hoare triple {68055#(not (= main_~status~5 259))} assume ~s~0 == ~DC~0; {68055#(not (= main_~status~5 259))} is VALID [2022-04-27 15:19:54,802 INFO L290 TraceCheckUtils]: 123: Hoare triple {68055#(not (= main_~status~5 259))} assume 259 == ~status~5; {67958#false} is VALID [2022-04-27 15:19:54,802 INFO L272 TraceCheckUtils]: 124: Hoare triple {67958#false} call errorFn(); {67958#false} is VALID [2022-04-27 15:19:54,802 INFO L290 TraceCheckUtils]: 125: Hoare triple {67958#false} assume !false; {67958#false} is VALID [2022-04-27 15:19:54,802 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:19:54,802 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:19:54,802 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [821316001] [2022-04-27 15:19:54,802 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [821316001] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:19:54,802 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:19:54,802 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [18] imperfect sequences [] total 18 [2022-04-27 15:19:54,803 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [961857624] [2022-04-27 15:19:54,803 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:19:54,803 INFO L78 Accepts]: Start accepts. Automaton has has 18 states, 18 states have (on average 5.111111111111111) internal successors, (92), 7 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 4 states have call predecessors, (16), 2 states have call successors, (16) Word has length 126 [2022-04-27 15:19:54,804 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:19:54,804 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 18 states, 18 states have (on average 5.111111111111111) internal successors, (92), 7 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 4 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:19:54,891 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 126 edges. 126 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:19:54,891 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 18 states [2022-04-27 15:19:54,891 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:19:54,891 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 18 interpolants. [2022-04-27 15:19:54,891 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=53, Invalid=253, Unknown=0, NotChecked=0, Total=306 [2022-04-27 15:19:54,892 INFO L87 Difference]: Start difference. First operand 291 states and 318 transitions. Second operand has 18 states, 18 states have (on average 5.111111111111111) internal successors, (92), 7 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 4 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:19:57,068 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:20:06,692 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:20:06,692 INFO L93 Difference]: Finished difference Result 345 states and 383 transitions. [2022-04-27 15:20:06,692 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2022-04-27 15:20:06,692 INFO L78 Accepts]: Start accepts. Automaton has has 18 states, 18 states have (on average 5.111111111111111) internal successors, (92), 7 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 4 states have call predecessors, (16), 2 states have call successors, (16) Word has length 126 [2022-04-27 15:20:06,693 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:20:06,693 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 18 states, 18 states have (on average 5.111111111111111) internal successors, (92), 7 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 4 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:06,694 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18 states to 18 states and 216 transitions. [2022-04-27 15:20:06,694 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 18 states, 18 states have (on average 5.111111111111111) internal successors, (92), 7 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 4 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:06,695 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18 states to 18 states and 216 transitions. [2022-04-27 15:20:06,695 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 18 states and 216 transitions. [2022-04-27 15:20:06,922 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 216 edges. 216 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:20:06,926 INFO L225 Difference]: With dead ends: 345 [2022-04-27 15:20:06,926 INFO L226 Difference]: Without dead ends: 303 [2022-04-27 15:20:06,926 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 54 GetRequests, 27 SyntacticMatches, 0 SemanticMatches, 27 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 98 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=137, Invalid=675, Unknown=0, NotChecked=0, Total=812 [2022-04-27 15:20:06,927 INFO L413 NwaCegarLoop]: 128 mSDtfsCounter, 252 mSDsluCounter, 390 mSDsCounter, 0 mSdLazyCounter, 1354 mSolverCounterSat, 126 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 254 SdHoareTripleChecker+Valid, 518 SdHoareTripleChecker+Invalid, 1481 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 126 IncrementalHoareTripleChecker+Valid, 1354 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.7s IncrementalHoareTripleChecker+Time [2022-04-27 15:20:06,927 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [254 Valid, 518 Invalid, 1481 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [126 Valid, 1354 Invalid, 1 Unknown, 0 Unchecked, 5.7s Time] [2022-04-27 15:20:06,927 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 303 states. [2022-04-27 15:20:07,156 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 303 to 273. [2022-04-27 15:20:07,156 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:20:07,157 INFO L82 GeneralOperation]: Start isEquivalent. First operand 303 states. Second operand has 273 states, 207 states have (on average 1.1207729468599035) internal successors, (232), 209 states have internal predecessors, (232), 33 states have call successors, (33), 33 states have call predecessors, (33), 32 states have return successors, (33), 30 states have call predecessors, (33), 31 states have call successors, (33) [2022-04-27 15:20:07,157 INFO L74 IsIncluded]: Start isIncluded. First operand 303 states. Second operand has 273 states, 207 states have (on average 1.1207729468599035) internal successors, (232), 209 states have internal predecessors, (232), 33 states have call successors, (33), 33 states have call predecessors, (33), 32 states have return successors, (33), 30 states have call predecessors, (33), 31 states have call successors, (33) [2022-04-27 15:20:07,157 INFO L87 Difference]: Start difference. First operand 303 states. Second operand has 273 states, 207 states have (on average 1.1207729468599035) internal successors, (232), 209 states have internal predecessors, (232), 33 states have call successors, (33), 33 states have call predecessors, (33), 32 states have return successors, (33), 30 states have call predecessors, (33), 31 states have call successors, (33) [2022-04-27 15:20:07,161 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:20:07,161 INFO L93 Difference]: Finished difference Result 303 states and 336 transitions. [2022-04-27 15:20:07,161 INFO L276 IsEmpty]: Start isEmpty. Operand 303 states and 336 transitions. [2022-04-27 15:20:07,161 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:20:07,161 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:20:07,161 INFO L74 IsIncluded]: Start isIncluded. First operand has 273 states, 207 states have (on average 1.1207729468599035) internal successors, (232), 209 states have internal predecessors, (232), 33 states have call successors, (33), 33 states have call predecessors, (33), 32 states have return successors, (33), 30 states have call predecessors, (33), 31 states have call successors, (33) Second operand 303 states. [2022-04-27 15:20:07,161 INFO L87 Difference]: Start difference. First operand has 273 states, 207 states have (on average 1.1207729468599035) internal successors, (232), 209 states have internal predecessors, (232), 33 states have call successors, (33), 33 states have call predecessors, (33), 32 states have return successors, (33), 30 states have call predecessors, (33), 31 states have call successors, (33) Second operand 303 states. [2022-04-27 15:20:07,165 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:20:07,165 INFO L93 Difference]: Finished difference Result 303 states and 336 transitions. [2022-04-27 15:20:07,165 INFO L276 IsEmpty]: Start isEmpty. Operand 303 states and 336 transitions. [2022-04-27 15:20:07,165 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:20:07,165 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:20:07,165 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:20:07,165 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:20:07,166 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 273 states, 207 states have (on average 1.1207729468599035) internal successors, (232), 209 states have internal predecessors, (232), 33 states have call successors, (33), 33 states have call predecessors, (33), 32 states have return successors, (33), 30 states have call predecessors, (33), 31 states have call successors, (33) [2022-04-27 15:20:07,169 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 273 states to 273 states and 298 transitions. [2022-04-27 15:20:07,169 INFO L78 Accepts]: Start accepts. Automaton has 273 states and 298 transitions. Word has length 126 [2022-04-27 15:20:07,169 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:20:07,169 INFO L495 AbstractCegarLoop]: Abstraction has 273 states and 298 transitions. [2022-04-27 15:20:07,169 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 18 states, 18 states have (on average 5.111111111111111) internal successors, (92), 7 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 4 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:07,170 INFO L276 IsEmpty]: Start isEmpty. Operand 273 states and 298 transitions. [2022-04-27 15:20:07,170 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 127 [2022-04-27 15:20:07,170 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:20:07,170 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:20:07,170 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable35 [2022-04-27 15:20:07,170 INFO L420 AbstractCegarLoop]: === Iteration 37 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:20:07,171 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:20:07,171 INFO L85 PathProgramCache]: Analyzing trace with hash -375187371, now seen corresponding path program 1 times [2022-04-27 15:20:07,171 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:20:07,171 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [499498567] [2022-04-27 15:20:07,171 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:20:07,171 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:20:07,256 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,329 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:20:07,331 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,335 INFO L290 TraceCheckUtils]: 0: Hoare triple {69722#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {69623#true} is VALID [2022-04-27 15:20:07,335 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,335 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {69623#true} {69623#true} #1270#return; {69623#true} is VALID [2022-04-27 15:20:07,357 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:20:07,358 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,362 INFO L290 TraceCheckUtils]: 0: Hoare triple {69723#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {69623#true} is VALID [2022-04-27 15:20:07,362 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,362 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {69623#true} {69623#true} #1216#return; {69623#true} is VALID [2022-04-27 15:20:07,369 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:20:07,388 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,394 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:20:07,394 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,398 INFO L290 TraceCheckUtils]: 0: Hoare triple {69623#true} ~cond := #in~cond; {69623#true} is VALID [2022-04-27 15:20:07,398 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume !(0 == ~cond); {69623#true} is VALID [2022-04-27 15:20:07,398 INFO L290 TraceCheckUtils]: 2: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,398 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {69623#true} {69623#true} #1254#return; {69623#true} is VALID [2022-04-27 15:20:07,398 INFO L290 TraceCheckUtils]: 0: Hoare triple {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {69623#true} is VALID [2022-04-27 15:20:07,398 INFO L272 TraceCheckUtils]: 1: Hoare triple {69623#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {69623#true} is VALID [2022-04-27 15:20:07,398 INFO L290 TraceCheckUtils]: 2: Hoare triple {69623#true} ~cond := #in~cond; {69623#true} is VALID [2022-04-27 15:20:07,399 INFO L290 TraceCheckUtils]: 3: Hoare triple {69623#true} assume !(0 == ~cond); {69623#true} is VALID [2022-04-27 15:20:07,399 INFO L290 TraceCheckUtils]: 4: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,399 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {69623#true} {69623#true} #1254#return; {69623#true} is VALID [2022-04-27 15:20:07,399 INFO L290 TraceCheckUtils]: 6: Hoare triple {69623#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {69623#true} is VALID [2022-04-27 15:20:07,399 INFO L290 TraceCheckUtils]: 7: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,399 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {69623#true} {69623#true} #1218#return; {69623#true} is VALID [2022-04-27 15:20:07,409 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:20:07,420 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,428 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:20:07,431 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,436 INFO L290 TraceCheckUtils]: 0: Hoare triple {69729#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {69623#true} is VALID [2022-04-27 15:20:07,437 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume 0 == ~__BLAST_NONDET~5; {69623#true} is VALID [2022-04-27 15:20:07,437 INFO L290 TraceCheckUtils]: 2: Hoare triple {69623#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {69623#true} is VALID [2022-04-27 15:20:07,437 INFO L290 TraceCheckUtils]: 3: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,437 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {69623#true} {69623#true} #1176#return; {69623#true} is VALID [2022-04-27 15:20:07,437 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:20:07,440 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,445 INFO L290 TraceCheckUtils]: 0: Hoare triple {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {69623#true} is VALID [2022-04-27 15:20:07,445 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {69623#true} is VALID [2022-04-27 15:20:07,445 INFO L290 TraceCheckUtils]: 2: Hoare triple {69623#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {69623#true} is VALID [2022-04-27 15:20:07,445 INFO L290 TraceCheckUtils]: 3: Hoare triple {69623#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {69623#true} is VALID [2022-04-27 15:20:07,445 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {69623#true} {69623#true} #1178#return; {69623#true} is VALID [2022-04-27 15:20:07,446 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:20:07,447 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,451 INFO L290 TraceCheckUtils]: 0: Hoare triple {69623#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {69623#true} is VALID [2022-04-27 15:20:07,451 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume 0 == ~__BLAST_NONDET~2; {69623#true} is VALID [2022-04-27 15:20:07,451 INFO L290 TraceCheckUtils]: 2: Hoare triple {69623#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {69623#true} is VALID [2022-04-27 15:20:07,451 INFO L290 TraceCheckUtils]: 3: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,451 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {69623#true} {69623#true} #1180#return; {69623#true} is VALID [2022-04-27 15:20:07,451 INFO L290 TraceCheckUtils]: 0: Hoare triple {69729#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {69623#true} is VALID [2022-04-27 15:20:07,452 INFO L272 TraceCheckUtils]: 1: Hoare triple {69623#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {69729#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:20:07,453 INFO L290 TraceCheckUtils]: 2: Hoare triple {69729#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {69623#true} is VALID [2022-04-27 15:20:07,453 INFO L290 TraceCheckUtils]: 3: Hoare triple {69623#true} assume 0 == ~__BLAST_NONDET~5; {69623#true} is VALID [2022-04-27 15:20:07,453 INFO L290 TraceCheckUtils]: 4: Hoare triple {69623#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {69623#true} is VALID [2022-04-27 15:20:07,453 INFO L290 TraceCheckUtils]: 5: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,453 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {69623#true} {69623#true} #1176#return; {69623#true} is VALID [2022-04-27 15:20:07,453 INFO L290 TraceCheckUtils]: 7: Hoare triple {69623#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {69623#true} is VALID [2022-04-27 15:20:07,453 INFO L290 TraceCheckUtils]: 8: Hoare triple {69623#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L272 TraceCheckUtils]: 9: Hoare triple {69623#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:07,454 INFO L290 TraceCheckUtils]: 10: Hoare triple {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L290 TraceCheckUtils]: 11: Hoare triple {69623#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L290 TraceCheckUtils]: 12: Hoare triple {69623#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L290 TraceCheckUtils]: 13: Hoare triple {69623#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {69623#true} {69623#true} #1178#return; {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L290 TraceCheckUtils]: 15: Hoare triple {69623#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L272 TraceCheckUtils]: 16: Hoare triple {69623#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L290 TraceCheckUtils]: 17: Hoare triple {69623#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L290 TraceCheckUtils]: 18: Hoare triple {69623#true} assume 0 == ~__BLAST_NONDET~2; {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L290 TraceCheckUtils]: 19: Hoare triple {69623#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L290 TraceCheckUtils]: 20: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {69623#true} {69623#true} #1180#return; {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L290 TraceCheckUtils]: 22: Hoare triple {69623#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L290 TraceCheckUtils]: 23: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,454 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {69623#true} {69623#true} #1220#return; {69623#true} is VALID [2022-04-27 15:20:07,468 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:20:07,469 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,473 INFO L290 TraceCheckUtils]: 0: Hoare triple {69745#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {69623#true} is VALID [2022-04-27 15:20:07,473 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,473 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {69623#true} {69623#true} #1222#return; {69623#true} is VALID [2022-04-27 15:20:07,495 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 59 [2022-04-27 15:20:07,514 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,544 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2022-04-27 15:20:07,546 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,550 INFO L290 TraceCheckUtils]: 0: Hoare triple {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {69623#true} is VALID [2022-04-27 15:20:07,550 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {69623#true} is VALID [2022-04-27 15:20:07,550 INFO L290 TraceCheckUtils]: 2: Hoare triple {69623#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {69623#true} is VALID [2022-04-27 15:20:07,551 INFO L290 TraceCheckUtils]: 3: Hoare triple {69623#true} assume #res.base == dest.base && #res.offset == dest.offset; {69623#true} is VALID [2022-04-27 15:20:07,551 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {69623#true} {69623#true} #1186#return; {69623#true} is VALID [2022-04-27 15:20:07,561 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:20:07,565 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,579 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:20:07,581 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,585 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:20:07,586 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,590 INFO L290 TraceCheckUtils]: 0: Hoare triple {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {69623#true} is VALID [2022-04-27 15:20:07,591 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,591 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {69623#true} {69623#true} #1174#return; {69623#true} is VALID [2022-04-27 15:20:07,591 INFO L290 TraceCheckUtils]: 0: Hoare triple {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {69623#true} is VALID [2022-04-27 15:20:07,592 INFO L272 TraceCheckUtils]: 1: Hoare triple {69623#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:07,592 INFO L290 TraceCheckUtils]: 2: Hoare triple {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {69623#true} is VALID [2022-04-27 15:20:07,592 INFO L290 TraceCheckUtils]: 3: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,592 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {69623#true} {69623#true} #1174#return; {69623#true} is VALID [2022-04-27 15:20:07,592 INFO L290 TraceCheckUtils]: 5: Hoare triple {69623#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {69623#true} is VALID [2022-04-27 15:20:07,592 INFO L290 TraceCheckUtils]: 6: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,592 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {69623#true} {69623#true} #1210#return; {69623#true} is VALID [2022-04-27 15:20:07,601 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:20:07,602 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,606 INFO L290 TraceCheckUtils]: 0: Hoare triple {69800#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {69623#true} is VALID [2022-04-27 15:20:07,606 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,606 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {69623#true} {69623#true} #1212#return; {69623#true} is VALID [2022-04-27 15:20:07,606 INFO L290 TraceCheckUtils]: 0: Hoare triple {69784#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {69623#true} is VALID [2022-04-27 15:20:07,606 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume 0 != ~compRegistered~0; {69623#true} is VALID [2022-04-27 15:20:07,607 INFO L272 TraceCheckUtils]: 2: Hoare triple {69623#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:07,607 INFO L290 TraceCheckUtils]: 3: Hoare triple {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {69623#true} is VALID [2022-04-27 15:20:07,608 INFO L272 TraceCheckUtils]: 4: Hoare triple {69623#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:07,608 INFO L290 TraceCheckUtils]: 5: Hoare triple {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {69623#true} is VALID [2022-04-27 15:20:07,608 INFO L290 TraceCheckUtils]: 6: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,608 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {69623#true} {69623#true} #1174#return; {69623#true} is VALID [2022-04-27 15:20:07,608 INFO L290 TraceCheckUtils]: 8: Hoare triple {69623#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {69623#true} is VALID [2022-04-27 15:20:07,608 INFO L290 TraceCheckUtils]: 9: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,608 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {69623#true} {69623#true} #1210#return; {69623#true} is VALID [2022-04-27 15:20:07,608 INFO L290 TraceCheckUtils]: 11: Hoare triple {69623#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {69623#true} is VALID [2022-04-27 15:20:07,608 INFO L290 TraceCheckUtils]: 12: Hoare triple {69623#true} assume -1073741802 == ~compRetStatus~0; {69623#true} is VALID [2022-04-27 15:20:07,608 INFO L272 TraceCheckUtils]: 13: Hoare triple {69623#true} call stubMoreProcessingRequired(); {69800#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:07,608 INFO L290 TraceCheckUtils]: 14: Hoare triple {69800#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {69623#true} is VALID [2022-04-27 15:20:07,609 INFO L290 TraceCheckUtils]: 15: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,609 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {69623#true} {69623#true} #1212#return; {69623#true} is VALID [2022-04-27 15:20:07,609 INFO L290 TraceCheckUtils]: 17: Hoare triple {69623#true} assume !(0 == ~__BLAST_NONDET~11); {69623#true} is VALID [2022-04-27 15:20:07,609 INFO L290 TraceCheckUtils]: 18: Hoare triple {69623#true} assume 1 == ~__BLAST_NONDET~11; {69623#true} is VALID [2022-04-27 15:20:07,609 INFO L290 TraceCheckUtils]: 19: Hoare triple {69623#true} ~returnVal2~0 := -1073741823; {69623#true} is VALID [2022-04-27 15:20:07,609 INFO L290 TraceCheckUtils]: 20: Hoare triple {69623#true} assume !(~s~0 == ~NP~0); {69623#true} is VALID [2022-04-27 15:20:07,609 INFO L290 TraceCheckUtils]: 21: Hoare triple {69623#true} assume ~s~0 == ~MPR1~0; {69623#true} is VALID [2022-04-27 15:20:07,609 INFO L290 TraceCheckUtils]: 22: Hoare triple {69623#true} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {69623#true} is VALID [2022-04-27 15:20:07,609 INFO L290 TraceCheckUtils]: 23: Hoare triple {69623#true} #res := ~returnVal2~0; {69623#true} is VALID [2022-04-27 15:20:07,609 INFO L290 TraceCheckUtils]: 24: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,609 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {69623#true} {69623#true} #1192#return; {69623#true} is VALID [2022-04-27 15:20:07,609 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 44 [2022-04-27 15:20:07,610 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:07,615 INFO L290 TraceCheckUtils]: 0: Hoare triple {69800#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {69623#true} is VALID [2022-04-27 15:20:07,615 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {69623#true} is VALID [2022-04-27 15:20:07,615 INFO L290 TraceCheckUtils]: 2: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,616 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {69623#true} {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} #1196#return; {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} is VALID [2022-04-27 15:20:07,616 INFO L290 TraceCheckUtils]: 0: Hoare triple {69746#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {69623#true} is VALID [2022-04-27 15:20:07,616 INFO L290 TraceCheckUtils]: 1: Hoare triple {69623#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {69623#true} is VALID [2022-04-27 15:20:07,616 INFO L290 TraceCheckUtils]: 2: Hoare triple {69623#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {69623#true} is VALID [2022-04-27 15:20:07,617 INFO L272 TraceCheckUtils]: 3: Hoare triple {69623#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:07,617 INFO L290 TraceCheckUtils]: 4: Hoare triple {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {69623#true} is VALID [2022-04-27 15:20:07,617 INFO L290 TraceCheckUtils]: 5: Hoare triple {69623#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {69623#true} is VALID [2022-04-27 15:20:07,617 INFO L290 TraceCheckUtils]: 6: Hoare triple {69623#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {69623#true} is VALID [2022-04-27 15:20:07,617 INFO L290 TraceCheckUtils]: 7: Hoare triple {69623#true} assume #res.base == dest.base && #res.offset == dest.offset; {69623#true} is VALID [2022-04-27 15:20:07,617 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {69623#true} {69623#true} #1186#return; {69623#true} is VALID [2022-04-27 15:20:07,617 INFO L290 TraceCheckUtils]: 9: Hoare triple {69623#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {69623#true} is VALID [2022-04-27 15:20:07,617 INFO L290 TraceCheckUtils]: 10: Hoare triple {69623#true} assume !(~s~0 != ~NP~0); {69623#true} is VALID [2022-04-27 15:20:07,618 INFO L290 TraceCheckUtils]: 11: Hoare triple {69623#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {69623#true} is VALID [2022-04-27 15:20:07,618 INFO L290 TraceCheckUtils]: 12: Hoare triple {69623#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {69623#true} is VALID [2022-04-27 15:20:07,618 INFO L272 TraceCheckUtils]: 13: Hoare triple {69623#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {69784#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:07,618 INFO L290 TraceCheckUtils]: 14: Hoare triple {69784#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {69623#true} is VALID [2022-04-27 15:20:07,618 INFO L290 TraceCheckUtils]: 15: Hoare triple {69623#true} assume 0 != ~compRegistered~0; {69623#true} is VALID [2022-04-27 15:20:07,619 INFO L272 TraceCheckUtils]: 16: Hoare triple {69623#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:07,619 INFO L290 TraceCheckUtils]: 17: Hoare triple {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {69623#true} is VALID [2022-04-27 15:20:07,620 INFO L272 TraceCheckUtils]: 18: Hoare triple {69623#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:07,620 INFO L290 TraceCheckUtils]: 19: Hoare triple {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {69623#true} is VALID [2022-04-27 15:20:07,620 INFO L290 TraceCheckUtils]: 20: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,620 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {69623#true} {69623#true} #1174#return; {69623#true} is VALID [2022-04-27 15:20:07,620 INFO L290 TraceCheckUtils]: 22: Hoare triple {69623#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {69623#true} is VALID [2022-04-27 15:20:07,620 INFO L290 TraceCheckUtils]: 23: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,620 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {69623#true} {69623#true} #1210#return; {69623#true} is VALID [2022-04-27 15:20:07,620 INFO L290 TraceCheckUtils]: 25: Hoare triple {69623#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {69623#true} is VALID [2022-04-27 15:20:07,620 INFO L290 TraceCheckUtils]: 26: Hoare triple {69623#true} assume -1073741802 == ~compRetStatus~0; {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L272 TraceCheckUtils]: 27: Hoare triple {69623#true} call stubMoreProcessingRequired(); {69800#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:07,621 INFO L290 TraceCheckUtils]: 28: Hoare triple {69800#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L290 TraceCheckUtils]: 29: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {69623#true} {69623#true} #1212#return; {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L290 TraceCheckUtils]: 31: Hoare triple {69623#true} assume !(0 == ~__BLAST_NONDET~11); {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L290 TraceCheckUtils]: 32: Hoare triple {69623#true} assume 1 == ~__BLAST_NONDET~11; {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L290 TraceCheckUtils]: 33: Hoare triple {69623#true} ~returnVal2~0 := -1073741823; {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L290 TraceCheckUtils]: 34: Hoare triple {69623#true} assume !(~s~0 == ~NP~0); {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L290 TraceCheckUtils]: 35: Hoare triple {69623#true} assume ~s~0 == ~MPR1~0; {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L290 TraceCheckUtils]: 36: Hoare triple {69623#true} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L290 TraceCheckUtils]: 37: Hoare triple {69623#true} #res := ~returnVal2~0; {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L290 TraceCheckUtils]: 38: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {69623#true} {69623#true} #1192#return; {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L290 TraceCheckUtils]: 40: Hoare triple {69623#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {69623#true} is VALID [2022-04-27 15:20:07,621 INFO L290 TraceCheckUtils]: 41: Hoare triple {69623#true} assume !(259 == ~status~3); {69623#true} is VALID [2022-04-27 15:20:07,622 INFO L290 TraceCheckUtils]: 42: Hoare triple {69623#true} assume !(~status~3 >= 0); {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} is VALID [2022-04-27 15:20:07,622 INFO L290 TraceCheckUtils]: 43: Hoare triple {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} is VALID [2022-04-27 15:20:07,623 INFO L272 TraceCheckUtils]: 44: Hoare triple {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {69800#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:07,623 INFO L290 TraceCheckUtils]: 45: Hoare triple {69800#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {69623#true} is VALID [2022-04-27 15:20:07,623 INFO L290 TraceCheckUtils]: 46: Hoare triple {69623#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {69623#true} is VALID [2022-04-27 15:20:07,623 INFO L290 TraceCheckUtils]: 47: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,623 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {69623#true} {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} #1196#return; {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} is VALID [2022-04-27 15:20:07,623 INFO L290 TraceCheckUtils]: 49: Hoare triple {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {69783#(<= (+ |KbFilter_PnP_#res| 1) 0)} is VALID [2022-04-27 15:20:07,624 INFO L290 TraceCheckUtils]: 50: Hoare triple {69783#(<= (+ |KbFilter_PnP_#res| 1) 0)} assume true; {69783#(<= (+ |KbFilter_PnP_#res| 1) 0)} is VALID [2022-04-27 15:20:07,624 INFO L284 TraceCheckUtils]: 51: Hoare quadruple {69783#(<= (+ |KbFilter_PnP_#res| 1) 0)} {69623#true} #1230#return; {69720#(not (= 259 |main_#t~ret174|))} is VALID [2022-04-27 15:20:07,626 INFO L272 TraceCheckUtils]: 0: Hoare triple {69623#true} call ULTIMATE.init(); {69722#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:20:07,626 INFO L290 TraceCheckUtils]: 1: Hoare triple {69722#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {69623#true} is VALID [2022-04-27 15:20:07,626 INFO L290 TraceCheckUtils]: 2: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,626 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {69623#true} {69623#true} #1270#return; {69623#true} is VALID [2022-04-27 15:20:07,627 INFO L272 TraceCheckUtils]: 4: Hoare triple {69623#true} call #t~ret213 := main(); {69623#true} is VALID [2022-04-27 15:20:07,627 INFO L290 TraceCheckUtils]: 5: Hoare triple {69623#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {69623#true} is VALID [2022-04-27 15:20:07,627 INFO L272 TraceCheckUtils]: 6: Hoare triple {69623#true} call _BLAST_init(); {69723#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:07,628 INFO L290 TraceCheckUtils]: 7: Hoare triple {69723#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {69623#true} is VALID [2022-04-27 15:20:07,628 INFO L290 TraceCheckUtils]: 8: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,628 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {69623#true} {69623#true} #1216#return; {69623#true} is VALID [2022-04-27 15:20:07,628 INFO L272 TraceCheckUtils]: 10: Hoare triple {69623#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:07,628 INFO L290 TraceCheckUtils]: 11: Hoare triple {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {69623#true} is VALID [2022-04-27 15:20:07,628 INFO L272 TraceCheckUtils]: 12: Hoare triple {69623#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {69623#true} is VALID [2022-04-27 15:20:07,629 INFO L290 TraceCheckUtils]: 13: Hoare triple {69623#true} ~cond := #in~cond; {69623#true} is VALID [2022-04-27 15:20:07,629 INFO L290 TraceCheckUtils]: 14: Hoare triple {69623#true} assume !(0 == ~cond); {69623#true} is VALID [2022-04-27 15:20:07,629 INFO L290 TraceCheckUtils]: 15: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,629 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {69623#true} {69623#true} #1254#return; {69623#true} is VALID [2022-04-27 15:20:07,629 INFO L290 TraceCheckUtils]: 17: Hoare triple {69623#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {69623#true} is VALID [2022-04-27 15:20:07,629 INFO L290 TraceCheckUtils]: 18: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,629 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {69623#true} {69623#true} #1218#return; {69623#true} is VALID [2022-04-27 15:20:07,629 INFO L290 TraceCheckUtils]: 20: Hoare triple {69623#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {69623#true} is VALID [2022-04-27 15:20:07,629 INFO L290 TraceCheckUtils]: 21: Hoare triple {69623#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {69623#true} is VALID [2022-04-27 15:20:07,629 INFO L290 TraceCheckUtils]: 22: Hoare triple {69623#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {69623#true} is VALID [2022-04-27 15:20:07,630 INFO L272 TraceCheckUtils]: 23: Hoare triple {69623#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {69729#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:20:07,630 INFO L290 TraceCheckUtils]: 24: Hoare triple {69729#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {69623#true} is VALID [2022-04-27 15:20:07,631 INFO L272 TraceCheckUtils]: 25: Hoare triple {69623#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {69729#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:20:07,631 INFO L290 TraceCheckUtils]: 26: Hoare triple {69729#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {69623#true} is VALID [2022-04-27 15:20:07,631 INFO L290 TraceCheckUtils]: 27: Hoare triple {69623#true} assume 0 == ~__BLAST_NONDET~5; {69623#true} is VALID [2022-04-27 15:20:07,631 INFO L290 TraceCheckUtils]: 28: Hoare triple {69623#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {69623#true} is VALID [2022-04-27 15:20:07,631 INFO L290 TraceCheckUtils]: 29: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,631 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {69623#true} {69623#true} #1176#return; {69623#true} is VALID [2022-04-27 15:20:07,631 INFO L290 TraceCheckUtils]: 31: Hoare triple {69623#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {69623#true} is VALID [2022-04-27 15:20:07,631 INFO L290 TraceCheckUtils]: 32: Hoare triple {69623#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {69623#true} is VALID [2022-04-27 15:20:07,632 INFO L272 TraceCheckUtils]: 33: Hoare triple {69623#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:07,632 INFO L290 TraceCheckUtils]: 34: Hoare triple {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {69623#true} is VALID [2022-04-27 15:20:07,632 INFO L290 TraceCheckUtils]: 35: Hoare triple {69623#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {69623#true} is VALID [2022-04-27 15:20:07,632 INFO L290 TraceCheckUtils]: 36: Hoare triple {69623#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {69623#true} is VALID [2022-04-27 15:20:07,632 INFO L290 TraceCheckUtils]: 37: Hoare triple {69623#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {69623#true} is VALID [2022-04-27 15:20:07,632 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {69623#true} {69623#true} #1178#return; {69623#true} is VALID [2022-04-27 15:20:07,632 INFO L290 TraceCheckUtils]: 39: Hoare triple {69623#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {69623#true} is VALID [2022-04-27 15:20:07,632 INFO L272 TraceCheckUtils]: 40: Hoare triple {69623#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {69623#true} is VALID [2022-04-27 15:20:07,632 INFO L290 TraceCheckUtils]: 41: Hoare triple {69623#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {69623#true} is VALID [2022-04-27 15:20:07,632 INFO L290 TraceCheckUtils]: 42: Hoare triple {69623#true} assume 0 == ~__BLAST_NONDET~2; {69623#true} is VALID [2022-04-27 15:20:07,633 INFO L290 TraceCheckUtils]: 43: Hoare triple {69623#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {69623#true} is VALID [2022-04-27 15:20:07,633 INFO L290 TraceCheckUtils]: 44: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,633 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {69623#true} {69623#true} #1180#return; {69623#true} is VALID [2022-04-27 15:20:07,633 INFO L290 TraceCheckUtils]: 46: Hoare triple {69623#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {69623#true} is VALID [2022-04-27 15:20:07,633 INFO L290 TraceCheckUtils]: 47: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,633 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {69623#true} {69623#true} #1220#return; {69623#true} is VALID [2022-04-27 15:20:07,633 INFO L290 TraceCheckUtils]: 49: Hoare triple {69623#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {69623#true} is VALID [2022-04-27 15:20:07,633 INFO L272 TraceCheckUtils]: 50: Hoare triple {69623#true} call stub_driver_init(); {69745#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:07,633 INFO L290 TraceCheckUtils]: 51: Hoare triple {69745#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {69623#true} is VALID [2022-04-27 15:20:07,634 INFO L290 TraceCheckUtils]: 52: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,634 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {69623#true} {69623#true} #1222#return; {69623#true} is VALID [2022-04-27 15:20:07,634 INFO L290 TraceCheckUtils]: 54: Hoare triple {69623#true} assume !!(~status~5 >= 0); {69623#true} is VALID [2022-04-27 15:20:07,634 INFO L290 TraceCheckUtils]: 55: Hoare triple {69623#true} assume !(0 == ~__BLAST_NONDET~0); {69623#true} is VALID [2022-04-27 15:20:07,634 INFO L290 TraceCheckUtils]: 56: Hoare triple {69623#true} assume !(1 == ~__BLAST_NONDET~0); {69623#true} is VALID [2022-04-27 15:20:07,634 INFO L290 TraceCheckUtils]: 57: Hoare triple {69623#true} assume !(2 == ~__BLAST_NONDET~0); {69623#true} is VALID [2022-04-27 15:20:07,634 INFO L290 TraceCheckUtils]: 58: Hoare triple {69623#true} assume 3 == ~__BLAST_NONDET~0; {69623#true} is VALID [2022-04-27 15:20:07,635 INFO L272 TraceCheckUtils]: 59: Hoare triple {69623#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {69746#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:07,635 INFO L290 TraceCheckUtils]: 60: Hoare triple {69746#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {69623#true} is VALID [2022-04-27 15:20:07,635 INFO L290 TraceCheckUtils]: 61: Hoare triple {69623#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {69623#true} is VALID [2022-04-27 15:20:07,635 INFO L290 TraceCheckUtils]: 62: Hoare triple {69623#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {69623#true} is VALID [2022-04-27 15:20:07,636 INFO L272 TraceCheckUtils]: 63: Hoare triple {69623#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:07,636 INFO L290 TraceCheckUtils]: 64: Hoare triple {69724#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {69623#true} is VALID [2022-04-27 15:20:07,636 INFO L290 TraceCheckUtils]: 65: Hoare triple {69623#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {69623#true} is VALID [2022-04-27 15:20:07,636 INFO L290 TraceCheckUtils]: 66: Hoare triple {69623#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {69623#true} is VALID [2022-04-27 15:20:07,636 INFO L290 TraceCheckUtils]: 67: Hoare triple {69623#true} assume #res.base == dest.base && #res.offset == dest.offset; {69623#true} is VALID [2022-04-27 15:20:07,636 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {69623#true} {69623#true} #1186#return; {69623#true} is VALID [2022-04-27 15:20:07,636 INFO L290 TraceCheckUtils]: 69: Hoare triple {69623#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {69623#true} is VALID [2022-04-27 15:20:07,636 INFO L290 TraceCheckUtils]: 70: Hoare triple {69623#true} assume !(~s~0 != ~NP~0); {69623#true} is VALID [2022-04-27 15:20:07,636 INFO L290 TraceCheckUtils]: 71: Hoare triple {69623#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {69623#true} is VALID [2022-04-27 15:20:07,636 INFO L290 TraceCheckUtils]: 72: Hoare triple {69623#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {69623#true} is VALID [2022-04-27 15:20:07,637 INFO L272 TraceCheckUtils]: 73: Hoare triple {69623#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {69784#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:07,637 INFO L290 TraceCheckUtils]: 74: Hoare triple {69784#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {69623#true} is VALID [2022-04-27 15:20:07,637 INFO L290 TraceCheckUtils]: 75: Hoare triple {69623#true} assume 0 != ~compRegistered~0; {69623#true} is VALID [2022-04-27 15:20:07,638 INFO L272 TraceCheckUtils]: 76: Hoare triple {69623#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:07,638 INFO L290 TraceCheckUtils]: 77: Hoare triple {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {69623#true} is VALID [2022-04-27 15:20:07,639 INFO L272 TraceCheckUtils]: 78: Hoare triple {69623#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:07,639 INFO L290 TraceCheckUtils]: 79: Hoare triple {69796#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {69623#true} is VALID [2022-04-27 15:20:07,639 INFO L290 TraceCheckUtils]: 80: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,639 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {69623#true} {69623#true} #1174#return; {69623#true} is VALID [2022-04-27 15:20:07,639 INFO L290 TraceCheckUtils]: 82: Hoare triple {69623#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {69623#true} is VALID [2022-04-27 15:20:07,639 INFO L290 TraceCheckUtils]: 83: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,639 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {69623#true} {69623#true} #1210#return; {69623#true} is VALID [2022-04-27 15:20:07,639 INFO L290 TraceCheckUtils]: 85: Hoare triple {69623#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {69623#true} is VALID [2022-04-27 15:20:07,639 INFO L290 TraceCheckUtils]: 86: Hoare triple {69623#true} assume -1073741802 == ~compRetStatus~0; {69623#true} is VALID [2022-04-27 15:20:07,639 INFO L272 TraceCheckUtils]: 87: Hoare triple {69623#true} call stubMoreProcessingRequired(); {69800#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:07,639 INFO L290 TraceCheckUtils]: 88: Hoare triple {69800#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {69623#true} is VALID [2022-04-27 15:20:07,639 INFO L290 TraceCheckUtils]: 89: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {69623#true} {69623#true} #1212#return; {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L290 TraceCheckUtils]: 91: Hoare triple {69623#true} assume !(0 == ~__BLAST_NONDET~11); {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L290 TraceCheckUtils]: 92: Hoare triple {69623#true} assume 1 == ~__BLAST_NONDET~11; {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L290 TraceCheckUtils]: 93: Hoare triple {69623#true} ~returnVal2~0 := -1073741823; {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L290 TraceCheckUtils]: 94: Hoare triple {69623#true} assume !(~s~0 == ~NP~0); {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L290 TraceCheckUtils]: 95: Hoare triple {69623#true} assume ~s~0 == ~MPR1~0; {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L290 TraceCheckUtils]: 96: Hoare triple {69623#true} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L290 TraceCheckUtils]: 97: Hoare triple {69623#true} #res := ~returnVal2~0; {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L290 TraceCheckUtils]: 98: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {69623#true} {69623#true} #1192#return; {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L290 TraceCheckUtils]: 100: Hoare triple {69623#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L290 TraceCheckUtils]: 101: Hoare triple {69623#true} assume !(259 == ~status~3); {69623#true} is VALID [2022-04-27 15:20:07,640 INFO L290 TraceCheckUtils]: 102: Hoare triple {69623#true} assume !(~status~3 >= 0); {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} is VALID [2022-04-27 15:20:07,641 INFO L290 TraceCheckUtils]: 103: Hoare triple {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} is VALID [2022-04-27 15:20:07,641 INFO L272 TraceCheckUtils]: 104: Hoare triple {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {69800#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:07,641 INFO L290 TraceCheckUtils]: 105: Hoare triple {69800#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {69623#true} is VALID [2022-04-27 15:20:07,641 INFO L290 TraceCheckUtils]: 106: Hoare triple {69623#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {69623#true} is VALID [2022-04-27 15:20:07,641 INFO L290 TraceCheckUtils]: 107: Hoare triple {69623#true} assume true; {69623#true} is VALID [2022-04-27 15:20:07,642 INFO L284 TraceCheckUtils]: 108: Hoare quadruple {69623#true} {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} #1196#return; {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} is VALID [2022-04-27 15:20:07,642 INFO L290 TraceCheckUtils]: 109: Hoare triple {69778#(<= (+ KbFilter_PnP_~status~3 1) 0)} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {69783#(<= (+ |KbFilter_PnP_#res| 1) 0)} is VALID [2022-04-27 15:20:07,642 INFO L290 TraceCheckUtils]: 110: Hoare triple {69783#(<= (+ |KbFilter_PnP_#res| 1) 0)} assume true; {69783#(<= (+ |KbFilter_PnP_#res| 1) 0)} is VALID [2022-04-27 15:20:07,643 INFO L284 TraceCheckUtils]: 111: Hoare quadruple {69783#(<= (+ |KbFilter_PnP_#res| 1) 0)} {69623#true} #1230#return; {69720#(not (= 259 |main_#t~ret174|))} is VALID [2022-04-27 15:20:07,644 INFO L290 TraceCheckUtils]: 112: Hoare triple {69720#(not (= 259 |main_#t~ret174|))} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {69721#(not (= main_~status~5 259))} is VALID [2022-04-27 15:20:07,644 INFO L290 TraceCheckUtils]: 113: Hoare triple {69721#(not (= main_~status~5 259))} assume 0 != ~we_should_unload~0; {69721#(not (= main_~status~5 259))} is VALID [2022-04-27 15:20:07,644 INFO L290 TraceCheckUtils]: 114: Hoare triple {69721#(not (= main_~status~5 259))} assume !(1 == ~pended~0); {69721#(not (= main_~status~5 259))} is VALID [2022-04-27 15:20:07,644 INFO L290 TraceCheckUtils]: 115: Hoare triple {69721#(not (= main_~status~5 259))} assume !(1 == ~pended~0); {69721#(not (= main_~status~5 259))} is VALID [2022-04-27 15:20:07,645 INFO L290 TraceCheckUtils]: 116: Hoare triple {69721#(not (= main_~status~5 259))} assume !(~s~0 == ~UNLOADED~0); {69721#(not (= main_~status~5 259))} is VALID [2022-04-27 15:20:07,645 INFO L290 TraceCheckUtils]: 117: Hoare triple {69721#(not (= main_~status~5 259))} assume !(-1 == ~status~5); {69721#(not (= main_~status~5 259))} is VALID [2022-04-27 15:20:07,645 INFO L290 TraceCheckUtils]: 118: Hoare triple {69721#(not (= main_~status~5 259))} assume ~s~0 != ~SKIP2~0; {69721#(not (= main_~status~5 259))} is VALID [2022-04-27 15:20:07,645 INFO L290 TraceCheckUtils]: 119: Hoare triple {69721#(not (= main_~status~5 259))} assume ~s~0 != ~IPC~0; {69721#(not (= main_~status~5 259))} is VALID [2022-04-27 15:20:07,646 INFO L290 TraceCheckUtils]: 120: Hoare triple {69721#(not (= main_~status~5 259))} assume !(~s~0 != ~DC~0); {69721#(not (= main_~status~5 259))} is VALID [2022-04-27 15:20:07,646 INFO L290 TraceCheckUtils]: 121: Hoare triple {69721#(not (= main_~status~5 259))} assume !(1 == ~pended~0); {69721#(not (= main_~status~5 259))} is VALID [2022-04-27 15:20:07,646 INFO L290 TraceCheckUtils]: 122: Hoare triple {69721#(not (= main_~status~5 259))} assume ~s~0 == ~DC~0; {69721#(not (= main_~status~5 259))} is VALID [2022-04-27 15:20:07,646 INFO L290 TraceCheckUtils]: 123: Hoare triple {69721#(not (= main_~status~5 259))} assume 259 == ~status~5; {69624#false} is VALID [2022-04-27 15:20:07,647 INFO L272 TraceCheckUtils]: 124: Hoare triple {69624#false} call errorFn(); {69624#false} is VALID [2022-04-27 15:20:07,647 INFO L290 TraceCheckUtils]: 125: Hoare triple {69624#false} assume !false; {69624#false} is VALID [2022-04-27 15:20:07,647 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:20:07,647 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:20:07,647 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [499498567] [2022-04-27 15:20:07,647 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [499498567] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:20:07,647 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:20:07,647 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [15] imperfect sequences [] total 15 [2022-04-27 15:20:07,647 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [361283774] [2022-04-27 15:20:07,647 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:20:07,648 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 15 states have (on average 6.133333333333334) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) Word has length 126 [2022-04-27 15:20:07,648 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:20:07,648 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 15 states, 15 states have (on average 6.133333333333334) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:07,733 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 126 edges. 126 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:20:07,733 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2022-04-27 15:20:07,733 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:20:07,734 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2022-04-27 15:20:07,734 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=47, Invalid=163, Unknown=0, NotChecked=0, Total=210 [2022-04-27 15:20:07,734 INFO L87 Difference]: Start difference. First operand 273 states and 298 transitions. Second operand has 15 states, 15 states have (on average 6.133333333333334) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:09,885 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:20:17,947 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:20:17,948 INFO L93 Difference]: Finished difference Result 323 states and 358 transitions. [2022-04-27 15:20:17,948 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2022-04-27 15:20:17,948 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 15 states have (on average 6.133333333333334) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) Word has length 126 [2022-04-27 15:20:17,948 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:20:17,948 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 15 states, 15 states have (on average 6.133333333333334) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:17,949 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 13 states to 13 states and 203 transitions. [2022-04-27 15:20:17,949 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 15 states, 15 states have (on average 6.133333333333334) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:17,950 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 13 states to 13 states and 203 transitions. [2022-04-27 15:20:17,950 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 13 states and 203 transitions. [2022-04-27 15:20:18,173 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 203 edges. 203 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:20:18,178 INFO L225 Difference]: With dead ends: 323 [2022-04-27 15:20:18,178 INFO L226 Difference]: Without dead ends: 303 [2022-04-27 15:20:18,178 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 45 GetRequests, 27 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 34 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=86, Invalid=294, Unknown=0, NotChecked=0, Total=380 [2022-04-27 15:20:18,178 INFO L413 NwaCegarLoop]: 131 mSDtfsCounter, 249 mSDsluCounter, 307 mSDsCounter, 0 mSdLazyCounter, 909 mSolverCounterSat, 141 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 251 SdHoareTripleChecker+Valid, 438 SdHoareTripleChecker+Invalid, 1051 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 141 IncrementalHoareTripleChecker+Valid, 909 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.3s IncrementalHoareTripleChecker+Time [2022-04-27 15:20:18,179 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [251 Valid, 438 Invalid, 1051 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [141 Valid, 909 Invalid, 1 Unknown, 0 Unchecked, 4.3s Time] [2022-04-27 15:20:18,179 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 303 states. [2022-04-27 15:20:18,438 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 303 to 271. [2022-04-27 15:20:18,438 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:20:18,438 INFO L82 GeneralOperation]: Start isEquivalent. First operand 303 states. Second operand has 271 states, 205 states have (on average 1.1121951219512196) internal successors, (228), 207 states have internal predecessors, (228), 33 states have call successors, (33), 33 states have call predecessors, (33), 32 states have return successors, (33), 30 states have call predecessors, (33), 31 states have call successors, (33) [2022-04-27 15:20:18,439 INFO L74 IsIncluded]: Start isIncluded. First operand 303 states. Second operand has 271 states, 205 states have (on average 1.1121951219512196) internal successors, (228), 207 states have internal predecessors, (228), 33 states have call successors, (33), 33 states have call predecessors, (33), 32 states have return successors, (33), 30 states have call predecessors, (33), 31 states have call successors, (33) [2022-04-27 15:20:18,439 INFO L87 Difference]: Start difference. First operand 303 states. Second operand has 271 states, 205 states have (on average 1.1121951219512196) internal successors, (228), 207 states have internal predecessors, (228), 33 states have call successors, (33), 33 states have call predecessors, (33), 32 states have return successors, (33), 30 states have call predecessors, (33), 31 states have call successors, (33) [2022-04-27 15:20:18,442 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:20:18,442 INFO L93 Difference]: Finished difference Result 303 states and 334 transitions. [2022-04-27 15:20:18,442 INFO L276 IsEmpty]: Start isEmpty. Operand 303 states and 334 transitions. [2022-04-27 15:20:18,443 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:20:18,443 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:20:18,443 INFO L74 IsIncluded]: Start isIncluded. First operand has 271 states, 205 states have (on average 1.1121951219512196) internal successors, (228), 207 states have internal predecessors, (228), 33 states have call successors, (33), 33 states have call predecessors, (33), 32 states have return successors, (33), 30 states have call predecessors, (33), 31 states have call successors, (33) Second operand 303 states. [2022-04-27 15:20:18,443 INFO L87 Difference]: Start difference. First operand has 271 states, 205 states have (on average 1.1121951219512196) internal successors, (228), 207 states have internal predecessors, (228), 33 states have call successors, (33), 33 states have call predecessors, (33), 32 states have return successors, (33), 30 states have call predecessors, (33), 31 states have call successors, (33) Second operand 303 states. [2022-04-27 15:20:18,446 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:20:18,447 INFO L93 Difference]: Finished difference Result 303 states and 334 transitions. [2022-04-27 15:20:18,447 INFO L276 IsEmpty]: Start isEmpty. Operand 303 states and 334 transitions. [2022-04-27 15:20:18,447 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:20:18,447 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:20:18,447 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:20:18,447 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:20:18,447 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 271 states, 205 states have (on average 1.1121951219512196) internal successors, (228), 207 states have internal predecessors, (228), 33 states have call successors, (33), 33 states have call predecessors, (33), 32 states have return successors, (33), 30 states have call predecessors, (33), 31 states have call successors, (33) [2022-04-27 15:20:18,451 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 271 states to 271 states and 294 transitions. [2022-04-27 15:20:18,451 INFO L78 Accepts]: Start accepts. Automaton has 271 states and 294 transitions. Word has length 126 [2022-04-27 15:20:18,451 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:20:18,451 INFO L495 AbstractCegarLoop]: Abstraction has 271 states and 294 transitions. [2022-04-27 15:20:18,451 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 15 states have (on average 6.133333333333334) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (18), 11 states have call predecessors, (18), 2 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:18,451 INFO L276 IsEmpty]: Start isEmpty. Operand 271 states and 294 transitions. [2022-04-27 15:20:18,452 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 128 [2022-04-27 15:20:18,452 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:20:18,452 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:20:18,452 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable36 [2022-04-27 15:20:18,452 INFO L420 AbstractCegarLoop]: === Iteration 38 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:20:18,452 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:20:18,452 INFO L85 PathProgramCache]: Analyzing trace with hash -94633934, now seen corresponding path program 1 times [2022-04-27 15:20:18,452 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:20:18,452 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1986325323] [2022-04-27 15:20:18,453 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:20:18,453 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:20:18,534 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,596 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:20:18,597 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,602 INFO L290 TraceCheckUtils]: 0: Hoare triple {71345#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {71247#true} is VALID [2022-04-27 15:20:18,602 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,602 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {71247#true} {71247#true} #1270#return; {71247#true} is VALID [2022-04-27 15:20:18,624 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:20:18,625 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,629 INFO L290 TraceCheckUtils]: 0: Hoare triple {71346#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {71247#true} is VALID [2022-04-27 15:20:18,629 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,629 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {71247#true} {71247#true} #1216#return; {71247#true} is VALID [2022-04-27 15:20:18,635 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:20:18,641 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,647 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:20:18,647 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,652 INFO L290 TraceCheckUtils]: 0: Hoare triple {71247#true} ~cond := #in~cond; {71247#true} is VALID [2022-04-27 15:20:18,652 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume !(0 == ~cond); {71247#true} is VALID [2022-04-27 15:20:18,652 INFO L290 TraceCheckUtils]: 2: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,652 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {71247#true} {71247#true} #1254#return; {71247#true} is VALID [2022-04-27 15:20:18,652 INFO L290 TraceCheckUtils]: 0: Hoare triple {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {71247#true} is VALID [2022-04-27 15:20:18,652 INFO L272 TraceCheckUtils]: 1: Hoare triple {71247#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {71247#true} is VALID [2022-04-27 15:20:18,652 INFO L290 TraceCheckUtils]: 2: Hoare triple {71247#true} ~cond := #in~cond; {71247#true} is VALID [2022-04-27 15:20:18,652 INFO L290 TraceCheckUtils]: 3: Hoare triple {71247#true} assume !(0 == ~cond); {71247#true} is VALID [2022-04-27 15:20:18,653 INFO L290 TraceCheckUtils]: 4: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,653 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {71247#true} {71247#true} #1254#return; {71247#true} is VALID [2022-04-27 15:20:18,653 INFO L290 TraceCheckUtils]: 6: Hoare triple {71247#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {71247#true} is VALID [2022-04-27 15:20:18,653 INFO L290 TraceCheckUtils]: 7: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,653 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {71247#true} {71247#true} #1218#return; {71247#true} is VALID [2022-04-27 15:20:18,662 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:20:18,673 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,682 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:20:18,685 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,690 INFO L290 TraceCheckUtils]: 0: Hoare triple {71352#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {71247#true} is VALID [2022-04-27 15:20:18,690 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume 0 == ~__BLAST_NONDET~5; {71247#true} is VALID [2022-04-27 15:20:18,690 INFO L290 TraceCheckUtils]: 2: Hoare triple {71247#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {71247#true} is VALID [2022-04-27 15:20:18,690 INFO L290 TraceCheckUtils]: 3: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,691 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {71247#true} {71247#true} #1176#return; {71247#true} is VALID [2022-04-27 15:20:18,691 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:20:18,692 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,696 INFO L290 TraceCheckUtils]: 0: Hoare triple {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {71247#true} is VALID [2022-04-27 15:20:18,697 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {71247#true} is VALID [2022-04-27 15:20:18,697 INFO L290 TraceCheckUtils]: 2: Hoare triple {71247#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {71247#true} is VALID [2022-04-27 15:20:18,697 INFO L290 TraceCheckUtils]: 3: Hoare triple {71247#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {71247#true} is VALID [2022-04-27 15:20:18,697 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {71247#true} {71247#true} #1178#return; {71247#true} is VALID [2022-04-27 15:20:18,697 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:20:18,698 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,702 INFO L290 TraceCheckUtils]: 0: Hoare triple {71247#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {71247#true} is VALID [2022-04-27 15:20:18,702 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume 0 == ~__BLAST_NONDET~2; {71247#true} is VALID [2022-04-27 15:20:18,702 INFO L290 TraceCheckUtils]: 2: Hoare triple {71247#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {71247#true} is VALID [2022-04-27 15:20:18,702 INFO L290 TraceCheckUtils]: 3: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,702 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {71247#true} {71247#true} #1180#return; {71247#true} is VALID [2022-04-27 15:20:18,702 INFO L290 TraceCheckUtils]: 0: Hoare triple {71352#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {71247#true} is VALID [2022-04-27 15:20:18,703 INFO L272 TraceCheckUtils]: 1: Hoare triple {71247#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {71352#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:20:18,704 INFO L290 TraceCheckUtils]: 2: Hoare triple {71352#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {71247#true} is VALID [2022-04-27 15:20:18,704 INFO L290 TraceCheckUtils]: 3: Hoare triple {71247#true} assume 0 == ~__BLAST_NONDET~5; {71247#true} is VALID [2022-04-27 15:20:18,704 INFO L290 TraceCheckUtils]: 4: Hoare triple {71247#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {71247#true} is VALID [2022-04-27 15:20:18,704 INFO L290 TraceCheckUtils]: 5: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,704 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {71247#true} {71247#true} #1176#return; {71247#true} is VALID [2022-04-27 15:20:18,704 INFO L290 TraceCheckUtils]: 7: Hoare triple {71247#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {71247#true} is VALID [2022-04-27 15:20:18,704 INFO L290 TraceCheckUtils]: 8: Hoare triple {71247#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L272 TraceCheckUtils]: 9: Hoare triple {71247#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:18,705 INFO L290 TraceCheckUtils]: 10: Hoare triple {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L290 TraceCheckUtils]: 11: Hoare triple {71247#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L290 TraceCheckUtils]: 12: Hoare triple {71247#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L290 TraceCheckUtils]: 13: Hoare triple {71247#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {71247#true} {71247#true} #1178#return; {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L290 TraceCheckUtils]: 15: Hoare triple {71247#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L272 TraceCheckUtils]: 16: Hoare triple {71247#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L290 TraceCheckUtils]: 17: Hoare triple {71247#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L290 TraceCheckUtils]: 18: Hoare triple {71247#true} assume 0 == ~__BLAST_NONDET~2; {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L290 TraceCheckUtils]: 19: Hoare triple {71247#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L290 TraceCheckUtils]: 20: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {71247#true} {71247#true} #1180#return; {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L290 TraceCheckUtils]: 22: Hoare triple {71247#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {71247#true} is VALID [2022-04-27 15:20:18,705 INFO L290 TraceCheckUtils]: 23: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,706 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {71247#true} {71247#true} #1220#return; {71247#true} is VALID [2022-04-27 15:20:18,718 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:20:18,719 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,723 INFO L290 TraceCheckUtils]: 0: Hoare triple {71368#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {71247#true} is VALID [2022-04-27 15:20:18,723 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,723 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {71247#true} {71247#true} #1222#return; {71247#true} is VALID [2022-04-27 15:20:18,742 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 59 [2022-04-27 15:20:18,759 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,785 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2022-04-27 15:20:18,786 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,790 INFO L290 TraceCheckUtils]: 0: Hoare triple {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {71247#true} is VALID [2022-04-27 15:20:18,791 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {71247#true} is VALID [2022-04-27 15:20:18,791 INFO L290 TraceCheckUtils]: 2: Hoare triple {71247#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {71247#true} is VALID [2022-04-27 15:20:18,791 INFO L290 TraceCheckUtils]: 3: Hoare triple {71247#true} assume #res.base == dest.base && #res.offset == dest.offset; {71247#true} is VALID [2022-04-27 15:20:18,791 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {71247#true} {71247#true} #1186#return; {71247#true} is VALID [2022-04-27 15:20:18,800 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:20:18,804 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,839 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:20:18,841 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,875 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:20:18,876 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,879 INFO L290 TraceCheckUtils]: 0: Hoare triple {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {71247#true} is VALID [2022-04-27 15:20:18,879 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,879 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {71247#true} {71247#true} #1174#return; {71247#true} is VALID [2022-04-27 15:20:18,879 INFO L290 TraceCheckUtils]: 0: Hoare triple {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {71247#true} is VALID [2022-04-27 15:20:18,880 INFO L272 TraceCheckUtils]: 1: Hoare triple {71247#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:18,880 INFO L290 TraceCheckUtils]: 2: Hoare triple {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {71247#true} is VALID [2022-04-27 15:20:18,880 INFO L290 TraceCheckUtils]: 3: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,880 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {71247#true} {71247#true} #1174#return; {71247#true} is VALID [2022-04-27 15:20:18,880 INFO L290 TraceCheckUtils]: 5: Hoare triple {71247#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {71247#true} is VALID [2022-04-27 15:20:18,880 INFO L290 TraceCheckUtils]: 6: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,880 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {71247#true} {71247#true} #1210#return; {71247#true} is VALID [2022-04-27 15:20:18,889 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:20:18,891 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,895 INFO L290 TraceCheckUtils]: 0: Hoare triple {71425#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {71247#true} is VALID [2022-04-27 15:20:18,895 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,895 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {71247#true} {71247#true} #1212#return; {71247#true} is VALID [2022-04-27 15:20:18,895 INFO L290 TraceCheckUtils]: 0: Hoare triple {71407#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {71247#true} is VALID [2022-04-27 15:20:18,895 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume 0 != ~compRegistered~0; {71247#true} is VALID [2022-04-27 15:20:18,896 INFO L272 TraceCheckUtils]: 2: Hoare triple {71247#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:18,896 INFO L290 TraceCheckUtils]: 3: Hoare triple {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {71247#true} is VALID [2022-04-27 15:20:18,897 INFO L272 TraceCheckUtils]: 4: Hoare triple {71247#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:18,897 INFO L290 TraceCheckUtils]: 5: Hoare triple {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {71247#true} is VALID [2022-04-27 15:20:18,897 INFO L290 TraceCheckUtils]: 6: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,897 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {71247#true} {71247#true} #1174#return; {71247#true} is VALID [2022-04-27 15:20:18,897 INFO L290 TraceCheckUtils]: 8: Hoare triple {71247#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {71247#true} is VALID [2022-04-27 15:20:18,897 INFO L290 TraceCheckUtils]: 9: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,897 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {71247#true} {71247#true} #1210#return; {71247#true} is VALID [2022-04-27 15:20:18,897 INFO L290 TraceCheckUtils]: 11: Hoare triple {71247#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {71247#true} is VALID [2022-04-27 15:20:18,897 INFO L290 TraceCheckUtils]: 12: Hoare triple {71247#true} assume -1073741802 == ~compRetStatus~0; {71247#true} is VALID [2022-04-27 15:20:18,897 INFO L272 TraceCheckUtils]: 13: Hoare triple {71247#true} call stubMoreProcessingRequired(); {71425#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:18,898 INFO L290 TraceCheckUtils]: 14: Hoare triple {71425#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {71247#true} is VALID [2022-04-27 15:20:18,898 INFO L290 TraceCheckUtils]: 15: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,898 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {71247#true} {71247#true} #1212#return; {71247#true} is VALID [2022-04-27 15:20:18,898 INFO L290 TraceCheckUtils]: 17: Hoare triple {71247#true} assume !(0 == ~__BLAST_NONDET~11); {71247#true} is VALID [2022-04-27 15:20:18,898 INFO L290 TraceCheckUtils]: 18: Hoare triple {71247#true} assume 1 == ~__BLAST_NONDET~11; {71247#true} is VALID [2022-04-27 15:20:18,898 INFO L290 TraceCheckUtils]: 19: Hoare triple {71247#true} ~returnVal2~0 := -1073741823; {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:20:18,898 INFO L290 TraceCheckUtils]: 20: Hoare triple {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume !(~s~0 == ~NP~0); {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:20:18,899 INFO L290 TraceCheckUtils]: 21: Hoare triple {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume ~s~0 == ~MPR1~0; {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:20:18,899 INFO L290 TraceCheckUtils]: 22: Hoare triple {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:20:18,899 INFO L290 TraceCheckUtils]: 23: Hoare triple {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} #res := ~returnVal2~0; {71420#(<= (+ |IofCallDriver_#res| 1073741823) 0)} is VALID [2022-04-27 15:20:18,900 INFO L290 TraceCheckUtils]: 24: Hoare triple {71420#(<= (+ |IofCallDriver_#res| 1073741823) 0)} assume true; {71420#(<= (+ |IofCallDriver_#res| 1073741823) 0)} is VALID [2022-04-27 15:20:18,900 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {71420#(<= (+ |IofCallDriver_#res| 1073741823) 0)} {71247#true} #1192#return; {71401#(<= (+ 1073741823 |KbFilter_PnP_#t~ret109|) 0)} is VALID [2022-04-27 15:20:18,900 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 45 [2022-04-27 15:20:18,901 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:18,905 INFO L290 TraceCheckUtils]: 0: Hoare triple {71425#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {71247#true} is VALID [2022-04-27 15:20:18,905 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {71247#true} is VALID [2022-04-27 15:20:18,905 INFO L290 TraceCheckUtils]: 2: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,905 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {71247#true} {71248#false} #1196#return; {71248#false} is VALID [2022-04-27 15:20:18,905 INFO L290 TraceCheckUtils]: 0: Hoare triple {71369#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {71247#true} is VALID [2022-04-27 15:20:18,905 INFO L290 TraceCheckUtils]: 1: Hoare triple {71247#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {71247#true} is VALID [2022-04-27 15:20:18,905 INFO L290 TraceCheckUtils]: 2: Hoare triple {71247#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {71247#true} is VALID [2022-04-27 15:20:18,906 INFO L272 TraceCheckUtils]: 3: Hoare triple {71247#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:18,906 INFO L290 TraceCheckUtils]: 4: Hoare triple {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {71247#true} is VALID [2022-04-27 15:20:18,906 INFO L290 TraceCheckUtils]: 5: Hoare triple {71247#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {71247#true} is VALID [2022-04-27 15:20:18,906 INFO L290 TraceCheckUtils]: 6: Hoare triple {71247#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {71247#true} is VALID [2022-04-27 15:20:18,907 INFO L290 TraceCheckUtils]: 7: Hoare triple {71247#true} assume #res.base == dest.base && #res.offset == dest.offset; {71247#true} is VALID [2022-04-27 15:20:18,907 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {71247#true} {71247#true} #1186#return; {71247#true} is VALID [2022-04-27 15:20:18,907 INFO L290 TraceCheckUtils]: 9: Hoare triple {71247#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {71247#true} is VALID [2022-04-27 15:20:18,907 INFO L290 TraceCheckUtils]: 10: Hoare triple {71247#true} assume !(~s~0 != ~NP~0); {71247#true} is VALID [2022-04-27 15:20:18,907 INFO L290 TraceCheckUtils]: 11: Hoare triple {71247#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {71247#true} is VALID [2022-04-27 15:20:18,907 INFO L290 TraceCheckUtils]: 12: Hoare triple {71247#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {71247#true} is VALID [2022-04-27 15:20:18,916 INFO L272 TraceCheckUtils]: 13: Hoare triple {71247#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {71407#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:18,916 INFO L290 TraceCheckUtils]: 14: Hoare triple {71407#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {71247#true} is VALID [2022-04-27 15:20:18,916 INFO L290 TraceCheckUtils]: 15: Hoare triple {71247#true} assume 0 != ~compRegistered~0; {71247#true} is VALID [2022-04-27 15:20:18,917 INFO L272 TraceCheckUtils]: 16: Hoare triple {71247#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:18,917 INFO L290 TraceCheckUtils]: 17: Hoare triple {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {71247#true} is VALID [2022-04-27 15:20:18,918 INFO L272 TraceCheckUtils]: 18: Hoare triple {71247#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:18,918 INFO L290 TraceCheckUtils]: 19: Hoare triple {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {71247#true} is VALID [2022-04-27 15:20:18,918 INFO L290 TraceCheckUtils]: 20: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,918 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {71247#true} {71247#true} #1174#return; {71247#true} is VALID [2022-04-27 15:20:18,918 INFO L290 TraceCheckUtils]: 22: Hoare triple {71247#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {71247#true} is VALID [2022-04-27 15:20:18,918 INFO L290 TraceCheckUtils]: 23: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,918 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {71247#true} {71247#true} #1210#return; {71247#true} is VALID [2022-04-27 15:20:18,918 INFO L290 TraceCheckUtils]: 25: Hoare triple {71247#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {71247#true} is VALID [2022-04-27 15:20:18,918 INFO L290 TraceCheckUtils]: 26: Hoare triple {71247#true} assume -1073741802 == ~compRetStatus~0; {71247#true} is VALID [2022-04-27 15:20:18,918 INFO L272 TraceCheckUtils]: 27: Hoare triple {71247#true} call stubMoreProcessingRequired(); {71425#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:18,919 INFO L290 TraceCheckUtils]: 28: Hoare triple {71425#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {71247#true} is VALID [2022-04-27 15:20:18,919 INFO L290 TraceCheckUtils]: 29: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,919 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {71247#true} {71247#true} #1212#return; {71247#true} is VALID [2022-04-27 15:20:18,919 INFO L290 TraceCheckUtils]: 31: Hoare triple {71247#true} assume !(0 == ~__BLAST_NONDET~11); {71247#true} is VALID [2022-04-27 15:20:18,919 INFO L290 TraceCheckUtils]: 32: Hoare triple {71247#true} assume 1 == ~__BLAST_NONDET~11; {71247#true} is VALID [2022-04-27 15:20:18,919 INFO L290 TraceCheckUtils]: 33: Hoare triple {71247#true} ~returnVal2~0 := -1073741823; {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:20:18,919 INFO L290 TraceCheckUtils]: 34: Hoare triple {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume !(~s~0 == ~NP~0); {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:20:18,920 INFO L290 TraceCheckUtils]: 35: Hoare triple {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume ~s~0 == ~MPR1~0; {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:20:18,920 INFO L290 TraceCheckUtils]: 36: Hoare triple {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:20:18,920 INFO L290 TraceCheckUtils]: 37: Hoare triple {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} #res := ~returnVal2~0; {71420#(<= (+ |IofCallDriver_#res| 1073741823) 0)} is VALID [2022-04-27 15:20:18,921 INFO L290 TraceCheckUtils]: 38: Hoare triple {71420#(<= (+ |IofCallDriver_#res| 1073741823) 0)} assume true; {71420#(<= (+ |IofCallDriver_#res| 1073741823) 0)} is VALID [2022-04-27 15:20:18,921 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {71420#(<= (+ |IofCallDriver_#res| 1073741823) 0)} {71247#true} #1192#return; {71401#(<= (+ 1073741823 |KbFilter_PnP_#t~ret109|) 0)} is VALID [2022-04-27 15:20:18,922 INFO L290 TraceCheckUtils]: 40: Hoare triple {71401#(<= (+ 1073741823 |KbFilter_PnP_#t~ret109|) 0)} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {71402#(<= (+ KbFilter_PnP_~status~3 1073741823) 0)} is VALID [2022-04-27 15:20:18,922 INFO L290 TraceCheckUtils]: 41: Hoare triple {71402#(<= (+ KbFilter_PnP_~status~3 1073741823) 0)} assume !(259 == ~status~3); {71402#(<= (+ KbFilter_PnP_~status~3 1073741823) 0)} is VALID [2022-04-27 15:20:18,923 INFO L290 TraceCheckUtils]: 42: Hoare triple {71402#(<= (+ KbFilter_PnP_~status~3 1073741823) 0)} assume ~status~3 >= 0; {71248#false} is VALID [2022-04-27 15:20:18,923 INFO L290 TraceCheckUtils]: 43: Hoare triple {71248#false} assume ~myStatus~0 >= 0;call write~int(1, ~devExt~3.base, 52 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 54 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 53 + ~devExt~3.offset, 1); {71248#false} is VALID [2022-04-27 15:20:18,923 INFO L290 TraceCheckUtils]: 44: Hoare triple {71248#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {71248#false} is VALID [2022-04-27 15:20:18,923 INFO L272 TraceCheckUtils]: 45: Hoare triple {71248#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {71425#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:18,923 INFO L290 TraceCheckUtils]: 46: Hoare triple {71425#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {71247#true} is VALID [2022-04-27 15:20:18,923 INFO L290 TraceCheckUtils]: 47: Hoare triple {71247#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {71247#true} is VALID [2022-04-27 15:20:18,923 INFO L290 TraceCheckUtils]: 48: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,923 INFO L284 TraceCheckUtils]: 49: Hoare quadruple {71247#true} {71248#false} #1196#return; {71248#false} is VALID [2022-04-27 15:20:18,923 INFO L290 TraceCheckUtils]: 50: Hoare triple {71248#false} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {71248#false} is VALID [2022-04-27 15:20:18,923 INFO L290 TraceCheckUtils]: 51: Hoare triple {71248#false} assume true; {71248#false} is VALID [2022-04-27 15:20:18,923 INFO L284 TraceCheckUtils]: 52: Hoare quadruple {71248#false} {71247#true} #1230#return; {71248#false} is VALID [2022-04-27 15:20:18,924 INFO L272 TraceCheckUtils]: 0: Hoare triple {71247#true} call ULTIMATE.init(); {71345#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:20:18,925 INFO L290 TraceCheckUtils]: 1: Hoare triple {71345#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {71247#true} is VALID [2022-04-27 15:20:18,925 INFO L290 TraceCheckUtils]: 2: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,925 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {71247#true} {71247#true} #1270#return; {71247#true} is VALID [2022-04-27 15:20:18,925 INFO L272 TraceCheckUtils]: 4: Hoare triple {71247#true} call #t~ret213 := main(); {71247#true} is VALID [2022-04-27 15:20:18,925 INFO L290 TraceCheckUtils]: 5: Hoare triple {71247#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {71247#true} is VALID [2022-04-27 15:20:18,926 INFO L272 TraceCheckUtils]: 6: Hoare triple {71247#true} call _BLAST_init(); {71346#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:18,926 INFO L290 TraceCheckUtils]: 7: Hoare triple {71346#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {71247#true} is VALID [2022-04-27 15:20:18,926 INFO L290 TraceCheckUtils]: 8: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,926 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {71247#true} {71247#true} #1216#return; {71247#true} is VALID [2022-04-27 15:20:18,927 INFO L272 TraceCheckUtils]: 10: Hoare triple {71247#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:18,927 INFO L290 TraceCheckUtils]: 11: Hoare triple {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {71247#true} is VALID [2022-04-27 15:20:18,927 INFO L272 TraceCheckUtils]: 12: Hoare triple {71247#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {71247#true} is VALID [2022-04-27 15:20:18,927 INFO L290 TraceCheckUtils]: 13: Hoare triple {71247#true} ~cond := #in~cond; {71247#true} is VALID [2022-04-27 15:20:18,927 INFO L290 TraceCheckUtils]: 14: Hoare triple {71247#true} assume !(0 == ~cond); {71247#true} is VALID [2022-04-27 15:20:18,927 INFO L290 TraceCheckUtils]: 15: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,927 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {71247#true} {71247#true} #1254#return; {71247#true} is VALID [2022-04-27 15:20:18,927 INFO L290 TraceCheckUtils]: 17: Hoare triple {71247#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {71247#true} is VALID [2022-04-27 15:20:18,927 INFO L290 TraceCheckUtils]: 18: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,927 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {71247#true} {71247#true} #1218#return; {71247#true} is VALID [2022-04-27 15:20:18,927 INFO L290 TraceCheckUtils]: 20: Hoare triple {71247#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {71247#true} is VALID [2022-04-27 15:20:18,927 INFO L290 TraceCheckUtils]: 21: Hoare triple {71247#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {71247#true} is VALID [2022-04-27 15:20:18,927 INFO L290 TraceCheckUtils]: 22: Hoare triple {71247#true} assume !(0 == ~irp_choice~0); {71247#true} is VALID [2022-04-27 15:20:18,928 INFO L272 TraceCheckUtils]: 23: Hoare triple {71247#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {71352#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:20:18,929 INFO L290 TraceCheckUtils]: 24: Hoare triple {71352#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {71247#true} is VALID [2022-04-27 15:20:18,930 INFO L272 TraceCheckUtils]: 25: Hoare triple {71247#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {71352#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:20:18,930 INFO L290 TraceCheckUtils]: 26: Hoare triple {71352#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {71247#true} is VALID [2022-04-27 15:20:18,930 INFO L290 TraceCheckUtils]: 27: Hoare triple {71247#true} assume 0 == ~__BLAST_NONDET~5; {71247#true} is VALID [2022-04-27 15:20:18,930 INFO L290 TraceCheckUtils]: 28: Hoare triple {71247#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {71247#true} is VALID [2022-04-27 15:20:18,930 INFO L290 TraceCheckUtils]: 29: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,930 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {71247#true} {71247#true} #1176#return; {71247#true} is VALID [2022-04-27 15:20:18,930 INFO L290 TraceCheckUtils]: 31: Hoare triple {71247#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {71247#true} is VALID [2022-04-27 15:20:18,930 INFO L290 TraceCheckUtils]: 32: Hoare triple {71247#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {71247#true} is VALID [2022-04-27 15:20:18,931 INFO L272 TraceCheckUtils]: 33: Hoare triple {71247#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:18,931 INFO L290 TraceCheckUtils]: 34: Hoare triple {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {71247#true} is VALID [2022-04-27 15:20:18,931 INFO L290 TraceCheckUtils]: 35: Hoare triple {71247#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {71247#true} is VALID [2022-04-27 15:20:18,931 INFO L290 TraceCheckUtils]: 36: Hoare triple {71247#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {71247#true} is VALID [2022-04-27 15:20:18,931 INFO L290 TraceCheckUtils]: 37: Hoare triple {71247#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {71247#true} is VALID [2022-04-27 15:20:18,931 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {71247#true} {71247#true} #1178#return; {71247#true} is VALID [2022-04-27 15:20:18,931 INFO L290 TraceCheckUtils]: 39: Hoare triple {71247#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {71247#true} is VALID [2022-04-27 15:20:18,931 INFO L272 TraceCheckUtils]: 40: Hoare triple {71247#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {71247#true} is VALID [2022-04-27 15:20:18,931 INFO L290 TraceCheckUtils]: 41: Hoare triple {71247#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {71247#true} is VALID [2022-04-27 15:20:18,931 INFO L290 TraceCheckUtils]: 42: Hoare triple {71247#true} assume 0 == ~__BLAST_NONDET~2; {71247#true} is VALID [2022-04-27 15:20:18,932 INFO L290 TraceCheckUtils]: 43: Hoare triple {71247#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {71247#true} is VALID [2022-04-27 15:20:18,932 INFO L290 TraceCheckUtils]: 44: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,932 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {71247#true} {71247#true} #1180#return; {71247#true} is VALID [2022-04-27 15:20:18,932 INFO L290 TraceCheckUtils]: 46: Hoare triple {71247#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {71247#true} is VALID [2022-04-27 15:20:18,932 INFO L290 TraceCheckUtils]: 47: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,932 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {71247#true} {71247#true} #1220#return; {71247#true} is VALID [2022-04-27 15:20:18,932 INFO L290 TraceCheckUtils]: 49: Hoare triple {71247#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {71247#true} is VALID [2022-04-27 15:20:18,932 INFO L272 TraceCheckUtils]: 50: Hoare triple {71247#true} call stub_driver_init(); {71368#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:18,933 INFO L290 TraceCheckUtils]: 51: Hoare triple {71368#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {71247#true} is VALID [2022-04-27 15:20:18,933 INFO L290 TraceCheckUtils]: 52: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,933 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {71247#true} {71247#true} #1222#return; {71247#true} is VALID [2022-04-27 15:20:18,933 INFO L290 TraceCheckUtils]: 54: Hoare triple {71247#true} assume !!(~status~5 >= 0); {71247#true} is VALID [2022-04-27 15:20:18,933 INFO L290 TraceCheckUtils]: 55: Hoare triple {71247#true} assume !(0 == ~__BLAST_NONDET~0); {71247#true} is VALID [2022-04-27 15:20:18,933 INFO L290 TraceCheckUtils]: 56: Hoare triple {71247#true} assume !(1 == ~__BLAST_NONDET~0); {71247#true} is VALID [2022-04-27 15:20:18,933 INFO L290 TraceCheckUtils]: 57: Hoare triple {71247#true} assume !(2 == ~__BLAST_NONDET~0); {71247#true} is VALID [2022-04-27 15:20:18,933 INFO L290 TraceCheckUtils]: 58: Hoare triple {71247#true} assume 3 == ~__BLAST_NONDET~0; {71247#true} is VALID [2022-04-27 15:20:18,934 INFO L272 TraceCheckUtils]: 59: Hoare triple {71247#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {71369#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:18,934 INFO L290 TraceCheckUtils]: 60: Hoare triple {71369#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {71247#true} is VALID [2022-04-27 15:20:18,934 INFO L290 TraceCheckUtils]: 61: Hoare triple {71247#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {71247#true} is VALID [2022-04-27 15:20:18,934 INFO L290 TraceCheckUtils]: 62: Hoare triple {71247#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {71247#true} is VALID [2022-04-27 15:20:18,935 INFO L272 TraceCheckUtils]: 63: Hoare triple {71247#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:18,935 INFO L290 TraceCheckUtils]: 64: Hoare triple {71347#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {71247#true} is VALID [2022-04-27 15:20:18,935 INFO L290 TraceCheckUtils]: 65: Hoare triple {71247#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {71247#true} is VALID [2022-04-27 15:20:18,935 INFO L290 TraceCheckUtils]: 66: Hoare triple {71247#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {71247#true} is VALID [2022-04-27 15:20:18,935 INFO L290 TraceCheckUtils]: 67: Hoare triple {71247#true} assume #res.base == dest.base && #res.offset == dest.offset; {71247#true} is VALID [2022-04-27 15:20:18,935 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {71247#true} {71247#true} #1186#return; {71247#true} is VALID [2022-04-27 15:20:18,935 INFO L290 TraceCheckUtils]: 69: Hoare triple {71247#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {71247#true} is VALID [2022-04-27 15:20:18,936 INFO L290 TraceCheckUtils]: 70: Hoare triple {71247#true} assume !(~s~0 != ~NP~0); {71247#true} is VALID [2022-04-27 15:20:18,936 INFO L290 TraceCheckUtils]: 71: Hoare triple {71247#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {71247#true} is VALID [2022-04-27 15:20:18,936 INFO L290 TraceCheckUtils]: 72: Hoare triple {71247#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {71247#true} is VALID [2022-04-27 15:20:18,941 INFO L272 TraceCheckUtils]: 73: Hoare triple {71247#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {71407#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:18,941 INFO L290 TraceCheckUtils]: 74: Hoare triple {71407#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {71247#true} is VALID [2022-04-27 15:20:18,941 INFO L290 TraceCheckUtils]: 75: Hoare triple {71247#true} assume 0 != ~compRegistered~0; {71247#true} is VALID [2022-04-27 15:20:18,942 INFO L272 TraceCheckUtils]: 76: Hoare triple {71247#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:18,942 INFO L290 TraceCheckUtils]: 77: Hoare triple {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {71247#true} is VALID [2022-04-27 15:20:18,942 INFO L272 TraceCheckUtils]: 78: Hoare triple {71247#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:18,942 INFO L290 TraceCheckUtils]: 79: Hoare triple {71421#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {71247#true} is VALID [2022-04-27 15:20:18,942 INFO L290 TraceCheckUtils]: 80: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,943 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {71247#true} {71247#true} #1174#return; {71247#true} is VALID [2022-04-27 15:20:18,943 INFO L290 TraceCheckUtils]: 82: Hoare triple {71247#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {71247#true} is VALID [2022-04-27 15:20:18,943 INFO L290 TraceCheckUtils]: 83: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,943 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {71247#true} {71247#true} #1210#return; {71247#true} is VALID [2022-04-27 15:20:18,943 INFO L290 TraceCheckUtils]: 85: Hoare triple {71247#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {71247#true} is VALID [2022-04-27 15:20:18,943 INFO L290 TraceCheckUtils]: 86: Hoare triple {71247#true} assume -1073741802 == ~compRetStatus~0; {71247#true} is VALID [2022-04-27 15:20:18,943 INFO L272 TraceCheckUtils]: 87: Hoare triple {71247#true} call stubMoreProcessingRequired(); {71425#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:18,943 INFO L290 TraceCheckUtils]: 88: Hoare triple {71425#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {71247#true} is VALID [2022-04-27 15:20:18,943 INFO L290 TraceCheckUtils]: 89: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,943 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {71247#true} {71247#true} #1212#return; {71247#true} is VALID [2022-04-27 15:20:18,943 INFO L290 TraceCheckUtils]: 91: Hoare triple {71247#true} assume !(0 == ~__BLAST_NONDET~11); {71247#true} is VALID [2022-04-27 15:20:18,943 INFO L290 TraceCheckUtils]: 92: Hoare triple {71247#true} assume 1 == ~__BLAST_NONDET~11; {71247#true} is VALID [2022-04-27 15:20:18,944 INFO L290 TraceCheckUtils]: 93: Hoare triple {71247#true} ~returnVal2~0 := -1073741823; {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:20:18,944 INFO L290 TraceCheckUtils]: 94: Hoare triple {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume !(~s~0 == ~NP~0); {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:20:18,944 INFO L290 TraceCheckUtils]: 95: Hoare triple {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume ~s~0 == ~MPR1~0; {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:20:18,945 INFO L290 TraceCheckUtils]: 96: Hoare triple {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} assume !(259 == ~returnVal2~0);~s~0 := ~NP~0;~lowerDriverReturn~0 := ~returnVal2~0; {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} is VALID [2022-04-27 15:20:18,945 INFO L290 TraceCheckUtils]: 97: Hoare triple {71419#(<= (+ 1073741823 IofCallDriver_~returnVal2~0) 0)} #res := ~returnVal2~0; {71420#(<= (+ |IofCallDriver_#res| 1073741823) 0)} is VALID [2022-04-27 15:20:18,945 INFO L290 TraceCheckUtils]: 98: Hoare triple {71420#(<= (+ |IofCallDriver_#res| 1073741823) 0)} assume true; {71420#(<= (+ |IofCallDriver_#res| 1073741823) 0)} is VALID [2022-04-27 15:20:18,946 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {71420#(<= (+ |IofCallDriver_#res| 1073741823) 0)} {71247#true} #1192#return; {71401#(<= (+ 1073741823 |KbFilter_PnP_#t~ret109|) 0)} is VALID [2022-04-27 15:20:18,946 INFO L290 TraceCheckUtils]: 100: Hoare triple {71401#(<= (+ 1073741823 |KbFilter_PnP_#t~ret109|) 0)} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {71402#(<= (+ KbFilter_PnP_~status~3 1073741823) 0)} is VALID [2022-04-27 15:20:18,947 INFO L290 TraceCheckUtils]: 101: Hoare triple {71402#(<= (+ KbFilter_PnP_~status~3 1073741823) 0)} assume !(259 == ~status~3); {71402#(<= (+ KbFilter_PnP_~status~3 1073741823) 0)} is VALID [2022-04-27 15:20:18,947 INFO L290 TraceCheckUtils]: 102: Hoare triple {71402#(<= (+ KbFilter_PnP_~status~3 1073741823) 0)} assume ~status~3 >= 0; {71248#false} is VALID [2022-04-27 15:20:18,947 INFO L290 TraceCheckUtils]: 103: Hoare triple {71248#false} assume ~myStatus~0 >= 0;call write~int(1, ~devExt~3.base, 52 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 54 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 53 + ~devExt~3.offset, 1); {71248#false} is VALID [2022-04-27 15:20:18,947 INFO L290 TraceCheckUtils]: 104: Hoare triple {71248#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {71248#false} is VALID [2022-04-27 15:20:18,947 INFO L272 TraceCheckUtils]: 105: Hoare triple {71248#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {71425#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:18,947 INFO L290 TraceCheckUtils]: 106: Hoare triple {71425#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {71247#true} is VALID [2022-04-27 15:20:18,947 INFO L290 TraceCheckUtils]: 107: Hoare triple {71247#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {71247#true} is VALID [2022-04-27 15:20:18,947 INFO L290 TraceCheckUtils]: 108: Hoare triple {71247#true} assume true; {71247#true} is VALID [2022-04-27 15:20:18,948 INFO L284 TraceCheckUtils]: 109: Hoare quadruple {71247#true} {71248#false} #1196#return; {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 110: Hoare triple {71248#false} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 111: Hoare triple {71248#false} assume true; {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L284 TraceCheckUtils]: 112: Hoare quadruple {71248#false} {71247#true} #1230#return; {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 113: Hoare triple {71248#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 114: Hoare triple {71248#false} assume 0 != ~we_should_unload~0; {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 115: Hoare triple {71248#false} assume !(1 == ~pended~0); {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 116: Hoare triple {71248#false} assume !(1 == ~pended~0); {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 117: Hoare triple {71248#false} assume !(~s~0 == ~UNLOADED~0); {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 118: Hoare triple {71248#false} assume !(-1 == ~status~5); {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 119: Hoare triple {71248#false} assume ~s~0 != ~SKIP2~0; {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 120: Hoare triple {71248#false} assume ~s~0 != ~IPC~0; {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 121: Hoare triple {71248#false} assume !(~s~0 != ~DC~0); {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 122: Hoare triple {71248#false} assume !(1 == ~pended~0); {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 123: Hoare triple {71248#false} assume ~s~0 == ~DC~0; {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 124: Hoare triple {71248#false} assume 259 == ~status~5; {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L272 TraceCheckUtils]: 125: Hoare triple {71248#false} call errorFn(); {71248#false} is VALID [2022-04-27 15:20:18,948 INFO L290 TraceCheckUtils]: 126: Hoare triple {71248#false} assume !false; {71248#false} is VALID [2022-04-27 15:20:18,949 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:20:18,949 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:20:18,949 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1986325323] [2022-04-27 15:20:18,949 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1986325323] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:20:18,949 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-04-27 15:20:18,949 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [15] imperfect sequences [] total 15 [2022-04-27 15:20:18,949 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1614393085] [2022-04-27 15:20:18,949 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:20:18,950 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 15 states have (on average 6.2) internal successors, (93), 5 states have internal predecessors, (93), 2 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) Word has length 127 [2022-04-27 15:20:18,950 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:20:18,950 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 15 states, 15 states have (on average 6.2) internal successors, (93), 5 states have internal predecessors, (93), 2 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:19,040 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 127 edges. 127 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:20:19,040 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2022-04-27 15:20:19,040 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:20:19,040 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2022-04-27 15:20:19,040 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=47, Invalid=163, Unknown=0, NotChecked=0, Total=210 [2022-04-27 15:20:19,041 INFO L87 Difference]: Start difference. First operand 271 states and 294 transitions. Second operand has 15 states, 15 states have (on average 6.2) internal successors, (93), 5 states have internal predecessors, (93), 2 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:22,252 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.08s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:20:24,615 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.26s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:20:29,368 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:20:31,381 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:20:33,405 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:20:35,424 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.02s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:20:37,450 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:20:43,767 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:20:43,768 INFO L93 Difference]: Finished difference Result 323 states and 354 transitions. [2022-04-27 15:20:43,768 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 14 states. [2022-04-27 15:20:43,768 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 15 states have (on average 6.2) internal successors, (93), 5 states have internal predecessors, (93), 2 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) Word has length 127 [2022-04-27 15:20:43,768 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:20:43,768 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 15 states, 15 states have (on average 6.2) internal successors, (93), 5 states have internal predecessors, (93), 2 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:43,769 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 14 states to 14 states and 213 transitions. [2022-04-27 15:20:43,769 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 15 states, 15 states have (on average 6.2) internal successors, (93), 5 states have internal predecessors, (93), 2 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:43,770 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 14 states to 14 states and 213 transitions. [2022-04-27 15:20:43,770 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 14 states and 213 transitions. [2022-04-27 15:20:43,979 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 213 edges. 213 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:20:43,982 INFO L225 Difference]: With dead ends: 323 [2022-04-27 15:20:43,983 INFO L226 Difference]: Without dead ends: 253 [2022-04-27 15:20:43,983 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 46 GetRequests, 27 SyntacticMatches, 0 SemanticMatches, 19 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 46 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=94, Invalid=326, Unknown=0, NotChecked=0, Total=420 [2022-04-27 15:20:43,983 INFO L413 NwaCegarLoop]: 123 mSDtfsCounter, 282 mSDsluCounter, 284 mSDsCounter, 0 mSdLazyCounter, 668 mSolverCounterSat, 192 mSolverCounterUnsat, 5 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 16.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 284 SdHoareTripleChecker+Valid, 407 SdHoareTripleChecker+Invalid, 865 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 192 IncrementalHoareTripleChecker+Valid, 668 IncrementalHoareTripleChecker+Invalid, 5 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 16.3s IncrementalHoareTripleChecker+Time [2022-04-27 15:20:43,983 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [284 Valid, 407 Invalid, 865 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [192 Valid, 668 Invalid, 5 Unknown, 0 Unchecked, 16.3s Time] [2022-04-27 15:20:43,984 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 253 states. [2022-04-27 15:20:44,195 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 253 to 233. [2022-04-27 15:20:44,195 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:20:44,196 INFO L82 GeneralOperation]: Start isEquivalent. First operand 253 states. Second operand has 233 states, 173 states have (on average 1.0867052023121386) internal successors, (188), 173 states have internal predecessors, (188), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:20:44,196 INFO L74 IsIncluded]: Start isIncluded. First operand 253 states. Second operand has 233 states, 173 states have (on average 1.0867052023121386) internal successors, (188), 173 states have internal predecessors, (188), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:20:44,196 INFO L87 Difference]: Start difference. First operand 253 states. Second operand has 233 states, 173 states have (on average 1.0867052023121386) internal successors, (188), 173 states have internal predecessors, (188), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:20:44,198 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:20:44,199 INFO L93 Difference]: Finished difference Result 253 states and 274 transitions. [2022-04-27 15:20:44,199 INFO L276 IsEmpty]: Start isEmpty. Operand 253 states and 274 transitions. [2022-04-27 15:20:44,199 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:20:44,199 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:20:44,199 INFO L74 IsIncluded]: Start isIncluded. First operand has 233 states, 173 states have (on average 1.0867052023121386) internal successors, (188), 173 states have internal predecessors, (188), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) Second operand 253 states. [2022-04-27 15:20:44,199 INFO L87 Difference]: Start difference. First operand has 233 states, 173 states have (on average 1.0867052023121386) internal successors, (188), 173 states have internal predecessors, (188), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) Second operand 253 states. [2022-04-27 15:20:44,202 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:20:44,202 INFO L93 Difference]: Finished difference Result 253 states and 274 transitions. [2022-04-27 15:20:44,202 INFO L276 IsEmpty]: Start isEmpty. Operand 253 states and 274 transitions. [2022-04-27 15:20:44,202 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:20:44,202 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:20:44,202 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:20:44,202 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:20:44,202 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 233 states, 173 states have (on average 1.0867052023121386) internal successors, (188), 173 states have internal predecessors, (188), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:20:44,205 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 233 states to 233 states and 248 transitions. [2022-04-27 15:20:44,205 INFO L78 Accepts]: Start accepts. Automaton has 233 states and 248 transitions. Word has length 127 [2022-04-27 15:20:44,205 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:20:44,205 INFO L495 AbstractCegarLoop]: Abstraction has 233 states and 248 transitions. [2022-04-27 15:20:44,205 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 15 states have (on average 6.2) internal successors, (93), 5 states have internal predecessors, (93), 2 states have call successors, (18), 11 states have call predecessors, (18), 3 states have return successors, (16), 3 states have call predecessors, (16), 2 states have call successors, (16) [2022-04-27 15:20:44,205 INFO L276 IsEmpty]: Start isEmpty. Operand 233 states and 248 transitions. [2022-04-27 15:20:44,206 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 137 [2022-04-27 15:20:44,206 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:20:44,206 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:20:44,206 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable37 [2022-04-27 15:20:44,206 INFO L420 AbstractCegarLoop]: === Iteration 39 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:20:44,206 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:20:44,206 INFO L85 PathProgramCache]: Analyzing trace with hash 1600651777, now seen corresponding path program 1 times [2022-04-27 15:20:44,207 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:20:44,207 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1791600026] [2022-04-27 15:20:44,207 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:20:44,207 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:20:44,462 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,528 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:20:44,529 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,534 INFO L290 TraceCheckUtils]: 0: Hoare triple {72825#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {72718#true} is VALID [2022-04-27 15:20:44,534 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,534 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {72718#true} {72718#true} #1270#return; {72718#true} is VALID [2022-04-27 15:20:44,555 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:20:44,556 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,560 INFO L290 TraceCheckUtils]: 0: Hoare triple {72826#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {72718#true} is VALID [2022-04-27 15:20:44,560 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,560 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {72718#true} {72718#true} #1216#return; {72718#true} is VALID [2022-04-27 15:20:44,566 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:20:44,571 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,577 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:20:44,578 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,582 INFO L290 TraceCheckUtils]: 0: Hoare triple {72718#true} ~cond := #in~cond; {72718#true} is VALID [2022-04-27 15:20:44,582 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume !(0 == ~cond); {72718#true} is VALID [2022-04-27 15:20:44,582 INFO L290 TraceCheckUtils]: 2: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,582 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {72718#true} {72718#true} #1254#return; {72718#true} is VALID [2022-04-27 15:20:44,582 INFO L290 TraceCheckUtils]: 0: Hoare triple {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {72718#true} is VALID [2022-04-27 15:20:44,582 INFO L272 TraceCheckUtils]: 1: Hoare triple {72718#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {72718#true} is VALID [2022-04-27 15:20:44,582 INFO L290 TraceCheckUtils]: 2: Hoare triple {72718#true} ~cond := #in~cond; {72718#true} is VALID [2022-04-27 15:20:44,582 INFO L290 TraceCheckUtils]: 3: Hoare triple {72718#true} assume !(0 == ~cond); {72718#true} is VALID [2022-04-27 15:20:44,582 INFO L290 TraceCheckUtils]: 4: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,582 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {72718#true} {72718#true} #1254#return; {72718#true} is VALID [2022-04-27 15:20:44,582 INFO L290 TraceCheckUtils]: 6: Hoare triple {72718#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {72718#true} is VALID [2022-04-27 15:20:44,583 INFO L290 TraceCheckUtils]: 7: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,583 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {72718#true} {72718#true} #1218#return; {72718#true} is VALID [2022-04-27 15:20:44,591 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:20:44,613 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,628 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:20:44,631 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,637 INFO L290 TraceCheckUtils]: 0: Hoare triple {72832#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {72718#true} is VALID [2022-04-27 15:20:44,637 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume 0 == ~__BLAST_NONDET~5; {72718#true} is VALID [2022-04-27 15:20:44,637 INFO L290 TraceCheckUtils]: 2: Hoare triple {72718#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {72718#true} is VALID [2022-04-27 15:20:44,637 INFO L290 TraceCheckUtils]: 3: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,637 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {72718#true} {72718#true} #1176#return; {72718#true} is VALID [2022-04-27 15:20:44,637 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:20:44,641 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,711 INFO L290 TraceCheckUtils]: 0: Hoare triple {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {72848#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:20:44,713 INFO L290 TraceCheckUtils]: 1: Hoare triple {72848#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {72849#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} is VALID [2022-04-27 15:20:44,713 INFO L290 TraceCheckUtils]: 2: Hoare triple {72849#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {72850#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:20:44,714 INFO L290 TraceCheckUtils]: 3: Hoare triple {72850#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {72850#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:20:44,715 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {72850#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {72718#true} #1178#return; {72719#false} is VALID [2022-04-27 15:20:44,715 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:20:44,716 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,720 INFO L290 TraceCheckUtils]: 0: Hoare triple {72718#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {72718#true} is VALID [2022-04-27 15:20:44,720 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume 0 == ~__BLAST_NONDET~2; {72718#true} is VALID [2022-04-27 15:20:44,721 INFO L290 TraceCheckUtils]: 2: Hoare triple {72718#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {72718#true} is VALID [2022-04-27 15:20:44,721 INFO L290 TraceCheckUtils]: 3: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,721 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {72718#true} {72719#false} #1180#return; {72719#false} is VALID [2022-04-27 15:20:44,721 INFO L290 TraceCheckUtils]: 0: Hoare triple {72832#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {72718#true} is VALID [2022-04-27 15:20:44,722 INFO L272 TraceCheckUtils]: 1: Hoare triple {72718#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {72832#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:20:44,722 INFO L290 TraceCheckUtils]: 2: Hoare triple {72832#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {72718#true} is VALID [2022-04-27 15:20:44,722 INFO L290 TraceCheckUtils]: 3: Hoare triple {72718#true} assume 0 == ~__BLAST_NONDET~5; {72718#true} is VALID [2022-04-27 15:20:44,722 INFO L290 TraceCheckUtils]: 4: Hoare triple {72718#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {72718#true} is VALID [2022-04-27 15:20:44,722 INFO L290 TraceCheckUtils]: 5: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,722 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {72718#true} {72718#true} #1176#return; {72718#true} is VALID [2022-04-27 15:20:44,722 INFO L290 TraceCheckUtils]: 7: Hoare triple {72718#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {72718#true} is VALID [2022-04-27 15:20:44,722 INFO L290 TraceCheckUtils]: 8: Hoare triple {72718#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {72718#true} is VALID [2022-04-27 15:20:44,723 INFO L272 TraceCheckUtils]: 9: Hoare triple {72718#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:44,723 INFO L290 TraceCheckUtils]: 10: Hoare triple {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {72848#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:20:44,724 INFO L290 TraceCheckUtils]: 11: Hoare triple {72848#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {72849#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} is VALID [2022-04-27 15:20:44,725 INFO L290 TraceCheckUtils]: 12: Hoare triple {72849#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {72850#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:20:44,726 INFO L290 TraceCheckUtils]: 13: Hoare triple {72850#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {72850#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:20:44,726 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {72850#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {72718#true} #1178#return; {72719#false} is VALID [2022-04-27 15:20:44,727 INFO L290 TraceCheckUtils]: 15: Hoare triple {72719#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {72719#false} is VALID [2022-04-27 15:20:44,727 INFO L272 TraceCheckUtils]: 16: Hoare triple {72719#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {72718#true} is VALID [2022-04-27 15:20:44,727 INFO L290 TraceCheckUtils]: 17: Hoare triple {72718#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {72718#true} is VALID [2022-04-27 15:20:44,727 INFO L290 TraceCheckUtils]: 18: Hoare triple {72718#true} assume 0 == ~__BLAST_NONDET~2; {72718#true} is VALID [2022-04-27 15:20:44,727 INFO L290 TraceCheckUtils]: 19: Hoare triple {72718#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {72718#true} is VALID [2022-04-27 15:20:44,727 INFO L290 TraceCheckUtils]: 20: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,727 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {72718#true} {72719#false} #1180#return; {72719#false} is VALID [2022-04-27 15:20:44,727 INFO L290 TraceCheckUtils]: 22: Hoare triple {72719#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {72719#false} is VALID [2022-04-27 15:20:44,727 INFO L290 TraceCheckUtils]: 23: Hoare triple {72719#false} assume true; {72719#false} is VALID [2022-04-27 15:20:44,727 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {72719#false} {72718#true} #1220#return; {72719#false} is VALID [2022-04-27 15:20:44,743 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:20:44,744 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,748 INFO L290 TraceCheckUtils]: 0: Hoare triple {72851#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {72718#true} is VALID [2022-04-27 15:20:44,748 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,748 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {72718#true} {72719#false} #1222#return; {72719#false} is VALID [2022-04-27 15:20:44,771 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 59 [2022-04-27 15:20:44,785 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,795 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2022-04-27 15:20:44,796 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,812 INFO L290 TraceCheckUtils]: 0: Hoare triple {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {72718#true} is VALID [2022-04-27 15:20:44,812 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {72718#true} is VALID [2022-04-27 15:20:44,812 INFO L290 TraceCheckUtils]: 2: Hoare triple {72718#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {72718#true} is VALID [2022-04-27 15:20:44,812 INFO L290 TraceCheckUtils]: 3: Hoare triple {72718#true} assume #res.base == dest.base && #res.offset == dest.offset; {72718#true} is VALID [2022-04-27 15:20:44,812 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {72718#true} {72718#true} #1186#return; {72718#true} is VALID [2022-04-27 15:20:44,822 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:20:44,826 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,840 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:20:44,842 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,846 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:20:44,848 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,854 INFO L290 TraceCheckUtils]: 0: Hoare triple {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {72718#true} is VALID [2022-04-27 15:20:44,854 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,854 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {72718#true} {72718#true} #1174#return; {72718#true} is VALID [2022-04-27 15:20:44,854 INFO L290 TraceCheckUtils]: 0: Hoare triple {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {72718#true} is VALID [2022-04-27 15:20:44,855 INFO L272 TraceCheckUtils]: 1: Hoare triple {72718#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:44,855 INFO L290 TraceCheckUtils]: 2: Hoare triple {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {72718#true} is VALID [2022-04-27 15:20:44,855 INFO L290 TraceCheckUtils]: 3: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,855 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {72718#true} {72718#true} #1174#return; {72718#true} is VALID [2022-04-27 15:20:44,855 INFO L290 TraceCheckUtils]: 5: Hoare triple {72718#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {72718#true} is VALID [2022-04-27 15:20:44,855 INFO L290 TraceCheckUtils]: 6: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,855 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {72718#true} {72718#true} #1210#return; {72718#true} is VALID [2022-04-27 15:20:44,865 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:20:44,866 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,870 INFO L290 TraceCheckUtils]: 0: Hoare triple {72911#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {72718#true} is VALID [2022-04-27 15:20:44,870 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,870 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {72718#true} {72718#true} #1212#return; {72718#true} is VALID [2022-04-27 15:20:44,870 INFO L290 TraceCheckUtils]: 0: Hoare triple {72895#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {72718#true} is VALID [2022-04-27 15:20:44,870 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume 0 != ~compRegistered~0; {72718#true} is VALID [2022-04-27 15:20:44,871 INFO L272 TraceCheckUtils]: 2: Hoare triple {72718#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:44,871 INFO L290 TraceCheckUtils]: 3: Hoare triple {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {72718#true} is VALID [2022-04-27 15:20:44,871 INFO L272 TraceCheckUtils]: 4: Hoare triple {72718#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:44,871 INFO L290 TraceCheckUtils]: 5: Hoare triple {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {72718#true} is VALID [2022-04-27 15:20:44,872 INFO L290 TraceCheckUtils]: 6: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,872 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {72718#true} {72718#true} #1174#return; {72718#true} is VALID [2022-04-27 15:20:44,872 INFO L290 TraceCheckUtils]: 8: Hoare triple {72718#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {72718#true} is VALID [2022-04-27 15:20:44,872 INFO L290 TraceCheckUtils]: 9: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,872 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {72718#true} {72718#true} #1210#return; {72718#true} is VALID [2022-04-27 15:20:44,872 INFO L290 TraceCheckUtils]: 11: Hoare triple {72718#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {72718#true} is VALID [2022-04-27 15:20:44,872 INFO L290 TraceCheckUtils]: 12: Hoare triple {72718#true} assume -1073741802 == ~compRetStatus~0; {72718#true} is VALID [2022-04-27 15:20:44,883 INFO L272 TraceCheckUtils]: 13: Hoare triple {72718#true} call stubMoreProcessingRequired(); {72911#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:44,883 INFO L290 TraceCheckUtils]: 14: Hoare triple {72911#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {72718#true} is VALID [2022-04-27 15:20:44,883 INFO L290 TraceCheckUtils]: 15: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,884 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {72718#true} {72718#true} #1212#return; {72718#true} is VALID [2022-04-27 15:20:44,884 INFO L290 TraceCheckUtils]: 17: Hoare triple {72718#true} assume !(0 == ~__BLAST_NONDET~11); {72718#true} is VALID [2022-04-27 15:20:44,884 INFO L290 TraceCheckUtils]: 18: Hoare triple {72718#true} assume !(1 == ~__BLAST_NONDET~11); {72718#true} is VALID [2022-04-27 15:20:44,884 INFO L290 TraceCheckUtils]: 19: Hoare triple {72718#true} ~returnVal2~0 := 259; {72718#true} is VALID [2022-04-27 15:20:44,884 INFO L290 TraceCheckUtils]: 20: Hoare triple {72718#true} assume !(~s~0 == ~NP~0); {72718#true} is VALID [2022-04-27 15:20:44,884 INFO L290 TraceCheckUtils]: 21: Hoare triple {72718#true} assume ~s~0 == ~MPR1~0; {72718#true} is VALID [2022-04-27 15:20:44,884 INFO L290 TraceCheckUtils]: 22: Hoare triple {72718#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {72718#true} is VALID [2022-04-27 15:20:44,884 INFO L290 TraceCheckUtils]: 23: Hoare triple {72718#true} #res := ~returnVal2~0; {72718#true} is VALID [2022-04-27 15:20:44,884 INFO L290 TraceCheckUtils]: 24: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,884 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {72718#true} {72718#true} #1192#return; {72718#true} is VALID [2022-04-27 15:20:44,896 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 42 [2022-04-27 15:20:44,898 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,902 INFO L290 TraceCheckUtils]: 0: Hoare triple {72912#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {72718#true} is VALID [2022-04-27 15:20:44,903 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume ~s~0 == ~MPR3~0; {72718#true} is VALID [2022-04-27 15:20:44,903 INFO L290 TraceCheckUtils]: 2: Hoare triple {72718#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {72718#true} is VALID [2022-04-27 15:20:44,903 INFO L290 TraceCheckUtils]: 3: Hoare triple {72718#true} assume 0 == ~__BLAST_NONDET~13; {72718#true} is VALID [2022-04-27 15:20:44,903 INFO L290 TraceCheckUtils]: 4: Hoare triple {72718#true} #res := 0; {72718#true} is VALID [2022-04-27 15:20:44,903 INFO L290 TraceCheckUtils]: 5: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,903 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {72718#true} {72718#true} #1194#return; {72718#true} is VALID [2022-04-27 15:20:44,903 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 54 [2022-04-27 15:20:44,904 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:44,908 INFO L290 TraceCheckUtils]: 0: Hoare triple {72911#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {72718#true} is VALID [2022-04-27 15:20:44,908 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {72718#true} is VALID [2022-04-27 15:20:44,908 INFO L290 TraceCheckUtils]: 2: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,908 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {72718#true} {72718#true} #1196#return; {72718#true} is VALID [2022-04-27 15:20:44,908 INFO L290 TraceCheckUtils]: 0: Hoare triple {72852#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {72718#true} is VALID [2022-04-27 15:20:44,908 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {72718#true} is VALID [2022-04-27 15:20:44,908 INFO L290 TraceCheckUtils]: 2: Hoare triple {72718#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {72718#true} is VALID [2022-04-27 15:20:44,909 INFO L272 TraceCheckUtils]: 3: Hoare triple {72718#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:44,909 INFO L290 TraceCheckUtils]: 4: Hoare triple {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {72718#true} is VALID [2022-04-27 15:20:44,909 INFO L290 TraceCheckUtils]: 5: Hoare triple {72718#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {72718#true} is VALID [2022-04-27 15:20:44,909 INFO L290 TraceCheckUtils]: 6: Hoare triple {72718#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {72718#true} is VALID [2022-04-27 15:20:44,909 INFO L290 TraceCheckUtils]: 7: Hoare triple {72718#true} assume #res.base == dest.base && #res.offset == dest.offset; {72718#true} is VALID [2022-04-27 15:20:44,909 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {72718#true} {72718#true} #1186#return; {72718#true} is VALID [2022-04-27 15:20:44,909 INFO L290 TraceCheckUtils]: 9: Hoare triple {72718#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {72718#true} is VALID [2022-04-27 15:20:44,909 INFO L290 TraceCheckUtils]: 10: Hoare triple {72718#true} assume !(~s~0 != ~NP~0); {72718#true} is VALID [2022-04-27 15:20:44,909 INFO L290 TraceCheckUtils]: 11: Hoare triple {72718#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {72718#true} is VALID [2022-04-27 15:20:44,910 INFO L290 TraceCheckUtils]: 12: Hoare triple {72718#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {72718#true} is VALID [2022-04-27 15:20:44,910 INFO L272 TraceCheckUtils]: 13: Hoare triple {72718#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {72895#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:44,910 INFO L290 TraceCheckUtils]: 14: Hoare triple {72895#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {72718#true} is VALID [2022-04-27 15:20:44,910 INFO L290 TraceCheckUtils]: 15: Hoare triple {72718#true} assume 0 != ~compRegistered~0; {72718#true} is VALID [2022-04-27 15:20:44,911 INFO L272 TraceCheckUtils]: 16: Hoare triple {72718#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:44,911 INFO L290 TraceCheckUtils]: 17: Hoare triple {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {72718#true} is VALID [2022-04-27 15:20:44,912 INFO L272 TraceCheckUtils]: 18: Hoare triple {72718#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:44,912 INFO L290 TraceCheckUtils]: 19: Hoare triple {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {72718#true} is VALID [2022-04-27 15:20:44,912 INFO L290 TraceCheckUtils]: 20: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,912 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {72718#true} {72718#true} #1174#return; {72718#true} is VALID [2022-04-27 15:20:44,912 INFO L290 TraceCheckUtils]: 22: Hoare triple {72718#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {72718#true} is VALID [2022-04-27 15:20:44,912 INFO L290 TraceCheckUtils]: 23: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,912 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {72718#true} {72718#true} #1210#return; {72718#true} is VALID [2022-04-27 15:20:44,912 INFO L290 TraceCheckUtils]: 25: Hoare triple {72718#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {72718#true} is VALID [2022-04-27 15:20:44,912 INFO L290 TraceCheckUtils]: 26: Hoare triple {72718#true} assume -1073741802 == ~compRetStatus~0; {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L272 TraceCheckUtils]: 27: Hoare triple {72718#true} call stubMoreProcessingRequired(); {72911#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:44,913 INFO L290 TraceCheckUtils]: 28: Hoare triple {72911#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L290 TraceCheckUtils]: 29: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {72718#true} {72718#true} #1212#return; {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L290 TraceCheckUtils]: 31: Hoare triple {72718#true} assume !(0 == ~__BLAST_NONDET~11); {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L290 TraceCheckUtils]: 32: Hoare triple {72718#true} assume !(1 == ~__BLAST_NONDET~11); {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L290 TraceCheckUtils]: 33: Hoare triple {72718#true} ~returnVal2~0 := 259; {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L290 TraceCheckUtils]: 34: Hoare triple {72718#true} assume !(~s~0 == ~NP~0); {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L290 TraceCheckUtils]: 35: Hoare triple {72718#true} assume ~s~0 == ~MPR1~0; {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L290 TraceCheckUtils]: 36: Hoare triple {72718#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L290 TraceCheckUtils]: 37: Hoare triple {72718#true} #res := ~returnVal2~0; {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L290 TraceCheckUtils]: 38: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L284 TraceCheckUtils]: 39: Hoare quadruple {72718#true} {72718#true} #1192#return; {72718#true} is VALID [2022-04-27 15:20:44,913 INFO L290 TraceCheckUtils]: 40: Hoare triple {72718#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {72718#true} is VALID [2022-04-27 15:20:44,914 INFO L290 TraceCheckUtils]: 41: Hoare triple {72718#true} assume 259 == ~status~3; {72718#true} is VALID [2022-04-27 15:20:44,914 INFO L272 TraceCheckUtils]: 42: Hoare triple {72718#true} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {72912#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:44,914 INFO L290 TraceCheckUtils]: 43: Hoare triple {72912#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {72718#true} is VALID [2022-04-27 15:20:44,915 INFO L290 TraceCheckUtils]: 44: Hoare triple {72718#true} assume ~s~0 == ~MPR3~0; {72718#true} is VALID [2022-04-27 15:20:44,915 INFO L290 TraceCheckUtils]: 45: Hoare triple {72718#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {72718#true} is VALID [2022-04-27 15:20:44,915 INFO L290 TraceCheckUtils]: 46: Hoare triple {72718#true} assume 0 == ~__BLAST_NONDET~13; {72718#true} is VALID [2022-04-27 15:20:44,915 INFO L290 TraceCheckUtils]: 47: Hoare triple {72718#true} #res := 0; {72718#true} is VALID [2022-04-27 15:20:44,915 INFO L290 TraceCheckUtils]: 48: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,915 INFO L284 TraceCheckUtils]: 49: Hoare quadruple {72718#true} {72718#true} #1194#return; {72718#true} is VALID [2022-04-27 15:20:44,915 INFO L290 TraceCheckUtils]: 50: Hoare triple {72718#true} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {72718#true} is VALID [2022-04-27 15:20:44,915 INFO L290 TraceCheckUtils]: 51: Hoare triple {72718#true} assume ~status~3 >= 0; {72718#true} is VALID [2022-04-27 15:20:44,915 INFO L290 TraceCheckUtils]: 52: Hoare triple {72718#true} assume !(~myStatus~0 >= 0); {72718#true} is VALID [2022-04-27 15:20:44,915 INFO L290 TraceCheckUtils]: 53: Hoare triple {72718#true} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {72718#true} is VALID [2022-04-27 15:20:44,916 INFO L272 TraceCheckUtils]: 54: Hoare triple {72718#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {72911#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:44,916 INFO L290 TraceCheckUtils]: 55: Hoare triple {72911#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {72718#true} is VALID [2022-04-27 15:20:44,916 INFO L290 TraceCheckUtils]: 56: Hoare triple {72718#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {72718#true} is VALID [2022-04-27 15:20:44,916 INFO L290 TraceCheckUtils]: 57: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,916 INFO L284 TraceCheckUtils]: 58: Hoare quadruple {72718#true} {72718#true} #1196#return; {72718#true} is VALID [2022-04-27 15:20:44,916 INFO L290 TraceCheckUtils]: 59: Hoare triple {72718#true} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {72718#true} is VALID [2022-04-27 15:20:44,916 INFO L290 TraceCheckUtils]: 60: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,916 INFO L284 TraceCheckUtils]: 61: Hoare quadruple {72718#true} {72719#false} #1230#return; {72719#false} is VALID [2022-04-27 15:20:44,917 INFO L272 TraceCheckUtils]: 0: Hoare triple {72718#true} call ULTIMATE.init(); {72825#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:20:44,917 INFO L290 TraceCheckUtils]: 1: Hoare triple {72825#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {72718#true} is VALID [2022-04-27 15:20:44,918 INFO L290 TraceCheckUtils]: 2: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,918 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {72718#true} {72718#true} #1270#return; {72718#true} is VALID [2022-04-27 15:20:44,918 INFO L272 TraceCheckUtils]: 4: Hoare triple {72718#true} call #t~ret213 := main(); {72718#true} is VALID [2022-04-27 15:20:44,918 INFO L290 TraceCheckUtils]: 5: Hoare triple {72718#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {72718#true} is VALID [2022-04-27 15:20:44,919 INFO L272 TraceCheckUtils]: 6: Hoare triple {72718#true} call _BLAST_init(); {72826#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:44,919 INFO L290 TraceCheckUtils]: 7: Hoare triple {72826#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {72718#true} is VALID [2022-04-27 15:20:44,919 INFO L290 TraceCheckUtils]: 8: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,919 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {72718#true} {72718#true} #1216#return; {72718#true} is VALID [2022-04-27 15:20:44,920 INFO L272 TraceCheckUtils]: 10: Hoare triple {72718#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:44,920 INFO L290 TraceCheckUtils]: 11: Hoare triple {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {72718#true} is VALID [2022-04-27 15:20:44,920 INFO L272 TraceCheckUtils]: 12: Hoare triple {72718#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {72718#true} is VALID [2022-04-27 15:20:44,920 INFO L290 TraceCheckUtils]: 13: Hoare triple {72718#true} ~cond := #in~cond; {72718#true} is VALID [2022-04-27 15:20:44,920 INFO L290 TraceCheckUtils]: 14: Hoare triple {72718#true} assume !(0 == ~cond); {72718#true} is VALID [2022-04-27 15:20:44,920 INFO L290 TraceCheckUtils]: 15: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,920 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {72718#true} {72718#true} #1254#return; {72718#true} is VALID [2022-04-27 15:20:44,920 INFO L290 TraceCheckUtils]: 17: Hoare triple {72718#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {72718#true} is VALID [2022-04-27 15:20:44,920 INFO L290 TraceCheckUtils]: 18: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,920 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {72718#true} {72718#true} #1218#return; {72718#true} is VALID [2022-04-27 15:20:44,920 INFO L290 TraceCheckUtils]: 20: Hoare triple {72718#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {72718#true} is VALID [2022-04-27 15:20:44,920 INFO L290 TraceCheckUtils]: 21: Hoare triple {72718#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {72718#true} is VALID [2022-04-27 15:20:44,920 INFO L290 TraceCheckUtils]: 22: Hoare triple {72718#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {72718#true} is VALID [2022-04-27 15:20:44,928 INFO L272 TraceCheckUtils]: 23: Hoare triple {72718#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {72832#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:20:44,928 INFO L290 TraceCheckUtils]: 24: Hoare triple {72832#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {72718#true} is VALID [2022-04-27 15:20:44,929 INFO L272 TraceCheckUtils]: 25: Hoare triple {72718#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {72832#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:20:44,929 INFO L290 TraceCheckUtils]: 26: Hoare triple {72832#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {72718#true} is VALID [2022-04-27 15:20:44,929 INFO L290 TraceCheckUtils]: 27: Hoare triple {72718#true} assume 0 == ~__BLAST_NONDET~5; {72718#true} is VALID [2022-04-27 15:20:44,929 INFO L290 TraceCheckUtils]: 28: Hoare triple {72718#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {72718#true} is VALID [2022-04-27 15:20:44,929 INFO L290 TraceCheckUtils]: 29: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,929 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {72718#true} {72718#true} #1176#return; {72718#true} is VALID [2022-04-27 15:20:44,929 INFO L290 TraceCheckUtils]: 31: Hoare triple {72718#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {72718#true} is VALID [2022-04-27 15:20:44,929 INFO L290 TraceCheckUtils]: 32: Hoare triple {72718#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {72718#true} is VALID [2022-04-27 15:20:44,930 INFO L272 TraceCheckUtils]: 33: Hoare triple {72718#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:44,930 INFO L290 TraceCheckUtils]: 34: Hoare triple {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {72848#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:20:44,931 INFO L290 TraceCheckUtils]: 35: Hoare triple {72848#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {72849#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} is VALID [2022-04-27 15:20:44,932 INFO L290 TraceCheckUtils]: 36: Hoare triple {72849#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {72850#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:20:44,933 INFO L290 TraceCheckUtils]: 37: Hoare triple {72850#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {72850#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:20:44,933 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {72850#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {72718#true} #1178#return; {72719#false} is VALID [2022-04-27 15:20:44,933 INFO L290 TraceCheckUtils]: 39: Hoare triple {72719#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {72719#false} is VALID [2022-04-27 15:20:44,934 INFO L272 TraceCheckUtils]: 40: Hoare triple {72719#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {72718#true} is VALID [2022-04-27 15:20:44,934 INFO L290 TraceCheckUtils]: 41: Hoare triple {72718#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {72718#true} is VALID [2022-04-27 15:20:44,934 INFO L290 TraceCheckUtils]: 42: Hoare triple {72718#true} assume 0 == ~__BLAST_NONDET~2; {72718#true} is VALID [2022-04-27 15:20:44,934 INFO L290 TraceCheckUtils]: 43: Hoare triple {72718#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {72718#true} is VALID [2022-04-27 15:20:44,934 INFO L290 TraceCheckUtils]: 44: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,934 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {72718#true} {72719#false} #1180#return; {72719#false} is VALID [2022-04-27 15:20:44,934 INFO L290 TraceCheckUtils]: 46: Hoare triple {72719#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {72719#false} is VALID [2022-04-27 15:20:44,934 INFO L290 TraceCheckUtils]: 47: Hoare triple {72719#false} assume true; {72719#false} is VALID [2022-04-27 15:20:44,934 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {72719#false} {72718#true} #1220#return; {72719#false} is VALID [2022-04-27 15:20:44,934 INFO L290 TraceCheckUtils]: 49: Hoare triple {72719#false} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {72719#false} is VALID [2022-04-27 15:20:44,934 INFO L272 TraceCheckUtils]: 50: Hoare triple {72719#false} call stub_driver_init(); {72851#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:44,934 INFO L290 TraceCheckUtils]: 51: Hoare triple {72851#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {72718#true} is VALID [2022-04-27 15:20:44,934 INFO L290 TraceCheckUtils]: 52: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,934 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {72718#true} {72719#false} #1222#return; {72719#false} is VALID [2022-04-27 15:20:44,934 INFO L290 TraceCheckUtils]: 54: Hoare triple {72719#false} assume !!(~status~5 >= 0); {72719#false} is VALID [2022-04-27 15:20:44,934 INFO L290 TraceCheckUtils]: 55: Hoare triple {72719#false} assume !(0 == ~__BLAST_NONDET~0); {72719#false} is VALID [2022-04-27 15:20:44,934 INFO L290 TraceCheckUtils]: 56: Hoare triple {72719#false} assume !(1 == ~__BLAST_NONDET~0); {72719#false} is VALID [2022-04-27 15:20:44,935 INFO L290 TraceCheckUtils]: 57: Hoare triple {72719#false} assume !(2 == ~__BLAST_NONDET~0); {72719#false} is VALID [2022-04-27 15:20:44,935 INFO L290 TraceCheckUtils]: 58: Hoare triple {72719#false} assume 3 == ~__BLAST_NONDET~0; {72719#false} is VALID [2022-04-27 15:20:44,935 INFO L272 TraceCheckUtils]: 59: Hoare triple {72719#false} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {72852#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:44,935 INFO L290 TraceCheckUtils]: 60: Hoare triple {72852#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {72718#true} is VALID [2022-04-27 15:20:44,935 INFO L290 TraceCheckUtils]: 61: Hoare triple {72718#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {72718#true} is VALID [2022-04-27 15:20:44,935 INFO L290 TraceCheckUtils]: 62: Hoare triple {72718#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {72718#true} is VALID [2022-04-27 15:20:44,936 INFO L272 TraceCheckUtils]: 63: Hoare triple {72718#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:44,936 INFO L290 TraceCheckUtils]: 64: Hoare triple {72827#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {72718#true} is VALID [2022-04-27 15:20:44,936 INFO L290 TraceCheckUtils]: 65: Hoare triple {72718#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {72718#true} is VALID [2022-04-27 15:20:44,936 INFO L290 TraceCheckUtils]: 66: Hoare triple {72718#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {72718#true} is VALID [2022-04-27 15:20:44,936 INFO L290 TraceCheckUtils]: 67: Hoare triple {72718#true} assume #res.base == dest.base && #res.offset == dest.offset; {72718#true} is VALID [2022-04-27 15:20:44,936 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {72718#true} {72718#true} #1186#return; {72718#true} is VALID [2022-04-27 15:20:44,936 INFO L290 TraceCheckUtils]: 69: Hoare triple {72718#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {72718#true} is VALID [2022-04-27 15:20:44,936 INFO L290 TraceCheckUtils]: 70: Hoare triple {72718#true} assume !(~s~0 != ~NP~0); {72718#true} is VALID [2022-04-27 15:20:44,936 INFO L290 TraceCheckUtils]: 71: Hoare triple {72718#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {72718#true} is VALID [2022-04-27 15:20:44,936 INFO L290 TraceCheckUtils]: 72: Hoare triple {72718#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {72718#true} is VALID [2022-04-27 15:20:44,937 INFO L272 TraceCheckUtils]: 73: Hoare triple {72718#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {72895#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:44,937 INFO L290 TraceCheckUtils]: 74: Hoare triple {72895#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {72718#true} is VALID [2022-04-27 15:20:44,937 INFO L290 TraceCheckUtils]: 75: Hoare triple {72718#true} assume 0 != ~compRegistered~0; {72718#true} is VALID [2022-04-27 15:20:44,938 INFO L272 TraceCheckUtils]: 76: Hoare triple {72718#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:44,938 INFO L290 TraceCheckUtils]: 77: Hoare triple {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {72718#true} is VALID [2022-04-27 15:20:44,938 INFO L272 TraceCheckUtils]: 78: Hoare triple {72718#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:44,939 INFO L290 TraceCheckUtils]: 79: Hoare triple {72907#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {72718#true} is VALID [2022-04-27 15:20:44,939 INFO L290 TraceCheckUtils]: 80: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,939 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {72718#true} {72718#true} #1174#return; {72718#true} is VALID [2022-04-27 15:20:44,939 INFO L290 TraceCheckUtils]: 82: Hoare triple {72718#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {72718#true} is VALID [2022-04-27 15:20:44,939 INFO L290 TraceCheckUtils]: 83: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,939 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {72718#true} {72718#true} #1210#return; {72718#true} is VALID [2022-04-27 15:20:44,939 INFO L290 TraceCheckUtils]: 85: Hoare triple {72718#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {72718#true} is VALID [2022-04-27 15:20:44,939 INFO L290 TraceCheckUtils]: 86: Hoare triple {72718#true} assume -1073741802 == ~compRetStatus~0; {72718#true} is VALID [2022-04-27 15:20:44,939 INFO L272 TraceCheckUtils]: 87: Hoare triple {72718#true} call stubMoreProcessingRequired(); {72911#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:44,939 INFO L290 TraceCheckUtils]: 88: Hoare triple {72911#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {72718#true} is VALID [2022-04-27 15:20:44,939 INFO L290 TraceCheckUtils]: 89: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,939 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {72718#true} {72718#true} #1212#return; {72718#true} is VALID [2022-04-27 15:20:44,939 INFO L290 TraceCheckUtils]: 91: Hoare triple {72718#true} assume !(0 == ~__BLAST_NONDET~11); {72718#true} is VALID [2022-04-27 15:20:44,940 INFO L290 TraceCheckUtils]: 92: Hoare triple {72718#true} assume !(1 == ~__BLAST_NONDET~11); {72718#true} is VALID [2022-04-27 15:20:44,940 INFO L290 TraceCheckUtils]: 93: Hoare triple {72718#true} ~returnVal2~0 := 259; {72718#true} is VALID [2022-04-27 15:20:44,940 INFO L290 TraceCheckUtils]: 94: Hoare triple {72718#true} assume !(~s~0 == ~NP~0); {72718#true} is VALID [2022-04-27 15:20:44,940 INFO L290 TraceCheckUtils]: 95: Hoare triple {72718#true} assume ~s~0 == ~MPR1~0; {72718#true} is VALID [2022-04-27 15:20:44,940 INFO L290 TraceCheckUtils]: 96: Hoare triple {72718#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {72718#true} is VALID [2022-04-27 15:20:44,940 INFO L290 TraceCheckUtils]: 97: Hoare triple {72718#true} #res := ~returnVal2~0; {72718#true} is VALID [2022-04-27 15:20:44,940 INFO L290 TraceCheckUtils]: 98: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,940 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {72718#true} {72718#true} #1192#return; {72718#true} is VALID [2022-04-27 15:20:44,940 INFO L290 TraceCheckUtils]: 100: Hoare triple {72718#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {72718#true} is VALID [2022-04-27 15:20:44,940 INFO L290 TraceCheckUtils]: 101: Hoare triple {72718#true} assume 259 == ~status~3; {72718#true} is VALID [2022-04-27 15:20:44,941 INFO L272 TraceCheckUtils]: 102: Hoare triple {72718#true} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {72912#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:44,941 INFO L290 TraceCheckUtils]: 103: Hoare triple {72912#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {72718#true} is VALID [2022-04-27 15:20:44,941 INFO L290 TraceCheckUtils]: 104: Hoare triple {72718#true} assume ~s~0 == ~MPR3~0; {72718#true} is VALID [2022-04-27 15:20:44,941 INFO L290 TraceCheckUtils]: 105: Hoare triple {72718#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {72718#true} is VALID [2022-04-27 15:20:44,941 INFO L290 TraceCheckUtils]: 106: Hoare triple {72718#true} assume 0 == ~__BLAST_NONDET~13; {72718#true} is VALID [2022-04-27 15:20:44,941 INFO L290 TraceCheckUtils]: 107: Hoare triple {72718#true} #res := 0; {72718#true} is VALID [2022-04-27 15:20:44,941 INFO L290 TraceCheckUtils]: 108: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,941 INFO L284 TraceCheckUtils]: 109: Hoare quadruple {72718#true} {72718#true} #1194#return; {72718#true} is VALID [2022-04-27 15:20:44,941 INFO L290 TraceCheckUtils]: 110: Hoare triple {72718#true} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {72718#true} is VALID [2022-04-27 15:20:44,941 INFO L290 TraceCheckUtils]: 111: Hoare triple {72718#true} assume ~status~3 >= 0; {72718#true} is VALID [2022-04-27 15:20:44,941 INFO L290 TraceCheckUtils]: 112: Hoare triple {72718#true} assume !(~myStatus~0 >= 0); {72718#true} is VALID [2022-04-27 15:20:44,941 INFO L290 TraceCheckUtils]: 113: Hoare triple {72718#true} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {72718#true} is VALID [2022-04-27 15:20:44,942 INFO L272 TraceCheckUtils]: 114: Hoare triple {72718#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {72911#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:44,942 INFO L290 TraceCheckUtils]: 115: Hoare triple {72911#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {72718#true} is VALID [2022-04-27 15:20:44,942 INFO L290 TraceCheckUtils]: 116: Hoare triple {72718#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {72718#true} is VALID [2022-04-27 15:20:44,942 INFO L290 TraceCheckUtils]: 117: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,942 INFO L284 TraceCheckUtils]: 118: Hoare quadruple {72718#true} {72718#true} #1196#return; {72718#true} is VALID [2022-04-27 15:20:44,942 INFO L290 TraceCheckUtils]: 119: Hoare triple {72718#true} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {72718#true} is VALID [2022-04-27 15:20:44,942 INFO L290 TraceCheckUtils]: 120: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:44,942 INFO L284 TraceCheckUtils]: 121: Hoare quadruple {72718#true} {72719#false} #1230#return; {72719#false} is VALID [2022-04-27 15:20:44,942 INFO L290 TraceCheckUtils]: 122: Hoare triple {72719#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L290 TraceCheckUtils]: 123: Hoare triple {72719#false} assume 0 != ~we_should_unload~0; {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L290 TraceCheckUtils]: 124: Hoare triple {72719#false} assume !(1 == ~pended~0); {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L290 TraceCheckUtils]: 125: Hoare triple {72719#false} assume !(1 == ~pended~0); {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L290 TraceCheckUtils]: 126: Hoare triple {72719#false} assume !(~s~0 == ~UNLOADED~0); {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L290 TraceCheckUtils]: 127: Hoare triple {72719#false} assume !(-1 == ~status~5); {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L290 TraceCheckUtils]: 128: Hoare triple {72719#false} assume ~s~0 != ~SKIP2~0; {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L290 TraceCheckUtils]: 129: Hoare triple {72719#false} assume ~s~0 != ~IPC~0; {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L290 TraceCheckUtils]: 130: Hoare triple {72719#false} assume !(~s~0 != ~DC~0); {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L290 TraceCheckUtils]: 131: Hoare triple {72719#false} assume !(1 == ~pended~0); {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L290 TraceCheckUtils]: 132: Hoare triple {72719#false} assume ~s~0 == ~DC~0; {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L290 TraceCheckUtils]: 133: Hoare triple {72719#false} assume 259 == ~status~5; {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L272 TraceCheckUtils]: 134: Hoare triple {72719#false} call errorFn(); {72719#false} is VALID [2022-04-27 15:20:44,943 INFO L290 TraceCheckUtils]: 135: Hoare triple {72719#false} assume !false; {72719#false} is VALID [2022-04-27 15:20:44,944 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-04-27 15:20:44,944 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:20:44,944 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1791600026] [2022-04-27 15:20:44,944 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1791600026] provided 0 perfect and 1 imperfect interpolant sequences [2022-04-27 15:20:44,944 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [211295558] [2022-04-27 15:20:44,944 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:20:44,944 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-04-27 15:20:44,944 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2022-04-27 15:20:44,945 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-04-27 15:20:44,946 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-04-27 15:20:46,692 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:46,701 INFO L263 TraceCheckSpWp]: Trace formula consists of 1875 conjuncts, 7 conjunts are in the unsatisfiable core [2022-04-27 15:20:46,736 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:46,738 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-04-27 15:20:46,978 INFO L272 TraceCheckUtils]: 0: Hoare triple {72718#true} call ULTIMATE.init(); {72718#true} is VALID [2022-04-27 15:20:46,978 INFO L290 TraceCheckUtils]: 1: Hoare triple {72718#true} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {72718#true} is VALID [2022-04-27 15:20:46,978 INFO L290 TraceCheckUtils]: 2: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:46,978 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {72718#true} {72718#true} #1270#return; {72718#true} is VALID [2022-04-27 15:20:46,978 INFO L272 TraceCheckUtils]: 4: Hoare triple {72718#true} call #t~ret213 := main(); {72718#true} is VALID [2022-04-27 15:20:46,978 INFO L290 TraceCheckUtils]: 5: Hoare triple {72718#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {72718#true} is VALID [2022-04-27 15:20:46,978 INFO L272 TraceCheckUtils]: 6: Hoare triple {72718#true} call _BLAST_init(); {72718#true} is VALID [2022-04-27 15:20:46,978 INFO L290 TraceCheckUtils]: 7: Hoare triple {72718#true} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {72718#true} is VALID [2022-04-27 15:20:46,978 INFO L290 TraceCheckUtils]: 8: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {72718#true} {72718#true} #1216#return; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L272 TraceCheckUtils]: 10: Hoare triple {72718#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L290 TraceCheckUtils]: 11: Hoare triple {72718#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L272 TraceCheckUtils]: 12: Hoare triple {72718#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L290 TraceCheckUtils]: 13: Hoare triple {72718#true} ~cond := #in~cond; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L290 TraceCheckUtils]: 14: Hoare triple {72718#true} assume !(0 == ~cond); {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L290 TraceCheckUtils]: 15: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {72718#true} {72718#true} #1254#return; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L290 TraceCheckUtils]: 17: Hoare triple {72718#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L290 TraceCheckUtils]: 18: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {72718#true} {72718#true} #1218#return; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L290 TraceCheckUtils]: 20: Hoare triple {72718#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L290 TraceCheckUtils]: 21: Hoare triple {72718#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L290 TraceCheckUtils]: 22: Hoare triple {72718#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L272 TraceCheckUtils]: 23: Hoare triple {72718#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L290 TraceCheckUtils]: 24: Hoare triple {72718#true} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L272 TraceCheckUtils]: 25: Hoare triple {72718#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {72718#true} is VALID [2022-04-27 15:20:46,979 INFO L290 TraceCheckUtils]: 26: Hoare triple {72718#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 27: Hoare triple {72718#true} assume 0 == ~__BLAST_NONDET~5; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 28: Hoare triple {72718#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 29: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {72718#true} {72718#true} #1176#return; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 31: Hoare triple {72718#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 32: Hoare triple {72718#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L272 TraceCheckUtils]: 33: Hoare triple {72718#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 34: Hoare triple {72718#true} #t~loopctr214 := 0; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 35: Hoare triple {72718#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 36: Hoare triple {72718#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 37: Hoare triple {72718#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {72718#true} {72718#true} #1178#return; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 39: Hoare triple {72718#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L272 TraceCheckUtils]: 40: Hoare triple {72718#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 41: Hoare triple {72718#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 42: Hoare triple {72718#true} assume 0 == ~__BLAST_NONDET~2; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 43: Hoare triple {72718#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {72718#true} is VALID [2022-04-27 15:20:46,980 INFO L290 TraceCheckUtils]: 44: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {72718#true} {72718#true} #1180#return; {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L290 TraceCheckUtils]: 46: Hoare triple {72718#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L290 TraceCheckUtils]: 47: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {72718#true} {72718#true} #1220#return; {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L290 TraceCheckUtils]: 49: Hoare triple {72718#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L272 TraceCheckUtils]: 50: Hoare triple {72718#true} call stub_driver_init(); {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L290 TraceCheckUtils]: 51: Hoare triple {72718#true} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L290 TraceCheckUtils]: 52: Hoare triple {72718#true} assume true; {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {72718#true} {72718#true} #1222#return; {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L290 TraceCheckUtils]: 54: Hoare triple {72718#true} assume !!(~status~5 >= 0); {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L290 TraceCheckUtils]: 55: Hoare triple {72718#true} assume !(0 == ~__BLAST_NONDET~0); {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L290 TraceCheckUtils]: 56: Hoare triple {72718#true} assume !(1 == ~__BLAST_NONDET~0); {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L290 TraceCheckUtils]: 57: Hoare triple {72718#true} assume !(2 == ~__BLAST_NONDET~0); {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L290 TraceCheckUtils]: 58: Hoare triple {72718#true} assume 3 == ~__BLAST_NONDET~0; {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L272 TraceCheckUtils]: 59: Hoare triple {72718#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L290 TraceCheckUtils]: 60: Hoare triple {72718#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {72718#true} is VALID [2022-04-27 15:20:46,981 INFO L290 TraceCheckUtils]: 61: Hoare triple {72718#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {72718#true} is VALID [2022-04-27 15:20:46,982 INFO L290 TraceCheckUtils]: 62: Hoare triple {72718#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {72718#true} is VALID [2022-04-27 15:20:46,982 INFO L272 TraceCheckUtils]: 63: Hoare triple {72718#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {72718#true} is VALID [2022-04-27 15:20:46,982 INFO L290 TraceCheckUtils]: 64: Hoare triple {72718#true} #t~loopctr215 := 0; {73108#(= |#Ultimate.C_memmove_#t~loopctr215| 0)} is VALID [2022-04-27 15:20:46,982 INFO L290 TraceCheckUtils]: 65: Hoare triple {73108#(= |#Ultimate.C_memmove_#t~loopctr215| 0)} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {73112#(not (< 0 (mod |#Ultimate.C_memmove_size| 4294967296)))} is VALID [2022-04-27 15:20:46,982 INFO L290 TraceCheckUtils]: 66: Hoare triple {73112#(not (< 0 (mod |#Ultimate.C_memmove_size| 4294967296)))} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {73112#(not (< 0 (mod |#Ultimate.C_memmove_size| 4294967296)))} is VALID [2022-04-27 15:20:46,983 INFO L290 TraceCheckUtils]: 67: Hoare triple {73112#(not (< 0 (mod |#Ultimate.C_memmove_size| 4294967296)))} assume #res.base == dest.base && #res.offset == dest.offset; {73112#(not (< 0 (mod |#Ultimate.C_memmove_size| 4294967296)))} is VALID [2022-04-27 15:20:46,984 INFO L284 TraceCheckUtils]: 68: Hoare quadruple {73112#(not (< 0 (mod |#Ultimate.C_memmove_size| 4294967296)))} {72718#true} #1186#return; {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L290 TraceCheckUtils]: 69: Hoare triple {72719#false} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L290 TraceCheckUtils]: 70: Hoare triple {72719#false} assume !(~s~0 != ~NP~0); {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L290 TraceCheckUtils]: 71: Hoare triple {72719#false} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L290 TraceCheckUtils]: 72: Hoare triple {72719#false} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L272 TraceCheckUtils]: 73: Hoare triple {72719#false} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L290 TraceCheckUtils]: 74: Hoare triple {72719#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L290 TraceCheckUtils]: 75: Hoare triple {72719#false} assume 0 != ~compRegistered~0; {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L272 TraceCheckUtils]: 76: Hoare triple {72719#false} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L290 TraceCheckUtils]: 77: Hoare triple {72719#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L272 TraceCheckUtils]: 78: Hoare triple {72719#false} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L290 TraceCheckUtils]: 79: Hoare triple {72719#false} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L290 TraceCheckUtils]: 80: Hoare triple {72719#false} assume true; {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L284 TraceCheckUtils]: 81: Hoare quadruple {72719#false} {72719#false} #1174#return; {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L290 TraceCheckUtils]: 82: Hoare triple {72719#false} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {72719#false} is VALID [2022-04-27 15:20:46,984 INFO L290 TraceCheckUtils]: 83: Hoare triple {72719#false} assume true; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L284 TraceCheckUtils]: 84: Hoare quadruple {72719#false} {72719#false} #1210#return; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 85: Hoare triple {72719#false} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 86: Hoare triple {72719#false} assume -1073741802 == ~compRetStatus~0; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L272 TraceCheckUtils]: 87: Hoare triple {72719#false} call stubMoreProcessingRequired(); {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 88: Hoare triple {72719#false} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 89: Hoare triple {72719#false} assume true; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {72719#false} {72719#false} #1212#return; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 91: Hoare triple {72719#false} assume !(0 == ~__BLAST_NONDET~11); {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 92: Hoare triple {72719#false} assume !(1 == ~__BLAST_NONDET~11); {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 93: Hoare triple {72719#false} ~returnVal2~0 := 259; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 94: Hoare triple {72719#false} assume !(~s~0 == ~NP~0); {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 95: Hoare triple {72719#false} assume ~s~0 == ~MPR1~0; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 96: Hoare triple {72719#false} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 97: Hoare triple {72719#false} #res := ~returnVal2~0; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 98: Hoare triple {72719#false} assume true; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {72719#false} {72719#false} #1192#return; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 100: Hoare triple {72719#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {72719#false} is VALID [2022-04-27 15:20:46,985 INFO L290 TraceCheckUtils]: 101: Hoare triple {72719#false} assume 259 == ~status~3; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L272 TraceCheckUtils]: 102: Hoare triple {72719#false} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 103: Hoare triple {72719#false} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 104: Hoare triple {72719#false} assume ~s~0 == ~MPR3~0; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 105: Hoare triple {72719#false} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 106: Hoare triple {72719#false} assume 0 == ~__BLAST_NONDET~13; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 107: Hoare triple {72719#false} #res := 0; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 108: Hoare triple {72719#false} assume true; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L284 TraceCheckUtils]: 109: Hoare quadruple {72719#false} {72719#false} #1194#return; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 110: Hoare triple {72719#false} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 111: Hoare triple {72719#false} assume ~status~3 >= 0; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 112: Hoare triple {72719#false} assume !(~myStatus~0 >= 0); {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 113: Hoare triple {72719#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L272 TraceCheckUtils]: 114: Hoare triple {72719#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 115: Hoare triple {72719#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 116: Hoare triple {72719#false} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 117: Hoare triple {72719#false} assume true; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L284 TraceCheckUtils]: 118: Hoare quadruple {72719#false} {72719#false} #1196#return; {72719#false} is VALID [2022-04-27 15:20:46,986 INFO L290 TraceCheckUtils]: 119: Hoare triple {72719#false} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 120: Hoare triple {72719#false} assume true; {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L284 TraceCheckUtils]: 121: Hoare quadruple {72719#false} {72718#true} #1230#return; {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 122: Hoare triple {72719#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 123: Hoare triple {72719#false} assume 0 != ~we_should_unload~0; {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 124: Hoare triple {72719#false} assume !(1 == ~pended~0); {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 125: Hoare triple {72719#false} assume !(1 == ~pended~0); {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 126: Hoare triple {72719#false} assume !(~s~0 == ~UNLOADED~0); {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 127: Hoare triple {72719#false} assume !(-1 == ~status~5); {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 128: Hoare triple {72719#false} assume ~s~0 != ~SKIP2~0; {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 129: Hoare triple {72719#false} assume ~s~0 != ~IPC~0; {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 130: Hoare triple {72719#false} assume !(~s~0 != ~DC~0); {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 131: Hoare triple {72719#false} assume !(1 == ~pended~0); {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 132: Hoare triple {72719#false} assume ~s~0 == ~DC~0; {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 133: Hoare triple {72719#false} assume 259 == ~status~5; {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L272 TraceCheckUtils]: 134: Hoare triple {72719#false} call errorFn(); {72719#false} is VALID [2022-04-27 15:20:46,987 INFO L290 TraceCheckUtils]: 135: Hoare triple {72719#false} assume !false; {72719#false} is VALID [2022-04-27 15:20:46,988 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:20:46,988 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-04-27 15:20:46,988 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [211295558] provided 1 perfect and 0 imperfect interpolant sequences [2022-04-27 15:20:46,988 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-04-27 15:20:46,988 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [15] total 17 [2022-04-27 15:20:46,988 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [629981293] [2022-04-27 15:20:46,988 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:20:46,988 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 25.0) internal successors, (100), 4 states have internal predecessors, (100), 2 states have call successors, (19), 2 states have call predecessors, (19), 3 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 136 [2022-04-27 15:20:46,989 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:20:46,989 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 4 states, 4 states have (on average 25.0) internal successors, (100), 4 states have internal predecessors, (100), 2 states have call successors, (19), 2 states have call predecessors, (19), 3 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2022-04-27 15:20:47,072 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 136 edges. 136 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:20:47,073 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-04-27 15:20:47,073 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:20:47,073 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-04-27 15:20:47,073 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=57, Invalid=215, Unknown=0, NotChecked=0, Total=272 [2022-04-27 15:20:47,073 INFO L87 Difference]: Start difference. First operand 233 states and 248 transitions. Second operand has 4 states, 4 states have (on average 25.0) internal successors, (100), 4 states have internal predecessors, (100), 2 states have call successors, (19), 2 states have call predecessors, (19), 3 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2022-04-27 15:20:53,351 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:20:53,351 INFO L93 Difference]: Finished difference Result 361 states and 386 transitions. [2022-04-27 15:20:53,351 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-04-27 15:20:53,351 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 25.0) internal successors, (100), 4 states have internal predecessors, (100), 2 states have call successors, (19), 2 states have call predecessors, (19), 3 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 136 [2022-04-27 15:20:53,351 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:20:53,351 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4 states, 4 states have (on average 25.0) internal successors, (100), 4 states have internal predecessors, (100), 2 states have call successors, (19), 2 states have call predecessors, (19), 3 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2022-04-27 15:20:53,352 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 228 transitions. [2022-04-27 15:20:53,352 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4 states, 4 states have (on average 25.0) internal successors, (100), 4 states have internal predecessors, (100), 2 states have call successors, (19), 2 states have call predecessors, (19), 3 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2022-04-27 15:20:53,354 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 228 transitions. [2022-04-27 15:20:53,354 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 4 states and 228 transitions. [2022-04-27 15:20:53,494 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 228 edges. 228 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:20:53,497 INFO L225 Difference]: With dead ends: 361 [2022-04-27 15:20:53,497 INFO L226 Difference]: Without dead ends: 235 [2022-04-27 15:20:53,498 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 175 GetRequests, 159 SyntacticMatches, 0 SemanticMatches, 16 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 42 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=61, Invalid=245, Unknown=0, NotChecked=0, Total=306 [2022-04-27 15:20:53,498 INFO L413 NwaCegarLoop]: 144 mSDtfsCounter, 3 mSDsluCounter, 286 mSDsCounter, 0 mSdLazyCounter, 10 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 430 SdHoareTripleChecker+Invalid, 11 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 10 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-04-27 15:20:53,498 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 430 Invalid, 11 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 10 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-04-27 15:20:53,498 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 235 states. [2022-04-27 15:20:53,704 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 235 to 235. [2022-04-27 15:20:53,704 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:20:53,704 INFO L82 GeneralOperation]: Start isEquivalent. First operand 235 states. Second operand has 235 states, 175 states have (on average 1.0857142857142856) internal successors, (190), 175 states have internal predecessors, (190), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:20:53,704 INFO L74 IsIncluded]: Start isIncluded. First operand 235 states. Second operand has 235 states, 175 states have (on average 1.0857142857142856) internal successors, (190), 175 states have internal predecessors, (190), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:20:53,705 INFO L87 Difference]: Start difference. First operand 235 states. Second operand has 235 states, 175 states have (on average 1.0857142857142856) internal successors, (190), 175 states have internal predecessors, (190), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:20:53,707 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:20:53,707 INFO L93 Difference]: Finished difference Result 235 states and 250 transitions. [2022-04-27 15:20:53,707 INFO L276 IsEmpty]: Start isEmpty. Operand 235 states and 250 transitions. [2022-04-27 15:20:53,707 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:20:53,707 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:20:53,708 INFO L74 IsIncluded]: Start isIncluded. First operand has 235 states, 175 states have (on average 1.0857142857142856) internal successors, (190), 175 states have internal predecessors, (190), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) Second operand 235 states. [2022-04-27 15:20:53,708 INFO L87 Difference]: Start difference. First operand has 235 states, 175 states have (on average 1.0857142857142856) internal successors, (190), 175 states have internal predecessors, (190), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) Second operand 235 states. [2022-04-27 15:20:53,710 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:20:53,710 INFO L93 Difference]: Finished difference Result 235 states and 250 transitions. [2022-04-27 15:20:53,710 INFO L276 IsEmpty]: Start isEmpty. Operand 235 states and 250 transitions. [2022-04-27 15:20:53,710 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:20:53,710 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:20:53,711 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:20:53,711 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:20:53,711 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 235 states, 175 states have (on average 1.0857142857142856) internal successors, (190), 175 states have internal predecessors, (190), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:20:53,713 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 235 states to 235 states and 250 transitions. [2022-04-27 15:20:53,714 INFO L78 Accepts]: Start accepts. Automaton has 235 states and 250 transitions. Word has length 136 [2022-04-27 15:20:53,714 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:20:53,714 INFO L495 AbstractCegarLoop]: Abstraction has 235 states and 250 transitions. [2022-04-27 15:20:53,714 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 25.0) internal successors, (100), 4 states have internal predecessors, (100), 2 states have call successors, (19), 2 states have call predecessors, (19), 3 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2022-04-27 15:20:53,714 INFO L276 IsEmpty]: Start isEmpty. Operand 235 states and 250 transitions. [2022-04-27 15:20:53,714 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 138 [2022-04-27 15:20:53,714 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:20:53,715 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:20:53,746 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-04-27 15:20:53,915 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable38,4 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-04-27 15:20:53,915 INFO L420 AbstractCegarLoop]: === Iteration 40 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:20:53,915 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:20:53,916 INFO L85 PathProgramCache]: Analyzing trace with hash -1917947804, now seen corresponding path program 1 times [2022-04-27 15:20:53,916 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:20:53,916 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [769350841] [2022-04-27 15:20:53,916 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:20:53,916 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:20:54,222 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,301 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:20:54,302 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,306 INFO L290 TraceCheckUtils]: 0: Hoare triple {74729#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {74621#true} is VALID [2022-04-27 15:20:54,306 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,306 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {74621#true} {74621#true} #1270#return; {74621#true} is VALID [2022-04-27 15:20:54,326 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:20:54,327 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,331 INFO L290 TraceCheckUtils]: 0: Hoare triple {74730#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {74621#true} is VALID [2022-04-27 15:20:54,331 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,331 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {74621#true} {74621#true} #1216#return; {74621#true} is VALID [2022-04-27 15:20:54,337 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:20:54,342 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,348 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:20:54,348 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,352 INFO L290 TraceCheckUtils]: 0: Hoare triple {74621#true} ~cond := #in~cond; {74621#true} is VALID [2022-04-27 15:20:54,352 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume !(0 == ~cond); {74621#true} is VALID [2022-04-27 15:20:54,352 INFO L290 TraceCheckUtils]: 2: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,352 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {74621#true} {74621#true} #1254#return; {74621#true} is VALID [2022-04-27 15:20:54,352 INFO L290 TraceCheckUtils]: 0: Hoare triple {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {74621#true} is VALID [2022-04-27 15:20:54,352 INFO L272 TraceCheckUtils]: 1: Hoare triple {74621#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {74621#true} is VALID [2022-04-27 15:20:54,353 INFO L290 TraceCheckUtils]: 2: Hoare triple {74621#true} ~cond := #in~cond; {74621#true} is VALID [2022-04-27 15:20:54,353 INFO L290 TraceCheckUtils]: 3: Hoare triple {74621#true} assume !(0 == ~cond); {74621#true} is VALID [2022-04-27 15:20:54,353 INFO L290 TraceCheckUtils]: 4: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,353 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {74621#true} {74621#true} #1254#return; {74621#true} is VALID [2022-04-27 15:20:54,353 INFO L290 TraceCheckUtils]: 6: Hoare triple {74621#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {74621#true} is VALID [2022-04-27 15:20:54,353 INFO L290 TraceCheckUtils]: 7: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,353 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {74621#true} {74621#true} #1218#return; {74621#true} is VALID [2022-04-27 15:20:54,361 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:20:54,394 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,405 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:20:54,408 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,413 INFO L290 TraceCheckUtils]: 0: Hoare triple {74736#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {74621#true} is VALID [2022-04-27 15:20:54,413 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~5; {74621#true} is VALID [2022-04-27 15:20:54,413 INFO L290 TraceCheckUtils]: 2: Hoare triple {74621#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {74621#true} is VALID [2022-04-27 15:20:54,413 INFO L290 TraceCheckUtils]: 3: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,413 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {74621#true} {74621#true} #1176#return; {74621#true} is VALID [2022-04-27 15:20:54,413 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:20:54,417 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,513 INFO L290 TraceCheckUtils]: 0: Hoare triple {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {74752#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:20:54,514 INFO L290 TraceCheckUtils]: 1: Hoare triple {74752#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {74753#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} is VALID [2022-04-27 15:20:54,515 INFO L290 TraceCheckUtils]: 2: Hoare triple {74753#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {74754#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:20:54,515 INFO L290 TraceCheckUtils]: 3: Hoare triple {74754#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {74754#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:20:54,516 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {74754#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {74621#true} #1178#return; {74622#false} is VALID [2022-04-27 15:20:54,516 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:20:54,517 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,523 INFO L290 TraceCheckUtils]: 0: Hoare triple {74621#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {74621#true} is VALID [2022-04-27 15:20:54,523 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~2; {74621#true} is VALID [2022-04-27 15:20:54,523 INFO L290 TraceCheckUtils]: 2: Hoare triple {74621#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {74621#true} is VALID [2022-04-27 15:20:54,523 INFO L290 TraceCheckUtils]: 3: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,523 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {74621#true} {74622#false} #1180#return; {74622#false} is VALID [2022-04-27 15:20:54,524 INFO L290 TraceCheckUtils]: 0: Hoare triple {74736#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {74621#true} is VALID [2022-04-27 15:20:54,525 INFO L272 TraceCheckUtils]: 1: Hoare triple {74621#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {74736#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:20:54,525 INFO L290 TraceCheckUtils]: 2: Hoare triple {74736#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {74621#true} is VALID [2022-04-27 15:20:54,525 INFO L290 TraceCheckUtils]: 3: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~5; {74621#true} is VALID [2022-04-27 15:20:54,525 INFO L290 TraceCheckUtils]: 4: Hoare triple {74621#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {74621#true} is VALID [2022-04-27 15:20:54,525 INFO L290 TraceCheckUtils]: 5: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,525 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {74621#true} {74621#true} #1176#return; {74621#true} is VALID [2022-04-27 15:20:54,525 INFO L290 TraceCheckUtils]: 7: Hoare triple {74621#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {74621#true} is VALID [2022-04-27 15:20:54,525 INFO L290 TraceCheckUtils]: 8: Hoare triple {74621#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {74621#true} is VALID [2022-04-27 15:20:54,526 INFO L272 TraceCheckUtils]: 9: Hoare triple {74621#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:54,527 INFO L290 TraceCheckUtils]: 10: Hoare triple {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {74752#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:20:54,528 INFO L290 TraceCheckUtils]: 11: Hoare triple {74752#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {74753#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} is VALID [2022-04-27 15:20:54,529 INFO L290 TraceCheckUtils]: 12: Hoare triple {74753#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {74754#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:20:54,529 INFO L290 TraceCheckUtils]: 13: Hoare triple {74754#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {74754#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:20:54,530 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {74754#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {74621#true} #1178#return; {74622#false} is VALID [2022-04-27 15:20:54,530 INFO L290 TraceCheckUtils]: 15: Hoare triple {74622#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {74622#false} is VALID [2022-04-27 15:20:54,530 INFO L272 TraceCheckUtils]: 16: Hoare triple {74622#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {74621#true} is VALID [2022-04-27 15:20:54,530 INFO L290 TraceCheckUtils]: 17: Hoare triple {74621#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {74621#true} is VALID [2022-04-27 15:20:54,530 INFO L290 TraceCheckUtils]: 18: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~2; {74621#true} is VALID [2022-04-27 15:20:54,530 INFO L290 TraceCheckUtils]: 19: Hoare triple {74621#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {74621#true} is VALID [2022-04-27 15:20:54,530 INFO L290 TraceCheckUtils]: 20: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,530 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {74621#true} {74622#false} #1180#return; {74622#false} is VALID [2022-04-27 15:20:54,531 INFO L290 TraceCheckUtils]: 22: Hoare triple {74622#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {74622#false} is VALID [2022-04-27 15:20:54,531 INFO L290 TraceCheckUtils]: 23: Hoare triple {74622#false} assume true; {74622#false} is VALID [2022-04-27 15:20:54,531 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {74622#false} {74621#true} #1220#return; {74622#false} is VALID [2022-04-27 15:20:54,548 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:20:54,549 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,555 INFO L290 TraceCheckUtils]: 0: Hoare triple {74755#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {74621#true} is VALID [2022-04-27 15:20:54,555 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,555 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {74621#true} {74622#false} #1222#return; {74622#false} is VALID [2022-04-27 15:20:54,581 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 59 [2022-04-27 15:20:54,599 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,613 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2022-04-27 15:20:54,617 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,624 INFO L290 TraceCheckUtils]: 0: Hoare triple {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {74621#true} is VALID [2022-04-27 15:20:54,624 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {74621#true} is VALID [2022-04-27 15:20:54,624 INFO L290 TraceCheckUtils]: 2: Hoare triple {74621#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {74621#true} is VALID [2022-04-27 15:20:54,624 INFO L290 TraceCheckUtils]: 3: Hoare triple {74621#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {74621#true} is VALID [2022-04-27 15:20:54,625 INFO L290 TraceCheckUtils]: 4: Hoare triple {74621#true} assume #res.base == dest.base && #res.offset == dest.offset; {74621#true} is VALID [2022-04-27 15:20:54,625 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {74621#true} {74621#true} #1186#return; {74621#true} is VALID [2022-04-27 15:20:54,635 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2022-04-27 15:20:54,638 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,655 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:20:54,657 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,662 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:20:54,664 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,670 INFO L290 TraceCheckUtils]: 0: Hoare triple {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {74621#true} is VALID [2022-04-27 15:20:54,670 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,670 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {74621#true} {74621#true} #1174#return; {74621#true} is VALID [2022-04-27 15:20:54,670 INFO L290 TraceCheckUtils]: 0: Hoare triple {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {74621#true} is VALID [2022-04-27 15:20:54,671 INFO L272 TraceCheckUtils]: 1: Hoare triple {74621#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:54,671 INFO L290 TraceCheckUtils]: 2: Hoare triple {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {74621#true} is VALID [2022-04-27 15:20:54,671 INFO L290 TraceCheckUtils]: 3: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,671 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {74621#true} {74621#true} #1174#return; {74621#true} is VALID [2022-04-27 15:20:54,671 INFO L290 TraceCheckUtils]: 5: Hoare triple {74621#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {74621#true} is VALID [2022-04-27 15:20:54,671 INFO L290 TraceCheckUtils]: 6: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,671 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {74621#true} {74621#true} #1210#return; {74621#true} is VALID [2022-04-27 15:20:54,681 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:20:54,682 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,687 INFO L290 TraceCheckUtils]: 0: Hoare triple {74816#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {74621#true} is VALID [2022-04-27 15:20:54,688 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,688 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {74621#true} {74621#true} #1212#return; {74621#true} is VALID [2022-04-27 15:20:54,688 INFO L290 TraceCheckUtils]: 0: Hoare triple {74800#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {74621#true} is VALID [2022-04-27 15:20:54,688 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume 0 != ~compRegistered~0; {74621#true} is VALID [2022-04-27 15:20:54,689 INFO L272 TraceCheckUtils]: 2: Hoare triple {74621#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:54,689 INFO L290 TraceCheckUtils]: 3: Hoare triple {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {74621#true} is VALID [2022-04-27 15:20:54,689 INFO L272 TraceCheckUtils]: 4: Hoare triple {74621#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:54,689 INFO L290 TraceCheckUtils]: 5: Hoare triple {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {74621#true} is VALID [2022-04-27 15:20:54,689 INFO L290 TraceCheckUtils]: 6: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,689 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {74621#true} {74621#true} #1174#return; {74621#true} is VALID [2022-04-27 15:20:54,690 INFO L290 TraceCheckUtils]: 8: Hoare triple {74621#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {74621#true} is VALID [2022-04-27 15:20:54,690 INFO L290 TraceCheckUtils]: 9: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,690 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {74621#true} {74621#true} #1210#return; {74621#true} is VALID [2022-04-27 15:20:54,690 INFO L290 TraceCheckUtils]: 11: Hoare triple {74621#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {74621#true} is VALID [2022-04-27 15:20:54,690 INFO L290 TraceCheckUtils]: 12: Hoare triple {74621#true} assume -1073741802 == ~compRetStatus~0; {74621#true} is VALID [2022-04-27 15:20:54,690 INFO L272 TraceCheckUtils]: 13: Hoare triple {74621#true} call stubMoreProcessingRequired(); {74816#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:54,690 INFO L290 TraceCheckUtils]: 14: Hoare triple {74816#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {74621#true} is VALID [2022-04-27 15:20:54,690 INFO L290 TraceCheckUtils]: 15: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,690 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {74621#true} {74621#true} #1212#return; {74621#true} is VALID [2022-04-27 15:20:54,690 INFO L290 TraceCheckUtils]: 17: Hoare triple {74621#true} assume !(0 == ~__BLAST_NONDET~11); {74621#true} is VALID [2022-04-27 15:20:54,690 INFO L290 TraceCheckUtils]: 18: Hoare triple {74621#true} assume !(1 == ~__BLAST_NONDET~11); {74621#true} is VALID [2022-04-27 15:20:54,690 INFO L290 TraceCheckUtils]: 19: Hoare triple {74621#true} ~returnVal2~0 := 259; {74621#true} is VALID [2022-04-27 15:20:54,691 INFO L290 TraceCheckUtils]: 20: Hoare triple {74621#true} assume !(~s~0 == ~NP~0); {74621#true} is VALID [2022-04-27 15:20:54,691 INFO L290 TraceCheckUtils]: 21: Hoare triple {74621#true} assume ~s~0 == ~MPR1~0; {74621#true} is VALID [2022-04-27 15:20:54,691 INFO L290 TraceCheckUtils]: 22: Hoare triple {74621#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {74621#true} is VALID [2022-04-27 15:20:54,691 INFO L290 TraceCheckUtils]: 23: Hoare triple {74621#true} #res := ~returnVal2~0; {74621#true} is VALID [2022-04-27 15:20:54,691 INFO L290 TraceCheckUtils]: 24: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,691 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {74621#true} {74621#true} #1192#return; {74621#true} is VALID [2022-04-27 15:20:54,704 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 43 [2022-04-27 15:20:54,706 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,710 INFO L290 TraceCheckUtils]: 0: Hoare triple {74817#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {74621#true} is VALID [2022-04-27 15:20:54,711 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume ~s~0 == ~MPR3~0; {74621#true} is VALID [2022-04-27 15:20:54,711 INFO L290 TraceCheckUtils]: 2: Hoare triple {74621#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {74621#true} is VALID [2022-04-27 15:20:54,711 INFO L290 TraceCheckUtils]: 3: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~13; {74621#true} is VALID [2022-04-27 15:20:54,711 INFO L290 TraceCheckUtils]: 4: Hoare triple {74621#true} #res := 0; {74621#true} is VALID [2022-04-27 15:20:54,711 INFO L290 TraceCheckUtils]: 5: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,711 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {74621#true} {74621#true} #1194#return; {74621#true} is VALID [2022-04-27 15:20:54,711 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 55 [2022-04-27 15:20:54,712 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:54,715 INFO L290 TraceCheckUtils]: 0: Hoare triple {74816#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {74621#true} is VALID [2022-04-27 15:20:54,715 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {74621#true} is VALID [2022-04-27 15:20:54,715 INFO L290 TraceCheckUtils]: 2: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,715 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {74621#true} {74621#true} #1196#return; {74621#true} is VALID [2022-04-27 15:20:54,716 INFO L290 TraceCheckUtils]: 0: Hoare triple {74756#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {74621#true} is VALID [2022-04-27 15:20:54,716 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {74621#true} is VALID [2022-04-27 15:20:54,716 INFO L290 TraceCheckUtils]: 2: Hoare triple {74621#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {74621#true} is VALID [2022-04-27 15:20:54,717 INFO L272 TraceCheckUtils]: 3: Hoare triple {74621#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:54,717 INFO L290 TraceCheckUtils]: 4: Hoare triple {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {74621#true} is VALID [2022-04-27 15:20:54,717 INFO L290 TraceCheckUtils]: 5: Hoare triple {74621#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {74621#true} is VALID [2022-04-27 15:20:54,717 INFO L290 TraceCheckUtils]: 6: Hoare triple {74621#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {74621#true} is VALID [2022-04-27 15:20:54,717 INFO L290 TraceCheckUtils]: 7: Hoare triple {74621#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {74621#true} is VALID [2022-04-27 15:20:54,717 INFO L290 TraceCheckUtils]: 8: Hoare triple {74621#true} assume #res.base == dest.base && #res.offset == dest.offset; {74621#true} is VALID [2022-04-27 15:20:54,717 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {74621#true} {74621#true} #1186#return; {74621#true} is VALID [2022-04-27 15:20:54,717 INFO L290 TraceCheckUtils]: 10: Hoare triple {74621#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {74621#true} is VALID [2022-04-27 15:20:54,717 INFO L290 TraceCheckUtils]: 11: Hoare triple {74621#true} assume !(~s~0 != ~NP~0); {74621#true} is VALID [2022-04-27 15:20:54,717 INFO L290 TraceCheckUtils]: 12: Hoare triple {74621#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {74621#true} is VALID [2022-04-27 15:20:54,717 INFO L290 TraceCheckUtils]: 13: Hoare triple {74621#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {74621#true} is VALID [2022-04-27 15:20:54,718 INFO L272 TraceCheckUtils]: 14: Hoare triple {74621#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {74800#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:54,718 INFO L290 TraceCheckUtils]: 15: Hoare triple {74800#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {74621#true} is VALID [2022-04-27 15:20:54,718 INFO L290 TraceCheckUtils]: 16: Hoare triple {74621#true} assume 0 != ~compRegistered~0; {74621#true} is VALID [2022-04-27 15:20:54,719 INFO L272 TraceCheckUtils]: 17: Hoare triple {74621#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:54,719 INFO L290 TraceCheckUtils]: 18: Hoare triple {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {74621#true} is VALID [2022-04-27 15:20:54,719 INFO L272 TraceCheckUtils]: 19: Hoare triple {74621#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:54,719 INFO L290 TraceCheckUtils]: 20: Hoare triple {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {74621#true} is VALID [2022-04-27 15:20:54,720 INFO L290 TraceCheckUtils]: 21: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,720 INFO L284 TraceCheckUtils]: 22: Hoare quadruple {74621#true} {74621#true} #1174#return; {74621#true} is VALID [2022-04-27 15:20:54,720 INFO L290 TraceCheckUtils]: 23: Hoare triple {74621#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {74621#true} is VALID [2022-04-27 15:20:54,720 INFO L290 TraceCheckUtils]: 24: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,720 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {74621#true} {74621#true} #1210#return; {74621#true} is VALID [2022-04-27 15:20:54,720 INFO L290 TraceCheckUtils]: 26: Hoare triple {74621#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {74621#true} is VALID [2022-04-27 15:20:54,720 INFO L290 TraceCheckUtils]: 27: Hoare triple {74621#true} assume -1073741802 == ~compRetStatus~0; {74621#true} is VALID [2022-04-27 15:20:54,720 INFO L272 TraceCheckUtils]: 28: Hoare triple {74621#true} call stubMoreProcessingRequired(); {74816#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:54,720 INFO L290 TraceCheckUtils]: 29: Hoare triple {74816#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {74621#true} is VALID [2022-04-27 15:20:54,720 INFO L290 TraceCheckUtils]: 30: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,720 INFO L284 TraceCheckUtils]: 31: Hoare quadruple {74621#true} {74621#true} #1212#return; {74621#true} is VALID [2022-04-27 15:20:54,720 INFO L290 TraceCheckUtils]: 32: Hoare triple {74621#true} assume !(0 == ~__BLAST_NONDET~11); {74621#true} is VALID [2022-04-27 15:20:54,720 INFO L290 TraceCheckUtils]: 33: Hoare triple {74621#true} assume !(1 == ~__BLAST_NONDET~11); {74621#true} is VALID [2022-04-27 15:20:54,721 INFO L290 TraceCheckUtils]: 34: Hoare triple {74621#true} ~returnVal2~0 := 259; {74621#true} is VALID [2022-04-27 15:20:54,721 INFO L290 TraceCheckUtils]: 35: Hoare triple {74621#true} assume !(~s~0 == ~NP~0); {74621#true} is VALID [2022-04-27 15:20:54,721 INFO L290 TraceCheckUtils]: 36: Hoare triple {74621#true} assume ~s~0 == ~MPR1~0; {74621#true} is VALID [2022-04-27 15:20:54,721 INFO L290 TraceCheckUtils]: 37: Hoare triple {74621#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {74621#true} is VALID [2022-04-27 15:20:54,721 INFO L290 TraceCheckUtils]: 38: Hoare triple {74621#true} #res := ~returnVal2~0; {74621#true} is VALID [2022-04-27 15:20:54,721 INFO L290 TraceCheckUtils]: 39: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,721 INFO L284 TraceCheckUtils]: 40: Hoare quadruple {74621#true} {74621#true} #1192#return; {74621#true} is VALID [2022-04-27 15:20:54,721 INFO L290 TraceCheckUtils]: 41: Hoare triple {74621#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {74621#true} is VALID [2022-04-27 15:20:54,721 INFO L290 TraceCheckUtils]: 42: Hoare triple {74621#true} assume 259 == ~status~3; {74621#true} is VALID [2022-04-27 15:20:54,722 INFO L272 TraceCheckUtils]: 43: Hoare triple {74621#true} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {74817#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:54,722 INFO L290 TraceCheckUtils]: 44: Hoare triple {74817#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {74621#true} is VALID [2022-04-27 15:20:54,722 INFO L290 TraceCheckUtils]: 45: Hoare triple {74621#true} assume ~s~0 == ~MPR3~0; {74621#true} is VALID [2022-04-27 15:20:54,722 INFO L290 TraceCheckUtils]: 46: Hoare triple {74621#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {74621#true} is VALID [2022-04-27 15:20:54,722 INFO L290 TraceCheckUtils]: 47: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~13; {74621#true} is VALID [2022-04-27 15:20:54,722 INFO L290 TraceCheckUtils]: 48: Hoare triple {74621#true} #res := 0; {74621#true} is VALID [2022-04-27 15:20:54,722 INFO L290 TraceCheckUtils]: 49: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,722 INFO L284 TraceCheckUtils]: 50: Hoare quadruple {74621#true} {74621#true} #1194#return; {74621#true} is VALID [2022-04-27 15:20:54,722 INFO L290 TraceCheckUtils]: 51: Hoare triple {74621#true} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {74621#true} is VALID [2022-04-27 15:20:54,722 INFO L290 TraceCheckUtils]: 52: Hoare triple {74621#true} assume ~status~3 >= 0; {74621#true} is VALID [2022-04-27 15:20:54,722 INFO L290 TraceCheckUtils]: 53: Hoare triple {74621#true} assume !(~myStatus~0 >= 0); {74621#true} is VALID [2022-04-27 15:20:54,722 INFO L290 TraceCheckUtils]: 54: Hoare triple {74621#true} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {74621#true} is VALID [2022-04-27 15:20:54,723 INFO L272 TraceCheckUtils]: 55: Hoare triple {74621#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {74816#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:54,723 INFO L290 TraceCheckUtils]: 56: Hoare triple {74816#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {74621#true} is VALID [2022-04-27 15:20:54,723 INFO L290 TraceCheckUtils]: 57: Hoare triple {74621#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {74621#true} is VALID [2022-04-27 15:20:54,723 INFO L290 TraceCheckUtils]: 58: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,723 INFO L284 TraceCheckUtils]: 59: Hoare quadruple {74621#true} {74621#true} #1196#return; {74621#true} is VALID [2022-04-27 15:20:54,723 INFO L290 TraceCheckUtils]: 60: Hoare triple {74621#true} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {74621#true} is VALID [2022-04-27 15:20:54,723 INFO L290 TraceCheckUtils]: 61: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,723 INFO L284 TraceCheckUtils]: 62: Hoare quadruple {74621#true} {74622#false} #1230#return; {74622#false} is VALID [2022-04-27 15:20:54,724 INFO L272 TraceCheckUtils]: 0: Hoare triple {74621#true} call ULTIMATE.init(); {74729#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:20:54,725 INFO L290 TraceCheckUtils]: 1: Hoare triple {74729#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {74621#true} is VALID [2022-04-27 15:20:54,725 INFO L290 TraceCheckUtils]: 2: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,725 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {74621#true} {74621#true} #1270#return; {74621#true} is VALID [2022-04-27 15:20:54,725 INFO L272 TraceCheckUtils]: 4: Hoare triple {74621#true} call #t~ret213 := main(); {74621#true} is VALID [2022-04-27 15:20:54,725 INFO L290 TraceCheckUtils]: 5: Hoare triple {74621#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {74621#true} is VALID [2022-04-27 15:20:54,726 INFO L272 TraceCheckUtils]: 6: Hoare triple {74621#true} call _BLAST_init(); {74730#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:54,726 INFO L290 TraceCheckUtils]: 7: Hoare triple {74730#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {74621#true} is VALID [2022-04-27 15:20:54,726 INFO L290 TraceCheckUtils]: 8: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,726 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {74621#true} {74621#true} #1216#return; {74621#true} is VALID [2022-04-27 15:20:54,727 INFO L272 TraceCheckUtils]: 10: Hoare triple {74621#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:54,727 INFO L290 TraceCheckUtils]: 11: Hoare triple {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {74621#true} is VALID [2022-04-27 15:20:54,727 INFO L272 TraceCheckUtils]: 12: Hoare triple {74621#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {74621#true} is VALID [2022-04-27 15:20:54,727 INFO L290 TraceCheckUtils]: 13: Hoare triple {74621#true} ~cond := #in~cond; {74621#true} is VALID [2022-04-27 15:20:54,727 INFO L290 TraceCheckUtils]: 14: Hoare triple {74621#true} assume !(0 == ~cond); {74621#true} is VALID [2022-04-27 15:20:54,727 INFO L290 TraceCheckUtils]: 15: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,727 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {74621#true} {74621#true} #1254#return; {74621#true} is VALID [2022-04-27 15:20:54,727 INFO L290 TraceCheckUtils]: 17: Hoare triple {74621#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {74621#true} is VALID [2022-04-27 15:20:54,727 INFO L290 TraceCheckUtils]: 18: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,727 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {74621#true} {74621#true} #1218#return; {74621#true} is VALID [2022-04-27 15:20:54,727 INFO L290 TraceCheckUtils]: 20: Hoare triple {74621#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {74621#true} is VALID [2022-04-27 15:20:54,727 INFO L290 TraceCheckUtils]: 21: Hoare triple {74621#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {74621#true} is VALID [2022-04-27 15:20:54,727 INFO L290 TraceCheckUtils]: 22: Hoare triple {74621#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {74621#true} is VALID [2022-04-27 15:20:54,728 INFO L272 TraceCheckUtils]: 23: Hoare triple {74621#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {74736#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:20:54,728 INFO L290 TraceCheckUtils]: 24: Hoare triple {74736#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {74621#true} is VALID [2022-04-27 15:20:54,729 INFO L272 TraceCheckUtils]: 25: Hoare triple {74621#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {74736#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:20:54,729 INFO L290 TraceCheckUtils]: 26: Hoare triple {74736#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {74621#true} is VALID [2022-04-27 15:20:54,729 INFO L290 TraceCheckUtils]: 27: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~5; {74621#true} is VALID [2022-04-27 15:20:54,729 INFO L290 TraceCheckUtils]: 28: Hoare triple {74621#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {74621#true} is VALID [2022-04-27 15:20:54,729 INFO L290 TraceCheckUtils]: 29: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,729 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {74621#true} {74621#true} #1176#return; {74621#true} is VALID [2022-04-27 15:20:54,729 INFO L290 TraceCheckUtils]: 31: Hoare triple {74621#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {74621#true} is VALID [2022-04-27 15:20:54,730 INFO L290 TraceCheckUtils]: 32: Hoare triple {74621#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {74621#true} is VALID [2022-04-27 15:20:54,730 INFO L272 TraceCheckUtils]: 33: Hoare triple {74621#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:54,730 INFO L290 TraceCheckUtils]: 34: Hoare triple {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {74752#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:20:54,732 INFO L290 TraceCheckUtils]: 35: Hoare triple {74752#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {74753#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} is VALID [2022-04-27 15:20:54,732 INFO L290 TraceCheckUtils]: 36: Hoare triple {74753#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {74754#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:20:54,733 INFO L290 TraceCheckUtils]: 37: Hoare triple {74754#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {74754#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:20:54,733 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {74754#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {74621#true} #1178#return; {74622#false} is VALID [2022-04-27 15:20:54,733 INFO L290 TraceCheckUtils]: 39: Hoare triple {74622#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {74622#false} is VALID [2022-04-27 15:20:54,734 INFO L272 TraceCheckUtils]: 40: Hoare triple {74622#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {74621#true} is VALID [2022-04-27 15:20:54,734 INFO L290 TraceCheckUtils]: 41: Hoare triple {74621#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {74621#true} is VALID [2022-04-27 15:20:54,734 INFO L290 TraceCheckUtils]: 42: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~2; {74621#true} is VALID [2022-04-27 15:20:54,734 INFO L290 TraceCheckUtils]: 43: Hoare triple {74621#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {74621#true} is VALID [2022-04-27 15:20:54,734 INFO L290 TraceCheckUtils]: 44: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,734 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {74621#true} {74622#false} #1180#return; {74622#false} is VALID [2022-04-27 15:20:54,734 INFO L290 TraceCheckUtils]: 46: Hoare triple {74622#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {74622#false} is VALID [2022-04-27 15:20:54,734 INFO L290 TraceCheckUtils]: 47: Hoare triple {74622#false} assume true; {74622#false} is VALID [2022-04-27 15:20:54,734 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {74622#false} {74621#true} #1220#return; {74622#false} is VALID [2022-04-27 15:20:54,734 INFO L290 TraceCheckUtils]: 49: Hoare triple {74622#false} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {74622#false} is VALID [2022-04-27 15:20:54,734 INFO L272 TraceCheckUtils]: 50: Hoare triple {74622#false} call stub_driver_init(); {74755#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:54,734 INFO L290 TraceCheckUtils]: 51: Hoare triple {74755#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {74621#true} is VALID [2022-04-27 15:20:54,734 INFO L290 TraceCheckUtils]: 52: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,734 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {74621#true} {74622#false} #1222#return; {74622#false} is VALID [2022-04-27 15:20:54,734 INFO L290 TraceCheckUtils]: 54: Hoare triple {74622#false} assume !!(~status~5 >= 0); {74622#false} is VALID [2022-04-27 15:20:54,734 INFO L290 TraceCheckUtils]: 55: Hoare triple {74622#false} assume !(0 == ~__BLAST_NONDET~0); {74622#false} is VALID [2022-04-27 15:20:54,734 INFO L290 TraceCheckUtils]: 56: Hoare triple {74622#false} assume !(1 == ~__BLAST_NONDET~0); {74622#false} is VALID [2022-04-27 15:20:54,735 INFO L290 TraceCheckUtils]: 57: Hoare triple {74622#false} assume !(2 == ~__BLAST_NONDET~0); {74622#false} is VALID [2022-04-27 15:20:54,735 INFO L290 TraceCheckUtils]: 58: Hoare triple {74622#false} assume 3 == ~__BLAST_NONDET~0; {74622#false} is VALID [2022-04-27 15:20:54,735 INFO L272 TraceCheckUtils]: 59: Hoare triple {74622#false} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {74756#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:54,735 INFO L290 TraceCheckUtils]: 60: Hoare triple {74756#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {74621#true} is VALID [2022-04-27 15:20:54,735 INFO L290 TraceCheckUtils]: 61: Hoare triple {74621#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {74621#true} is VALID [2022-04-27 15:20:54,735 INFO L290 TraceCheckUtils]: 62: Hoare triple {74621#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {74621#true} is VALID [2022-04-27 15:20:54,736 INFO L272 TraceCheckUtils]: 63: Hoare triple {74621#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:20:54,736 INFO L290 TraceCheckUtils]: 64: Hoare triple {74731#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {74621#true} is VALID [2022-04-27 15:20:54,736 INFO L290 TraceCheckUtils]: 65: Hoare triple {74621#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {74621#true} is VALID [2022-04-27 15:20:54,736 INFO L290 TraceCheckUtils]: 66: Hoare triple {74621#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {74621#true} is VALID [2022-04-27 15:20:54,736 INFO L290 TraceCheckUtils]: 67: Hoare triple {74621#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {74621#true} is VALID [2022-04-27 15:20:54,736 INFO L290 TraceCheckUtils]: 68: Hoare triple {74621#true} assume #res.base == dest.base && #res.offset == dest.offset; {74621#true} is VALID [2022-04-27 15:20:54,736 INFO L284 TraceCheckUtils]: 69: Hoare quadruple {74621#true} {74621#true} #1186#return; {74621#true} is VALID [2022-04-27 15:20:54,736 INFO L290 TraceCheckUtils]: 70: Hoare triple {74621#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {74621#true} is VALID [2022-04-27 15:20:54,736 INFO L290 TraceCheckUtils]: 71: Hoare triple {74621#true} assume !(~s~0 != ~NP~0); {74621#true} is VALID [2022-04-27 15:20:54,736 INFO L290 TraceCheckUtils]: 72: Hoare triple {74621#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {74621#true} is VALID [2022-04-27 15:20:54,736 INFO L290 TraceCheckUtils]: 73: Hoare triple {74621#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {74621#true} is VALID [2022-04-27 15:20:54,737 INFO L272 TraceCheckUtils]: 74: Hoare triple {74621#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {74800#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:54,737 INFO L290 TraceCheckUtils]: 75: Hoare triple {74800#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {74621#true} is VALID [2022-04-27 15:20:54,737 INFO L290 TraceCheckUtils]: 76: Hoare triple {74621#true} assume 0 != ~compRegistered~0; {74621#true} is VALID [2022-04-27 15:20:54,738 INFO L272 TraceCheckUtils]: 77: Hoare triple {74621#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:54,738 INFO L290 TraceCheckUtils]: 78: Hoare triple {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {74621#true} is VALID [2022-04-27 15:20:54,738 INFO L272 TraceCheckUtils]: 79: Hoare triple {74621#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:20:54,738 INFO L290 TraceCheckUtils]: 80: Hoare triple {74812#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {74621#true} is VALID [2022-04-27 15:20:54,739 INFO L290 TraceCheckUtils]: 81: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,739 INFO L284 TraceCheckUtils]: 82: Hoare quadruple {74621#true} {74621#true} #1174#return; {74621#true} is VALID [2022-04-27 15:20:54,739 INFO L290 TraceCheckUtils]: 83: Hoare triple {74621#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {74621#true} is VALID [2022-04-27 15:20:54,739 INFO L290 TraceCheckUtils]: 84: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,739 INFO L284 TraceCheckUtils]: 85: Hoare quadruple {74621#true} {74621#true} #1210#return; {74621#true} is VALID [2022-04-27 15:20:54,739 INFO L290 TraceCheckUtils]: 86: Hoare triple {74621#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {74621#true} is VALID [2022-04-27 15:20:54,739 INFO L290 TraceCheckUtils]: 87: Hoare triple {74621#true} assume -1073741802 == ~compRetStatus~0; {74621#true} is VALID [2022-04-27 15:20:54,739 INFO L272 TraceCheckUtils]: 88: Hoare triple {74621#true} call stubMoreProcessingRequired(); {74816#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:54,739 INFO L290 TraceCheckUtils]: 89: Hoare triple {74816#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {74621#true} is VALID [2022-04-27 15:20:54,739 INFO L290 TraceCheckUtils]: 90: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,739 INFO L284 TraceCheckUtils]: 91: Hoare quadruple {74621#true} {74621#true} #1212#return; {74621#true} is VALID [2022-04-27 15:20:54,739 INFO L290 TraceCheckUtils]: 92: Hoare triple {74621#true} assume !(0 == ~__BLAST_NONDET~11); {74621#true} is VALID [2022-04-27 15:20:54,739 INFO L290 TraceCheckUtils]: 93: Hoare triple {74621#true} assume !(1 == ~__BLAST_NONDET~11); {74621#true} is VALID [2022-04-27 15:20:54,740 INFO L290 TraceCheckUtils]: 94: Hoare triple {74621#true} ~returnVal2~0 := 259; {74621#true} is VALID [2022-04-27 15:20:54,740 INFO L290 TraceCheckUtils]: 95: Hoare triple {74621#true} assume !(~s~0 == ~NP~0); {74621#true} is VALID [2022-04-27 15:20:54,740 INFO L290 TraceCheckUtils]: 96: Hoare triple {74621#true} assume ~s~0 == ~MPR1~0; {74621#true} is VALID [2022-04-27 15:20:54,740 INFO L290 TraceCheckUtils]: 97: Hoare triple {74621#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {74621#true} is VALID [2022-04-27 15:20:54,740 INFO L290 TraceCheckUtils]: 98: Hoare triple {74621#true} #res := ~returnVal2~0; {74621#true} is VALID [2022-04-27 15:20:54,740 INFO L290 TraceCheckUtils]: 99: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,740 INFO L284 TraceCheckUtils]: 100: Hoare quadruple {74621#true} {74621#true} #1192#return; {74621#true} is VALID [2022-04-27 15:20:54,740 INFO L290 TraceCheckUtils]: 101: Hoare triple {74621#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {74621#true} is VALID [2022-04-27 15:20:54,740 INFO L290 TraceCheckUtils]: 102: Hoare triple {74621#true} assume 259 == ~status~3; {74621#true} is VALID [2022-04-27 15:20:54,741 INFO L272 TraceCheckUtils]: 103: Hoare triple {74621#true} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {74817#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:20:54,741 INFO L290 TraceCheckUtils]: 104: Hoare triple {74817#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {74621#true} is VALID [2022-04-27 15:20:54,741 INFO L290 TraceCheckUtils]: 105: Hoare triple {74621#true} assume ~s~0 == ~MPR3~0; {74621#true} is VALID [2022-04-27 15:20:54,741 INFO L290 TraceCheckUtils]: 106: Hoare triple {74621#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {74621#true} is VALID [2022-04-27 15:20:54,741 INFO L290 TraceCheckUtils]: 107: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~13; {74621#true} is VALID [2022-04-27 15:20:54,741 INFO L290 TraceCheckUtils]: 108: Hoare triple {74621#true} #res := 0; {74621#true} is VALID [2022-04-27 15:20:54,741 INFO L290 TraceCheckUtils]: 109: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,741 INFO L284 TraceCheckUtils]: 110: Hoare quadruple {74621#true} {74621#true} #1194#return; {74621#true} is VALID [2022-04-27 15:20:54,741 INFO L290 TraceCheckUtils]: 111: Hoare triple {74621#true} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {74621#true} is VALID [2022-04-27 15:20:54,741 INFO L290 TraceCheckUtils]: 112: Hoare triple {74621#true} assume ~status~3 >= 0; {74621#true} is VALID [2022-04-27 15:20:54,741 INFO L290 TraceCheckUtils]: 113: Hoare triple {74621#true} assume !(~myStatus~0 >= 0); {74621#true} is VALID [2022-04-27 15:20:54,741 INFO L290 TraceCheckUtils]: 114: Hoare triple {74621#true} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {74621#true} is VALID [2022-04-27 15:20:54,742 INFO L272 TraceCheckUtils]: 115: Hoare triple {74621#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {74816#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:20:54,742 INFO L290 TraceCheckUtils]: 116: Hoare triple {74816#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {74621#true} is VALID [2022-04-27 15:20:54,742 INFO L290 TraceCheckUtils]: 117: Hoare triple {74621#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {74621#true} is VALID [2022-04-27 15:20:54,742 INFO L290 TraceCheckUtils]: 118: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,742 INFO L284 TraceCheckUtils]: 119: Hoare quadruple {74621#true} {74621#true} #1196#return; {74621#true} is VALID [2022-04-27 15:20:54,742 INFO L290 TraceCheckUtils]: 120: Hoare triple {74621#true} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {74621#true} is VALID [2022-04-27 15:20:54,742 INFO L290 TraceCheckUtils]: 121: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:54,742 INFO L284 TraceCheckUtils]: 122: Hoare quadruple {74621#true} {74622#false} #1230#return; {74622#false} is VALID [2022-04-27 15:20:54,742 INFO L290 TraceCheckUtils]: 123: Hoare triple {74622#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {74622#false} is VALID [2022-04-27 15:20:54,742 INFO L290 TraceCheckUtils]: 124: Hoare triple {74622#false} assume 0 != ~we_should_unload~0; {74622#false} is VALID [2022-04-27 15:20:54,742 INFO L290 TraceCheckUtils]: 125: Hoare triple {74622#false} assume !(1 == ~pended~0); {74622#false} is VALID [2022-04-27 15:20:54,742 INFO L290 TraceCheckUtils]: 126: Hoare triple {74622#false} assume !(1 == ~pended~0); {74622#false} is VALID [2022-04-27 15:20:54,742 INFO L290 TraceCheckUtils]: 127: Hoare triple {74622#false} assume !(~s~0 == ~UNLOADED~0); {74622#false} is VALID [2022-04-27 15:20:54,743 INFO L290 TraceCheckUtils]: 128: Hoare triple {74622#false} assume !(-1 == ~status~5); {74622#false} is VALID [2022-04-27 15:20:54,743 INFO L290 TraceCheckUtils]: 129: Hoare triple {74622#false} assume ~s~0 != ~SKIP2~0; {74622#false} is VALID [2022-04-27 15:20:54,743 INFO L290 TraceCheckUtils]: 130: Hoare triple {74622#false} assume ~s~0 != ~IPC~0; {74622#false} is VALID [2022-04-27 15:20:54,743 INFO L290 TraceCheckUtils]: 131: Hoare triple {74622#false} assume !(~s~0 != ~DC~0); {74622#false} is VALID [2022-04-27 15:20:54,743 INFO L290 TraceCheckUtils]: 132: Hoare triple {74622#false} assume !(1 == ~pended~0); {74622#false} is VALID [2022-04-27 15:20:54,743 INFO L290 TraceCheckUtils]: 133: Hoare triple {74622#false} assume ~s~0 == ~DC~0; {74622#false} is VALID [2022-04-27 15:20:54,743 INFO L290 TraceCheckUtils]: 134: Hoare triple {74622#false} assume 259 == ~status~5; {74622#false} is VALID [2022-04-27 15:20:54,743 INFO L272 TraceCheckUtils]: 135: Hoare triple {74622#false} call errorFn(); {74622#false} is VALID [2022-04-27 15:20:54,743 INFO L290 TraceCheckUtils]: 136: Hoare triple {74622#false} assume !false; {74622#false} is VALID [2022-04-27 15:20:54,743 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:20:54,743 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:20:54,743 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [769350841] [2022-04-27 15:20:54,744 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [769350841] provided 0 perfect and 1 imperfect interpolant sequences [2022-04-27 15:20:54,744 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [166701133] [2022-04-27 15:20:54,744 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:20:54,744 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-04-27 15:20:54,744 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2022-04-27 15:20:54,745 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-04-27 15:20:54,745 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-04-27 15:20:55,819 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:55,826 INFO L263 TraceCheckSpWp]: Trace formula consists of 1944 conjuncts, 8 conjunts are in the unsatisfiable core [2022-04-27 15:20:55,866 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:20:55,868 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-04-27 15:20:56,110 INFO L272 TraceCheckUtils]: 0: Hoare triple {74621#true} call ULTIMATE.init(); {74621#true} is VALID [2022-04-27 15:20:56,110 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {74621#true} is VALID [2022-04-27 15:20:56,110 INFO L290 TraceCheckUtils]: 2: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,110 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {74621#true} {74621#true} #1270#return; {74621#true} is VALID [2022-04-27 15:20:56,110 INFO L272 TraceCheckUtils]: 4: Hoare triple {74621#true} call #t~ret213 := main(); {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L290 TraceCheckUtils]: 5: Hoare triple {74621#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L272 TraceCheckUtils]: 6: Hoare triple {74621#true} call _BLAST_init(); {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L290 TraceCheckUtils]: 7: Hoare triple {74621#true} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L290 TraceCheckUtils]: 8: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {74621#true} {74621#true} #1216#return; {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L272 TraceCheckUtils]: 10: Hoare triple {74621#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L290 TraceCheckUtils]: 11: Hoare triple {74621#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L272 TraceCheckUtils]: 12: Hoare triple {74621#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L290 TraceCheckUtils]: 13: Hoare triple {74621#true} ~cond := #in~cond; {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L290 TraceCheckUtils]: 14: Hoare triple {74621#true} assume !(0 == ~cond); {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L290 TraceCheckUtils]: 15: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {74621#true} {74621#true} #1254#return; {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L290 TraceCheckUtils]: 17: Hoare triple {74621#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L290 TraceCheckUtils]: 18: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {74621#true} {74621#true} #1218#return; {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L290 TraceCheckUtils]: 20: Hoare triple {74621#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {74621#true} is VALID [2022-04-27 15:20:56,111 INFO L290 TraceCheckUtils]: 21: Hoare triple {74621#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 22: Hoare triple {74621#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L272 TraceCheckUtils]: 23: Hoare triple {74621#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 24: Hoare triple {74621#true} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L272 TraceCheckUtils]: 25: Hoare triple {74621#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 26: Hoare triple {74621#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 27: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~5; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 28: Hoare triple {74621#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 29: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {74621#true} {74621#true} #1176#return; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 31: Hoare triple {74621#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 32: Hoare triple {74621#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L272 TraceCheckUtils]: 33: Hoare triple {74621#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 34: Hoare triple {74621#true} #t~loopctr214 := 0; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 35: Hoare triple {74621#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 36: Hoare triple {74621#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 37: Hoare triple {74621#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {74621#true} {74621#true} #1178#return; {74621#true} is VALID [2022-04-27 15:20:56,112 INFO L290 TraceCheckUtils]: 39: Hoare triple {74621#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L272 TraceCheckUtils]: 40: Hoare triple {74621#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 41: Hoare triple {74621#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 42: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~2; {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 43: Hoare triple {74621#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 44: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {74621#true} {74621#true} #1180#return; {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 46: Hoare triple {74621#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 47: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {74621#true} {74621#true} #1220#return; {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 49: Hoare triple {74621#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L272 TraceCheckUtils]: 50: Hoare triple {74621#true} call stub_driver_init(); {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 51: Hoare triple {74621#true} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 52: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {74621#true} {74621#true} #1222#return; {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 54: Hoare triple {74621#true} assume !!(~status~5 >= 0); {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 55: Hoare triple {74621#true} assume !(0 == ~__BLAST_NONDET~0); {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 56: Hoare triple {74621#true} assume !(1 == ~__BLAST_NONDET~0); {74621#true} is VALID [2022-04-27 15:20:56,113 INFO L290 TraceCheckUtils]: 57: Hoare triple {74621#true} assume !(2 == ~__BLAST_NONDET~0); {74621#true} is VALID [2022-04-27 15:20:56,114 INFO L290 TraceCheckUtils]: 58: Hoare triple {74621#true} assume 3 == ~__BLAST_NONDET~0; {74621#true} is VALID [2022-04-27 15:20:56,114 INFO L272 TraceCheckUtils]: 59: Hoare triple {74621#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {74621#true} is VALID [2022-04-27 15:20:56,114 INFO L290 TraceCheckUtils]: 60: Hoare triple {74621#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {74621#true} is VALID [2022-04-27 15:20:56,114 INFO L290 TraceCheckUtils]: 61: Hoare triple {74621#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {74621#true} is VALID [2022-04-27 15:20:56,114 INFO L290 TraceCheckUtils]: 62: Hoare triple {74621#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {74621#true} is VALID [2022-04-27 15:20:56,114 INFO L272 TraceCheckUtils]: 63: Hoare triple {74621#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {74621#true} is VALID [2022-04-27 15:20:56,123 INFO L290 TraceCheckUtils]: 64: Hoare triple {74621#true} #t~loopctr215 := 0; {75013#(= |#Ultimate.C_memmove_#t~loopctr215| 0)} is VALID [2022-04-27 15:20:56,125 INFO L290 TraceCheckUtils]: 65: Hoare triple {75013#(= |#Ultimate.C_memmove_#t~loopctr215| 0)} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {75017#(< 0 (mod |#Ultimate.C_memmove_size| 4294967296))} is VALID [2022-04-27 15:20:56,125 INFO L290 TraceCheckUtils]: 66: Hoare triple {75017#(< 0 (mod |#Ultimate.C_memmove_size| 4294967296))} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {75021#(and (< 0 (mod |#Ultimate.C_memmove_size| 4294967296)) (= |#Ultimate.C_memmove_#t~loopctr221| 0))} is VALID [2022-04-27 15:20:56,125 INFO L290 TraceCheckUtils]: 67: Hoare triple {75021#(and (< 0 (mod |#Ultimate.C_memmove_size| 4294967296)) (= |#Ultimate.C_memmove_#t~loopctr221| 0))} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L290 TraceCheckUtils]: 68: Hoare triple {74622#false} assume #res.base == dest.base && #res.offset == dest.offset; {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L284 TraceCheckUtils]: 69: Hoare quadruple {74622#false} {74621#true} #1186#return; {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L290 TraceCheckUtils]: 70: Hoare triple {74622#false} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L290 TraceCheckUtils]: 71: Hoare triple {74622#false} assume !(~s~0 != ~NP~0); {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L290 TraceCheckUtils]: 72: Hoare triple {74622#false} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L290 TraceCheckUtils]: 73: Hoare triple {74622#false} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L272 TraceCheckUtils]: 74: Hoare triple {74622#false} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L290 TraceCheckUtils]: 75: Hoare triple {74622#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L290 TraceCheckUtils]: 76: Hoare triple {74622#false} assume 0 != ~compRegistered~0; {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L272 TraceCheckUtils]: 77: Hoare triple {74622#false} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L290 TraceCheckUtils]: 78: Hoare triple {74622#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L272 TraceCheckUtils]: 79: Hoare triple {74622#false} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L290 TraceCheckUtils]: 80: Hoare triple {74622#false} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L290 TraceCheckUtils]: 81: Hoare triple {74622#false} assume true; {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L284 TraceCheckUtils]: 82: Hoare quadruple {74622#false} {74622#false} #1174#return; {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L290 TraceCheckUtils]: 83: Hoare triple {74622#false} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {74622#false} is VALID [2022-04-27 15:20:56,126 INFO L290 TraceCheckUtils]: 84: Hoare triple {74622#false} assume true; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L284 TraceCheckUtils]: 85: Hoare quadruple {74622#false} {74622#false} #1210#return; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 86: Hoare triple {74622#false} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 87: Hoare triple {74622#false} assume -1073741802 == ~compRetStatus~0; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L272 TraceCheckUtils]: 88: Hoare triple {74622#false} call stubMoreProcessingRequired(); {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 89: Hoare triple {74622#false} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 90: Hoare triple {74622#false} assume true; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L284 TraceCheckUtils]: 91: Hoare quadruple {74622#false} {74622#false} #1212#return; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 92: Hoare triple {74622#false} assume !(0 == ~__BLAST_NONDET~11); {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 93: Hoare triple {74622#false} assume !(1 == ~__BLAST_NONDET~11); {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 94: Hoare triple {74622#false} ~returnVal2~0 := 259; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 95: Hoare triple {74622#false} assume !(~s~0 == ~NP~0); {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 96: Hoare triple {74622#false} assume ~s~0 == ~MPR1~0; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 97: Hoare triple {74622#false} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 98: Hoare triple {74622#false} #res := ~returnVal2~0; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 99: Hoare triple {74622#false} assume true; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L284 TraceCheckUtils]: 100: Hoare quadruple {74622#false} {74622#false} #1192#return; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 101: Hoare triple {74622#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {74622#false} is VALID [2022-04-27 15:20:56,127 INFO L290 TraceCheckUtils]: 102: Hoare triple {74622#false} assume 259 == ~status~3; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L272 TraceCheckUtils]: 103: Hoare triple {74622#false} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 104: Hoare triple {74622#false} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 105: Hoare triple {74622#false} assume ~s~0 == ~MPR3~0; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 106: Hoare triple {74622#false} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 107: Hoare triple {74622#false} assume 0 == ~__BLAST_NONDET~13; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 108: Hoare triple {74622#false} #res := 0; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 109: Hoare triple {74622#false} assume true; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L284 TraceCheckUtils]: 110: Hoare quadruple {74622#false} {74622#false} #1194#return; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 111: Hoare triple {74622#false} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 112: Hoare triple {74622#false} assume ~status~3 >= 0; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 113: Hoare triple {74622#false} assume !(~myStatus~0 >= 0); {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 114: Hoare triple {74622#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L272 TraceCheckUtils]: 115: Hoare triple {74622#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 116: Hoare triple {74622#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 117: Hoare triple {74622#false} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 118: Hoare triple {74622#false} assume true; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L284 TraceCheckUtils]: 119: Hoare quadruple {74622#false} {74622#false} #1196#return; {74622#false} is VALID [2022-04-27 15:20:56,128 INFO L290 TraceCheckUtils]: 120: Hoare triple {74622#false} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 121: Hoare triple {74622#false} assume true; {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L284 TraceCheckUtils]: 122: Hoare quadruple {74622#false} {74621#true} #1230#return; {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 123: Hoare triple {74622#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 124: Hoare triple {74622#false} assume 0 != ~we_should_unload~0; {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 125: Hoare triple {74622#false} assume !(1 == ~pended~0); {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 126: Hoare triple {74622#false} assume !(1 == ~pended~0); {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 127: Hoare triple {74622#false} assume !(~s~0 == ~UNLOADED~0); {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 128: Hoare triple {74622#false} assume !(-1 == ~status~5); {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 129: Hoare triple {74622#false} assume ~s~0 != ~SKIP2~0; {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 130: Hoare triple {74622#false} assume ~s~0 != ~IPC~0; {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 131: Hoare triple {74622#false} assume !(~s~0 != ~DC~0); {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 132: Hoare triple {74622#false} assume !(1 == ~pended~0); {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 133: Hoare triple {74622#false} assume ~s~0 == ~DC~0; {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 134: Hoare triple {74622#false} assume 259 == ~status~5; {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L272 TraceCheckUtils]: 135: Hoare triple {74622#false} call errorFn(); {74622#false} is VALID [2022-04-27 15:20:56,129 INFO L290 TraceCheckUtils]: 136: Hoare triple {74622#false} assume !false; {74622#false} is VALID [2022-04-27 15:20:56,130 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:20:56,130 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-04-27 15:20:56,657 INFO L290 TraceCheckUtils]: 136: Hoare triple {74622#false} assume !false; {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L272 TraceCheckUtils]: 135: Hoare triple {74622#false} call errorFn(); {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 134: Hoare triple {74622#false} assume 259 == ~status~5; {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 133: Hoare triple {74622#false} assume ~s~0 == ~DC~0; {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 132: Hoare triple {74622#false} assume !(1 == ~pended~0); {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 131: Hoare triple {74622#false} assume !(~s~0 != ~DC~0); {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 130: Hoare triple {74622#false} assume ~s~0 != ~IPC~0; {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 129: Hoare triple {74622#false} assume ~s~0 != ~SKIP2~0; {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 128: Hoare triple {74622#false} assume !(-1 == ~status~5); {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 127: Hoare triple {74622#false} assume !(~s~0 == ~UNLOADED~0); {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 126: Hoare triple {74622#false} assume !(1 == ~pended~0); {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 125: Hoare triple {74622#false} assume !(1 == ~pended~0); {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 124: Hoare triple {74622#false} assume 0 != ~we_should_unload~0; {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 123: Hoare triple {74622#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L284 TraceCheckUtils]: 122: Hoare quadruple {74622#false} {74621#true} #1230#return; {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 121: Hoare triple {74622#false} assume true; {74622#false} is VALID [2022-04-27 15:20:56,658 INFO L290 TraceCheckUtils]: 120: Hoare triple {74622#false} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {74622#false} is VALID [2022-04-27 15:20:56,659 INFO L284 TraceCheckUtils]: 119: Hoare quadruple {74621#true} {74622#false} #1196#return; {74622#false} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 118: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 117: Hoare triple {74621#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {74621#true} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 116: Hoare triple {74621#true} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {74621#true} is VALID [2022-04-27 15:20:56,659 INFO L272 TraceCheckUtils]: 115: Hoare triple {74622#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {74621#true} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 114: Hoare triple {74622#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {74622#false} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 113: Hoare triple {74622#false} assume !(~myStatus~0 >= 0); {74622#false} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 112: Hoare triple {74622#false} assume ~status~3 >= 0; {74622#false} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 111: Hoare triple {74622#false} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {74622#false} is VALID [2022-04-27 15:20:56,659 INFO L284 TraceCheckUtils]: 110: Hoare quadruple {74621#true} {74622#false} #1194#return; {74622#false} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 109: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 108: Hoare triple {74621#true} #res := 0; {74621#true} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 107: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~13; {74621#true} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 106: Hoare triple {74621#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {74621#true} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 105: Hoare triple {74621#true} assume ~s~0 == ~MPR3~0; {74621#true} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 104: Hoare triple {74621#true} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {74621#true} is VALID [2022-04-27 15:20:56,659 INFO L272 TraceCheckUtils]: 103: Hoare triple {74622#false} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {74621#true} is VALID [2022-04-27 15:20:56,659 INFO L290 TraceCheckUtils]: 102: Hoare triple {74622#false} assume 259 == ~status~3; {74622#false} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 101: Hoare triple {74622#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {74622#false} is VALID [2022-04-27 15:20:56,660 INFO L284 TraceCheckUtils]: 100: Hoare quadruple {74621#true} {74622#false} #1192#return; {74622#false} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 99: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 98: Hoare triple {74621#true} #res := ~returnVal2~0; {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 97: Hoare triple {74621#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 96: Hoare triple {74621#true} assume ~s~0 == ~MPR1~0; {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 95: Hoare triple {74621#true} assume !(~s~0 == ~NP~0); {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 94: Hoare triple {74621#true} ~returnVal2~0 := 259; {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 93: Hoare triple {74621#true} assume !(1 == ~__BLAST_NONDET~11); {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 92: Hoare triple {74621#true} assume !(0 == ~__BLAST_NONDET~11); {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L284 TraceCheckUtils]: 91: Hoare quadruple {74621#true} {74621#true} #1212#return; {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 90: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 89: Hoare triple {74621#true} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L272 TraceCheckUtils]: 88: Hoare triple {74621#true} call stubMoreProcessingRequired(); {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 87: Hoare triple {74621#true} assume -1073741802 == ~compRetStatus~0; {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 86: Hoare triple {74621#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L284 TraceCheckUtils]: 85: Hoare quadruple {74621#true} {74621#true} #1210#return; {74621#true} is VALID [2022-04-27 15:20:56,660 INFO L290 TraceCheckUtils]: 84: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,661 INFO L290 TraceCheckUtils]: 83: Hoare triple {74621#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {74621#true} is VALID [2022-04-27 15:20:56,661 INFO L284 TraceCheckUtils]: 82: Hoare quadruple {74621#true} {74621#true} #1174#return; {74621#true} is VALID [2022-04-27 15:20:56,661 INFO L290 TraceCheckUtils]: 81: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,661 INFO L290 TraceCheckUtils]: 80: Hoare triple {74621#true} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {74621#true} is VALID [2022-04-27 15:20:56,661 INFO L272 TraceCheckUtils]: 79: Hoare triple {74621#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {74621#true} is VALID [2022-04-27 15:20:56,661 INFO L290 TraceCheckUtils]: 78: Hoare triple {74621#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {74621#true} is VALID [2022-04-27 15:20:56,661 INFO L272 TraceCheckUtils]: 77: Hoare triple {74621#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {74621#true} is VALID [2022-04-27 15:20:56,661 INFO L290 TraceCheckUtils]: 76: Hoare triple {74621#true} assume 0 != ~compRegistered~0; {74621#true} is VALID [2022-04-27 15:20:56,661 INFO L290 TraceCheckUtils]: 75: Hoare triple {74621#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {74621#true} is VALID [2022-04-27 15:20:56,661 INFO L272 TraceCheckUtils]: 74: Hoare triple {74622#false} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {74621#true} is VALID [2022-04-27 15:20:56,661 INFO L290 TraceCheckUtils]: 73: Hoare triple {74622#false} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {74622#false} is VALID [2022-04-27 15:20:56,661 INFO L290 TraceCheckUtils]: 72: Hoare triple {74622#false} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {74622#false} is VALID [2022-04-27 15:20:56,661 INFO L290 TraceCheckUtils]: 71: Hoare triple {74622#false} assume !(~s~0 != ~NP~0); {74622#false} is VALID [2022-04-27 15:20:56,661 INFO L290 TraceCheckUtils]: 70: Hoare triple {74622#false} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {74622#false} is VALID [2022-04-27 15:20:56,661 INFO L284 TraceCheckUtils]: 69: Hoare quadruple {74622#false} {74621#true} #1186#return; {74622#false} is VALID [2022-04-27 15:20:56,661 INFO L290 TraceCheckUtils]: 68: Hoare triple {74622#false} assume #res.base == dest.base && #res.offset == dest.offset; {74622#false} is VALID [2022-04-27 15:20:56,667 INFO L290 TraceCheckUtils]: 67: Hoare triple {75445#(< (mod |#Ultimate.C_memmove_#t~loopctr221| 4294967296) (mod |#Ultimate.C_memmove_size| 4294967296))} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {74622#false} is VALID [2022-04-27 15:20:56,668 INFO L290 TraceCheckUtils]: 66: Hoare triple {75017#(< 0 (mod |#Ultimate.C_memmove_size| 4294967296))} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {75445#(< (mod |#Ultimate.C_memmove_#t~loopctr221| 4294967296) (mod |#Ultimate.C_memmove_size| 4294967296))} is VALID [2022-04-27 15:20:56,669 INFO L290 TraceCheckUtils]: 65: Hoare triple {74621#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {75017#(< 0 (mod |#Ultimate.C_memmove_size| 4294967296))} is VALID [2022-04-27 15:20:56,669 INFO L290 TraceCheckUtils]: 64: Hoare triple {74621#true} #t~loopctr215 := 0; {74621#true} is VALID [2022-04-27 15:20:56,669 INFO L272 TraceCheckUtils]: 63: Hoare triple {74621#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {74621#true} is VALID [2022-04-27 15:20:56,669 INFO L290 TraceCheckUtils]: 62: Hoare triple {74621#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {74621#true} is VALID [2022-04-27 15:20:56,669 INFO L290 TraceCheckUtils]: 61: Hoare triple {74621#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {74621#true} is VALID [2022-04-27 15:20:56,669 INFO L290 TraceCheckUtils]: 60: Hoare triple {74621#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {74621#true} is VALID [2022-04-27 15:20:56,669 INFO L272 TraceCheckUtils]: 59: Hoare triple {74621#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {74621#true} is VALID [2022-04-27 15:20:56,669 INFO L290 TraceCheckUtils]: 58: Hoare triple {74621#true} assume 3 == ~__BLAST_NONDET~0; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 57: Hoare triple {74621#true} assume !(2 == ~__BLAST_NONDET~0); {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 56: Hoare triple {74621#true} assume !(1 == ~__BLAST_NONDET~0); {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 55: Hoare triple {74621#true} assume !(0 == ~__BLAST_NONDET~0); {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 54: Hoare triple {74621#true} assume !!(~status~5 >= 0); {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {74621#true} {74621#true} #1222#return; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 52: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 51: Hoare triple {74621#true} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L272 TraceCheckUtils]: 50: Hoare triple {74621#true} call stub_driver_init(); {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 49: Hoare triple {74621#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {74621#true} {74621#true} #1220#return; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 47: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 46: Hoare triple {74621#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {74621#true} {74621#true} #1180#return; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 44: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 43: Hoare triple {74621#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 42: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~2; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L290 TraceCheckUtils]: 41: Hoare triple {74621#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {74621#true} is VALID [2022-04-27 15:20:56,670 INFO L272 TraceCheckUtils]: 40: Hoare triple {74621#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 39: Hoare triple {74621#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {74621#true} {74621#true} #1178#return; {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 37: Hoare triple {74621#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 36: Hoare triple {74621#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 35: Hoare triple {74621#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 34: Hoare triple {74621#true} #t~loopctr214 := 0; {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L272 TraceCheckUtils]: 33: Hoare triple {74621#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 32: Hoare triple {74621#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 31: Hoare triple {74621#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {74621#true} {74621#true} #1176#return; {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 29: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 28: Hoare triple {74621#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 27: Hoare triple {74621#true} assume 0 == ~__BLAST_NONDET~5; {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 26: Hoare triple {74621#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L272 TraceCheckUtils]: 25: Hoare triple {74621#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 24: Hoare triple {74621#true} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L272 TraceCheckUtils]: 23: Hoare triple {74621#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {74621#true} is VALID [2022-04-27 15:20:56,671 INFO L290 TraceCheckUtils]: 22: Hoare triple {74621#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L290 TraceCheckUtils]: 21: Hoare triple {74621#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L290 TraceCheckUtils]: 20: Hoare triple {74621#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {74621#true} {74621#true} #1218#return; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L290 TraceCheckUtils]: 18: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L290 TraceCheckUtils]: 17: Hoare triple {74621#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {74621#true} {74621#true} #1254#return; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L290 TraceCheckUtils]: 15: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L290 TraceCheckUtils]: 14: Hoare triple {74621#true} assume !(0 == ~cond); {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L290 TraceCheckUtils]: 13: Hoare triple {74621#true} ~cond := #in~cond; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L272 TraceCheckUtils]: 12: Hoare triple {74621#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L290 TraceCheckUtils]: 11: Hoare triple {74621#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L272 TraceCheckUtils]: 10: Hoare triple {74621#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {74621#true} {74621#true} #1216#return; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L290 TraceCheckUtils]: 8: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L290 TraceCheckUtils]: 7: Hoare triple {74621#true} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L272 TraceCheckUtils]: 6: Hoare triple {74621#true} call _BLAST_init(); {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L290 TraceCheckUtils]: 5: Hoare triple {74621#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {74621#true} is VALID [2022-04-27 15:20:56,672 INFO L272 TraceCheckUtils]: 4: Hoare triple {74621#true} call #t~ret213 := main(); {74621#true} is VALID [2022-04-27 15:20:56,673 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {74621#true} {74621#true} #1270#return; {74621#true} is VALID [2022-04-27 15:20:56,673 INFO L290 TraceCheckUtils]: 2: Hoare triple {74621#true} assume true; {74621#true} is VALID [2022-04-27 15:20:56,673 INFO L290 TraceCheckUtils]: 1: Hoare triple {74621#true} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {74621#true} is VALID [2022-04-27 15:20:56,673 INFO L272 TraceCheckUtils]: 0: Hoare triple {74621#true} call ULTIMATE.init(); {74621#true} is VALID [2022-04-27 15:20:56,673 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-04-27 15:20:56,673 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [166701133] provided 1 perfect and 1 imperfect interpolant sequences [2022-04-27 15:20:56,673 INFO L184 FreeRefinementEngine]: Found 1 perfect and 2 imperfect interpolant sequences. [2022-04-27 15:20:56,673 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [15, 5] total 19 [2022-04-27 15:20:56,673 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [479325108] [2022-04-27 15:20:56,673 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-04-27 15:20:56,674 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 25.25) internal successors, (101), 4 states have internal predecessors, (101), 2 states have call successors, (19), 2 states have call predecessors, (19), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 137 [2022-04-27 15:20:56,674 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:20:56,674 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 4 states, 4 states have (on average 25.25) internal successors, (101), 4 states have internal predecessors, (101), 2 states have call successors, (19), 2 states have call predecessors, (19), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2022-04-27 15:20:56,766 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 137 edges. 137 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:20:56,767 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-04-27 15:20:56,767 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:20:56,767 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-04-27 15:20:56,767 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=64, Invalid=278, Unknown=0, NotChecked=0, Total=342 [2022-04-27 15:20:56,767 INFO L87 Difference]: Start difference. First operand 235 states and 250 transitions. Second operand has 4 states, 4 states have (on average 25.25) internal successors, (101), 4 states have internal predecessors, (101), 2 states have call successors, (19), 2 states have call predecessors, (19), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2022-04-27 15:21:04,329 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:21:04,329 INFO L93 Difference]: Finished difference Result 355 states and 376 transitions. [2022-04-27 15:21:04,329 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-04-27 15:21:04,330 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 25.25) internal successors, (101), 4 states have internal predecessors, (101), 2 states have call successors, (19), 2 states have call predecessors, (19), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 137 [2022-04-27 15:21:04,330 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:21:04,330 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4 states, 4 states have (on average 25.25) internal successors, (101), 4 states have internal predecessors, (101), 2 states have call successors, (19), 2 states have call predecessors, (19), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2022-04-27 15:21:04,331 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 222 transitions. [2022-04-27 15:21:04,331 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4 states, 4 states have (on average 25.25) internal successors, (101), 4 states have internal predecessors, (101), 2 states have call successors, (19), 2 states have call predecessors, (19), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2022-04-27 15:21:04,332 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 222 transitions. [2022-04-27 15:21:04,332 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 4 states and 222 transitions. [2022-04-27 15:21:04,472 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 222 edges. 222 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:21:04,475 INFO L225 Difference]: With dead ends: 355 [2022-04-27 15:21:04,475 INFO L226 Difference]: Without dead ends: 237 [2022-04-27 15:21:04,475 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 312 GetRequests, 295 SyntacticMatches, 0 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 57 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=64, Invalid=278, Unknown=0, NotChecked=0, Total=342 [2022-04-27 15:21:04,476 INFO L413 NwaCegarLoop]: 142 mSDtfsCounter, 5 mSDsluCounter, 280 mSDsCounter, 0 mSdLazyCounter, 11 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 5 SdHoareTripleChecker+Valid, 422 SdHoareTripleChecker+Invalid, 13 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 11 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-04-27 15:21:04,476 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [5 Valid, 422 Invalid, 13 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 11 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-04-27 15:21:04,476 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 237 states. [2022-04-27 15:21:04,711 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 237 to 237. [2022-04-27 15:21:04,711 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:21:04,711 INFO L82 GeneralOperation]: Start isEquivalent. First operand 237 states. Second operand has 237 states, 177 states have (on average 1.0847457627118644) internal successors, (192), 177 states have internal predecessors, (192), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:21:04,711 INFO L74 IsIncluded]: Start isIncluded. First operand 237 states. Second operand has 237 states, 177 states have (on average 1.0847457627118644) internal successors, (192), 177 states have internal predecessors, (192), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:21:04,712 INFO L87 Difference]: Start difference. First operand 237 states. Second operand has 237 states, 177 states have (on average 1.0847457627118644) internal successors, (192), 177 states have internal predecessors, (192), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:21:04,714 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:21:04,714 INFO L93 Difference]: Finished difference Result 237 states and 252 transitions. [2022-04-27 15:21:04,714 INFO L276 IsEmpty]: Start isEmpty. Operand 237 states and 252 transitions. [2022-04-27 15:21:04,714 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:21:04,714 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:21:04,714 INFO L74 IsIncluded]: Start isIncluded. First operand has 237 states, 177 states have (on average 1.0847457627118644) internal successors, (192), 177 states have internal predecessors, (192), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) Second operand 237 states. [2022-04-27 15:21:04,715 INFO L87 Difference]: Start difference. First operand has 237 states, 177 states have (on average 1.0847457627118644) internal successors, (192), 177 states have internal predecessors, (192), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) Second operand 237 states. [2022-04-27 15:21:04,717 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:21:04,717 INFO L93 Difference]: Finished difference Result 237 states and 252 transitions. [2022-04-27 15:21:04,717 INFO L276 IsEmpty]: Start isEmpty. Operand 237 states and 252 transitions. [2022-04-27 15:21:04,717 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:21:04,717 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:21:04,717 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:21:04,717 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:21:04,718 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 237 states, 177 states have (on average 1.0847457627118644) internal successors, (192), 177 states have internal predecessors, (192), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:21:04,720 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 237 states to 237 states and 252 transitions. [2022-04-27 15:21:04,720 INFO L78 Accepts]: Start accepts. Automaton has 237 states and 252 transitions. Word has length 137 [2022-04-27 15:21:04,721 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:21:04,721 INFO L495 AbstractCegarLoop]: Abstraction has 237 states and 252 transitions. [2022-04-27 15:21:04,721 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 25.25) internal successors, (101), 4 states have internal predecessors, (101), 2 states have call successors, (19), 2 states have call predecessors, (19), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2022-04-27 15:21:04,721 INFO L276 IsEmpty]: Start isEmpty. Operand 237 states and 252 transitions. [2022-04-27 15:21:04,721 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 139 [2022-04-27 15:21:04,721 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:21:04,721 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:21:04,745 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-04-27 15:21:04,943 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 5 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable39 [2022-04-27 15:21:04,943 INFO L420 AbstractCegarLoop]: === Iteration 41 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:21:04,944 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:21:04,944 INFO L85 PathProgramCache]: Analyzing trace with hash -1183185629, now seen corresponding path program 1 times [2022-04-27 15:21:04,944 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:21:04,944 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2079328822] [2022-04-27 15:21:04,944 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:21:04,944 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:21:05,142 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,203 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:21:05,204 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,209 INFO L290 TraceCheckUtils]: 0: Hoare triple {77049#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {76940#true} is VALID [2022-04-27 15:21:05,209 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,209 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {76940#true} {76940#true} #1270#return; {76940#true} is VALID [2022-04-27 15:21:05,229 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:21:05,230 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,234 INFO L290 TraceCheckUtils]: 0: Hoare triple {77050#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {76940#true} is VALID [2022-04-27 15:21:05,234 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,234 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {76940#true} {76940#true} #1216#return; {76940#true} is VALID [2022-04-27 15:21:05,240 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:21:05,245 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,250 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:21:05,251 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,254 INFO L290 TraceCheckUtils]: 0: Hoare triple {76940#true} ~cond := #in~cond; {76940#true} is VALID [2022-04-27 15:21:05,254 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume !(0 == ~cond); {76940#true} is VALID [2022-04-27 15:21:05,254 INFO L290 TraceCheckUtils]: 2: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,255 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {76940#true} {76940#true} #1254#return; {76940#true} is VALID [2022-04-27 15:21:05,255 INFO L290 TraceCheckUtils]: 0: Hoare triple {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {76940#true} is VALID [2022-04-27 15:21:05,255 INFO L272 TraceCheckUtils]: 1: Hoare triple {76940#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {76940#true} is VALID [2022-04-27 15:21:05,255 INFO L290 TraceCheckUtils]: 2: Hoare triple {76940#true} ~cond := #in~cond; {76940#true} is VALID [2022-04-27 15:21:05,255 INFO L290 TraceCheckUtils]: 3: Hoare triple {76940#true} assume !(0 == ~cond); {76940#true} is VALID [2022-04-27 15:21:05,255 INFO L290 TraceCheckUtils]: 4: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,255 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {76940#true} {76940#true} #1254#return; {76940#true} is VALID [2022-04-27 15:21:05,255 INFO L290 TraceCheckUtils]: 6: Hoare triple {76940#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {76940#true} is VALID [2022-04-27 15:21:05,255 INFO L290 TraceCheckUtils]: 7: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,255 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {76940#true} {76940#true} #1218#return; {76940#true} is VALID [2022-04-27 15:21:05,265 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:21:05,287 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,297 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:21:05,300 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,305 INFO L290 TraceCheckUtils]: 0: Hoare triple {77056#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {76940#true} is VALID [2022-04-27 15:21:05,306 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~5; {76940#true} is VALID [2022-04-27 15:21:05,306 INFO L290 TraceCheckUtils]: 2: Hoare triple {76940#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {76940#true} is VALID [2022-04-27 15:21:05,306 INFO L290 TraceCheckUtils]: 3: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,306 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {76940#true} {76940#true} #1176#return; {76940#true} is VALID [2022-04-27 15:21:05,306 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:21:05,310 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,396 INFO L290 TraceCheckUtils]: 0: Hoare triple {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {77072#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:21:05,397 INFO L290 TraceCheckUtils]: 1: Hoare triple {77072#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {77073#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} is VALID [2022-04-27 15:21:05,398 INFO L290 TraceCheckUtils]: 2: Hoare triple {77073#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {77074#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:05,398 INFO L290 TraceCheckUtils]: 3: Hoare triple {77074#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {77074#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:05,399 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {77074#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {76940#true} #1178#return; {76941#false} is VALID [2022-04-27 15:21:05,399 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2022-04-27 15:21:05,400 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,404 INFO L290 TraceCheckUtils]: 0: Hoare triple {76940#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {76940#true} is VALID [2022-04-27 15:21:05,404 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~2; {76940#true} is VALID [2022-04-27 15:21:05,404 INFO L290 TraceCheckUtils]: 2: Hoare triple {76940#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {76940#true} is VALID [2022-04-27 15:21:05,404 INFO L290 TraceCheckUtils]: 3: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,404 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {76940#true} {76941#false} #1180#return; {76941#false} is VALID [2022-04-27 15:21:05,404 INFO L290 TraceCheckUtils]: 0: Hoare triple {77056#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {76940#true} is VALID [2022-04-27 15:21:05,405 INFO L272 TraceCheckUtils]: 1: Hoare triple {76940#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {77056#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:21:05,405 INFO L290 TraceCheckUtils]: 2: Hoare triple {77056#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {76940#true} is VALID [2022-04-27 15:21:05,405 INFO L290 TraceCheckUtils]: 3: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~5; {76940#true} is VALID [2022-04-27 15:21:05,405 INFO L290 TraceCheckUtils]: 4: Hoare triple {76940#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {76940#true} is VALID [2022-04-27 15:21:05,405 INFO L290 TraceCheckUtils]: 5: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,406 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {76940#true} {76940#true} #1176#return; {76940#true} is VALID [2022-04-27 15:21:05,406 INFO L290 TraceCheckUtils]: 7: Hoare triple {76940#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {76940#true} is VALID [2022-04-27 15:21:05,406 INFO L290 TraceCheckUtils]: 8: Hoare triple {76940#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {76940#true} is VALID [2022-04-27 15:21:05,406 INFO L272 TraceCheckUtils]: 9: Hoare triple {76940#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:05,407 INFO L290 TraceCheckUtils]: 10: Hoare triple {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {77072#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:21:05,408 INFO L290 TraceCheckUtils]: 11: Hoare triple {77072#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {77073#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} is VALID [2022-04-27 15:21:05,408 INFO L290 TraceCheckUtils]: 12: Hoare triple {77073#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {77074#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:05,409 INFO L290 TraceCheckUtils]: 13: Hoare triple {77074#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {77074#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:05,409 INFO L284 TraceCheckUtils]: 14: Hoare quadruple {77074#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {76940#true} #1178#return; {76941#false} is VALID [2022-04-27 15:21:05,409 INFO L290 TraceCheckUtils]: 15: Hoare triple {76941#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {76941#false} is VALID [2022-04-27 15:21:05,410 INFO L272 TraceCheckUtils]: 16: Hoare triple {76941#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {76940#true} is VALID [2022-04-27 15:21:05,410 INFO L290 TraceCheckUtils]: 17: Hoare triple {76940#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {76940#true} is VALID [2022-04-27 15:21:05,410 INFO L290 TraceCheckUtils]: 18: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~2; {76940#true} is VALID [2022-04-27 15:21:05,410 INFO L290 TraceCheckUtils]: 19: Hoare triple {76940#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {76940#true} is VALID [2022-04-27 15:21:05,410 INFO L290 TraceCheckUtils]: 20: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,410 INFO L284 TraceCheckUtils]: 21: Hoare quadruple {76940#true} {76941#false} #1180#return; {76941#false} is VALID [2022-04-27 15:21:05,410 INFO L290 TraceCheckUtils]: 22: Hoare triple {76941#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {76941#false} is VALID [2022-04-27 15:21:05,410 INFO L290 TraceCheckUtils]: 23: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:05,410 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {76941#false} {76940#true} #1220#return; {76941#false} is VALID [2022-04-27 15:21:05,425 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 50 [2022-04-27 15:21:05,426 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,429 INFO L290 TraceCheckUtils]: 0: Hoare triple {77075#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {76940#true} is VALID [2022-04-27 15:21:05,429 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,430 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {76940#true} {76941#false} #1222#return; {76941#false} is VALID [2022-04-27 15:21:05,451 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 59 [2022-04-27 15:21:05,481 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,492 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2022-04-27 15:21:05,496 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,501 INFO L290 TraceCheckUtils]: 0: Hoare triple {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {76940#true} is VALID [2022-04-27 15:21:05,501 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {76940#true} is VALID [2022-04-27 15:21:05,501 INFO L290 TraceCheckUtils]: 2: Hoare triple {76940#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {76940#true} is VALID [2022-04-27 15:21:05,501 INFO L290 TraceCheckUtils]: 3: Hoare triple {76940#true} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {76940#true} is VALID [2022-04-27 15:21:05,502 INFO L290 TraceCheckUtils]: 4: Hoare triple {76940#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {76940#true} is VALID [2022-04-27 15:21:05,502 INFO L290 TraceCheckUtils]: 5: Hoare triple {76940#true} assume #res.base == dest.base && #res.offset == dest.offset; {76940#true} is VALID [2022-04-27 15:21:05,502 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {76940#true} {76940#true} #1186#return; {76940#true} is VALID [2022-04-27 15:21:05,512 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 15 [2022-04-27 15:21:05,515 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,528 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:21:05,530 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,534 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:21:05,535 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,541 INFO L290 TraceCheckUtils]: 0: Hoare triple {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {76940#true} is VALID [2022-04-27 15:21:05,541 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,541 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {76940#true} {76940#true} #1174#return; {76940#true} is VALID [2022-04-27 15:21:05,541 INFO L290 TraceCheckUtils]: 0: Hoare triple {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {76940#true} is VALID [2022-04-27 15:21:05,542 INFO L272 TraceCheckUtils]: 1: Hoare triple {76940#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:05,542 INFO L290 TraceCheckUtils]: 2: Hoare triple {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {76940#true} is VALID [2022-04-27 15:21:05,542 INFO L290 TraceCheckUtils]: 3: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,542 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {76940#true} {76940#true} #1174#return; {76940#true} is VALID [2022-04-27 15:21:05,542 INFO L290 TraceCheckUtils]: 5: Hoare triple {76940#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {76940#true} is VALID [2022-04-27 15:21:05,542 INFO L290 TraceCheckUtils]: 6: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,542 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {76940#true} {76940#true} #1210#return; {76940#true} is VALID [2022-04-27 15:21:05,551 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:21:05,552 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,556 INFO L290 TraceCheckUtils]: 0: Hoare triple {77137#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {76940#true} is VALID [2022-04-27 15:21:05,556 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,556 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {76940#true} {76940#true} #1212#return; {76940#true} is VALID [2022-04-27 15:21:05,556 INFO L290 TraceCheckUtils]: 0: Hoare triple {77121#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {76940#true} is VALID [2022-04-27 15:21:05,556 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume 0 != ~compRegistered~0; {76940#true} is VALID [2022-04-27 15:21:05,557 INFO L272 TraceCheckUtils]: 2: Hoare triple {76940#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:05,557 INFO L290 TraceCheckUtils]: 3: Hoare triple {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {76940#true} is VALID [2022-04-27 15:21:05,558 INFO L272 TraceCheckUtils]: 4: Hoare triple {76940#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:05,558 INFO L290 TraceCheckUtils]: 5: Hoare triple {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {76940#true} is VALID [2022-04-27 15:21:05,558 INFO L290 TraceCheckUtils]: 6: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,558 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {76940#true} {76940#true} #1174#return; {76940#true} is VALID [2022-04-27 15:21:05,558 INFO L290 TraceCheckUtils]: 8: Hoare triple {76940#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {76940#true} is VALID [2022-04-27 15:21:05,558 INFO L290 TraceCheckUtils]: 9: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,558 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {76940#true} {76940#true} #1210#return; {76940#true} is VALID [2022-04-27 15:21:05,558 INFO L290 TraceCheckUtils]: 11: Hoare triple {76940#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {76940#true} is VALID [2022-04-27 15:21:05,558 INFO L290 TraceCheckUtils]: 12: Hoare triple {76940#true} assume -1073741802 == ~compRetStatus~0; {76940#true} is VALID [2022-04-27 15:21:05,558 INFO L272 TraceCheckUtils]: 13: Hoare triple {76940#true} call stubMoreProcessingRequired(); {77137#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:05,559 INFO L290 TraceCheckUtils]: 14: Hoare triple {77137#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {76940#true} is VALID [2022-04-27 15:21:05,559 INFO L290 TraceCheckUtils]: 15: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,559 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {76940#true} {76940#true} #1212#return; {76940#true} is VALID [2022-04-27 15:21:05,559 INFO L290 TraceCheckUtils]: 17: Hoare triple {76940#true} assume !(0 == ~__BLAST_NONDET~11); {76940#true} is VALID [2022-04-27 15:21:05,559 INFO L290 TraceCheckUtils]: 18: Hoare triple {76940#true} assume !(1 == ~__BLAST_NONDET~11); {76940#true} is VALID [2022-04-27 15:21:05,559 INFO L290 TraceCheckUtils]: 19: Hoare triple {76940#true} ~returnVal2~0 := 259; {76940#true} is VALID [2022-04-27 15:21:05,559 INFO L290 TraceCheckUtils]: 20: Hoare triple {76940#true} assume !(~s~0 == ~NP~0); {76940#true} is VALID [2022-04-27 15:21:05,559 INFO L290 TraceCheckUtils]: 21: Hoare triple {76940#true} assume ~s~0 == ~MPR1~0; {76940#true} is VALID [2022-04-27 15:21:05,559 INFO L290 TraceCheckUtils]: 22: Hoare triple {76940#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {76940#true} is VALID [2022-04-27 15:21:05,559 INFO L290 TraceCheckUtils]: 23: Hoare triple {76940#true} #res := ~returnVal2~0; {76940#true} is VALID [2022-04-27 15:21:05,559 INFO L290 TraceCheckUtils]: 24: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,559 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {76940#true} {76940#true} #1192#return; {76940#true} is VALID [2022-04-27 15:21:05,571 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 44 [2022-04-27 15:21:05,572 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,576 INFO L290 TraceCheckUtils]: 0: Hoare triple {77138#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {76940#true} is VALID [2022-04-27 15:21:05,576 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume ~s~0 == ~MPR3~0; {76940#true} is VALID [2022-04-27 15:21:05,576 INFO L290 TraceCheckUtils]: 2: Hoare triple {76940#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {76940#true} is VALID [2022-04-27 15:21:05,576 INFO L290 TraceCheckUtils]: 3: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~13; {76940#true} is VALID [2022-04-27 15:21:05,577 INFO L290 TraceCheckUtils]: 4: Hoare triple {76940#true} #res := 0; {76940#true} is VALID [2022-04-27 15:21:05,577 INFO L290 TraceCheckUtils]: 5: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,577 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {76940#true} {76940#true} #1194#return; {76940#true} is VALID [2022-04-27 15:21:05,577 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 56 [2022-04-27 15:21:05,577 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:05,580 INFO L290 TraceCheckUtils]: 0: Hoare triple {77137#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {76940#true} is VALID [2022-04-27 15:21:05,581 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {76940#true} is VALID [2022-04-27 15:21:05,581 INFO L290 TraceCheckUtils]: 2: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,581 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {76940#true} {76940#true} #1196#return; {76940#true} is VALID [2022-04-27 15:21:05,581 INFO L290 TraceCheckUtils]: 0: Hoare triple {77076#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {76940#true} is VALID [2022-04-27 15:21:05,581 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {76940#true} is VALID [2022-04-27 15:21:05,581 INFO L290 TraceCheckUtils]: 2: Hoare triple {76940#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {76940#true} is VALID [2022-04-27 15:21:05,582 INFO L272 TraceCheckUtils]: 3: Hoare triple {76940#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:05,582 INFO L290 TraceCheckUtils]: 4: Hoare triple {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {76940#true} is VALID [2022-04-27 15:21:05,582 INFO L290 TraceCheckUtils]: 5: Hoare triple {76940#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {76940#true} is VALID [2022-04-27 15:21:05,582 INFO L290 TraceCheckUtils]: 6: Hoare triple {76940#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {76940#true} is VALID [2022-04-27 15:21:05,582 INFO L290 TraceCheckUtils]: 7: Hoare triple {76940#true} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {76940#true} is VALID [2022-04-27 15:21:05,582 INFO L290 TraceCheckUtils]: 8: Hoare triple {76940#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {76940#true} is VALID [2022-04-27 15:21:05,582 INFO L290 TraceCheckUtils]: 9: Hoare triple {76940#true} assume #res.base == dest.base && #res.offset == dest.offset; {76940#true} is VALID [2022-04-27 15:21:05,582 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {76940#true} {76940#true} #1186#return; {76940#true} is VALID [2022-04-27 15:21:05,582 INFO L290 TraceCheckUtils]: 11: Hoare triple {76940#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {76940#true} is VALID [2022-04-27 15:21:05,582 INFO L290 TraceCheckUtils]: 12: Hoare triple {76940#true} assume !(~s~0 != ~NP~0); {76940#true} is VALID [2022-04-27 15:21:05,582 INFO L290 TraceCheckUtils]: 13: Hoare triple {76940#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {76940#true} is VALID [2022-04-27 15:21:05,582 INFO L290 TraceCheckUtils]: 14: Hoare triple {76940#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {76940#true} is VALID [2022-04-27 15:21:05,583 INFO L272 TraceCheckUtils]: 15: Hoare triple {76940#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {77121#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:05,583 INFO L290 TraceCheckUtils]: 16: Hoare triple {77121#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {76940#true} is VALID [2022-04-27 15:21:05,583 INFO L290 TraceCheckUtils]: 17: Hoare triple {76940#true} assume 0 != ~compRegistered~0; {76940#true} is VALID [2022-04-27 15:21:05,584 INFO L272 TraceCheckUtils]: 18: Hoare triple {76940#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:05,584 INFO L290 TraceCheckUtils]: 19: Hoare triple {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {76940#true} is VALID [2022-04-27 15:21:05,585 INFO L272 TraceCheckUtils]: 20: Hoare triple {76940#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:05,585 INFO L290 TraceCheckUtils]: 21: Hoare triple {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {76940#true} is VALID [2022-04-27 15:21:05,585 INFO L290 TraceCheckUtils]: 22: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,585 INFO L284 TraceCheckUtils]: 23: Hoare quadruple {76940#true} {76940#true} #1174#return; {76940#true} is VALID [2022-04-27 15:21:05,585 INFO L290 TraceCheckUtils]: 24: Hoare triple {76940#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {76940#true} is VALID [2022-04-27 15:21:05,585 INFO L290 TraceCheckUtils]: 25: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,585 INFO L284 TraceCheckUtils]: 26: Hoare quadruple {76940#true} {76940#true} #1210#return; {76940#true} is VALID [2022-04-27 15:21:05,585 INFO L290 TraceCheckUtils]: 27: Hoare triple {76940#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {76940#true} is VALID [2022-04-27 15:21:05,585 INFO L290 TraceCheckUtils]: 28: Hoare triple {76940#true} assume -1073741802 == ~compRetStatus~0; {76940#true} is VALID [2022-04-27 15:21:05,585 INFO L272 TraceCheckUtils]: 29: Hoare triple {76940#true} call stubMoreProcessingRequired(); {77137#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:05,585 INFO L290 TraceCheckUtils]: 30: Hoare triple {77137#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {76940#true} is VALID [2022-04-27 15:21:05,585 INFO L290 TraceCheckUtils]: 31: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,586 INFO L284 TraceCheckUtils]: 32: Hoare quadruple {76940#true} {76940#true} #1212#return; {76940#true} is VALID [2022-04-27 15:21:05,586 INFO L290 TraceCheckUtils]: 33: Hoare triple {76940#true} assume !(0 == ~__BLAST_NONDET~11); {76940#true} is VALID [2022-04-27 15:21:05,586 INFO L290 TraceCheckUtils]: 34: Hoare triple {76940#true} assume !(1 == ~__BLAST_NONDET~11); {76940#true} is VALID [2022-04-27 15:21:05,586 INFO L290 TraceCheckUtils]: 35: Hoare triple {76940#true} ~returnVal2~0 := 259; {76940#true} is VALID [2022-04-27 15:21:05,586 INFO L290 TraceCheckUtils]: 36: Hoare triple {76940#true} assume !(~s~0 == ~NP~0); {76940#true} is VALID [2022-04-27 15:21:05,586 INFO L290 TraceCheckUtils]: 37: Hoare triple {76940#true} assume ~s~0 == ~MPR1~0; {76940#true} is VALID [2022-04-27 15:21:05,586 INFO L290 TraceCheckUtils]: 38: Hoare triple {76940#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {76940#true} is VALID [2022-04-27 15:21:05,586 INFO L290 TraceCheckUtils]: 39: Hoare triple {76940#true} #res := ~returnVal2~0; {76940#true} is VALID [2022-04-27 15:21:05,586 INFO L290 TraceCheckUtils]: 40: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,586 INFO L284 TraceCheckUtils]: 41: Hoare quadruple {76940#true} {76940#true} #1192#return; {76940#true} is VALID [2022-04-27 15:21:05,586 INFO L290 TraceCheckUtils]: 42: Hoare triple {76940#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {76940#true} is VALID [2022-04-27 15:21:05,586 INFO L290 TraceCheckUtils]: 43: Hoare triple {76940#true} assume 259 == ~status~3; {76940#true} is VALID [2022-04-27 15:21:05,587 INFO L272 TraceCheckUtils]: 44: Hoare triple {76940#true} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {77138#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:05,587 INFO L290 TraceCheckUtils]: 45: Hoare triple {77138#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {76940#true} is VALID [2022-04-27 15:21:05,587 INFO L290 TraceCheckUtils]: 46: Hoare triple {76940#true} assume ~s~0 == ~MPR3~0; {76940#true} is VALID [2022-04-27 15:21:05,587 INFO L290 TraceCheckUtils]: 47: Hoare triple {76940#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {76940#true} is VALID [2022-04-27 15:21:05,587 INFO L290 TraceCheckUtils]: 48: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~13; {76940#true} is VALID [2022-04-27 15:21:05,587 INFO L290 TraceCheckUtils]: 49: Hoare triple {76940#true} #res := 0; {76940#true} is VALID [2022-04-27 15:21:05,587 INFO L290 TraceCheckUtils]: 50: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,587 INFO L284 TraceCheckUtils]: 51: Hoare quadruple {76940#true} {76940#true} #1194#return; {76940#true} is VALID [2022-04-27 15:21:05,587 INFO L290 TraceCheckUtils]: 52: Hoare triple {76940#true} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {76940#true} is VALID [2022-04-27 15:21:05,587 INFO L290 TraceCheckUtils]: 53: Hoare triple {76940#true} assume ~status~3 >= 0; {76940#true} is VALID [2022-04-27 15:21:05,588 INFO L290 TraceCheckUtils]: 54: Hoare triple {76940#true} assume !(~myStatus~0 >= 0); {76940#true} is VALID [2022-04-27 15:21:05,588 INFO L290 TraceCheckUtils]: 55: Hoare triple {76940#true} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {76940#true} is VALID [2022-04-27 15:21:05,588 INFO L272 TraceCheckUtils]: 56: Hoare triple {76940#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {77137#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:05,588 INFO L290 TraceCheckUtils]: 57: Hoare triple {77137#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {76940#true} is VALID [2022-04-27 15:21:05,588 INFO L290 TraceCheckUtils]: 58: Hoare triple {76940#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {76940#true} is VALID [2022-04-27 15:21:05,588 INFO L290 TraceCheckUtils]: 59: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,588 INFO L284 TraceCheckUtils]: 60: Hoare quadruple {76940#true} {76940#true} #1196#return; {76940#true} is VALID [2022-04-27 15:21:05,588 INFO L290 TraceCheckUtils]: 61: Hoare triple {76940#true} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {76940#true} is VALID [2022-04-27 15:21:05,588 INFO L290 TraceCheckUtils]: 62: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,588 INFO L284 TraceCheckUtils]: 63: Hoare quadruple {76940#true} {76941#false} #1230#return; {76941#false} is VALID [2022-04-27 15:21:05,590 INFO L272 TraceCheckUtils]: 0: Hoare triple {76940#true} call ULTIMATE.init(); {77049#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:21:05,590 INFO L290 TraceCheckUtils]: 1: Hoare triple {77049#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {76940#true} is VALID [2022-04-27 15:21:05,590 INFO L290 TraceCheckUtils]: 2: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,590 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {76940#true} {76940#true} #1270#return; {76940#true} is VALID [2022-04-27 15:21:05,590 INFO L272 TraceCheckUtils]: 4: Hoare triple {76940#true} call #t~ret213 := main(); {76940#true} is VALID [2022-04-27 15:21:05,590 INFO L290 TraceCheckUtils]: 5: Hoare triple {76940#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {76940#true} is VALID [2022-04-27 15:21:05,591 INFO L272 TraceCheckUtils]: 6: Hoare triple {76940#true} call _BLAST_init(); {77050#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:05,591 INFO L290 TraceCheckUtils]: 7: Hoare triple {77050#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {76940#true} is VALID [2022-04-27 15:21:05,591 INFO L290 TraceCheckUtils]: 8: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,591 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {76940#true} {76940#true} #1216#return; {76940#true} is VALID [2022-04-27 15:21:05,592 INFO L272 TraceCheckUtils]: 10: Hoare triple {76940#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:05,592 INFO L290 TraceCheckUtils]: 11: Hoare triple {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {76940#true} is VALID [2022-04-27 15:21:05,592 INFO L272 TraceCheckUtils]: 12: Hoare triple {76940#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {76940#true} is VALID [2022-04-27 15:21:05,592 INFO L290 TraceCheckUtils]: 13: Hoare triple {76940#true} ~cond := #in~cond; {76940#true} is VALID [2022-04-27 15:21:05,592 INFO L290 TraceCheckUtils]: 14: Hoare triple {76940#true} assume !(0 == ~cond); {76940#true} is VALID [2022-04-27 15:21:05,592 INFO L290 TraceCheckUtils]: 15: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,592 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {76940#true} {76940#true} #1254#return; {76940#true} is VALID [2022-04-27 15:21:05,592 INFO L290 TraceCheckUtils]: 17: Hoare triple {76940#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {76940#true} is VALID [2022-04-27 15:21:05,592 INFO L290 TraceCheckUtils]: 18: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,592 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {76940#true} {76940#true} #1218#return; {76940#true} is VALID [2022-04-27 15:21:05,592 INFO L290 TraceCheckUtils]: 20: Hoare triple {76940#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {76940#true} is VALID [2022-04-27 15:21:05,592 INFO L290 TraceCheckUtils]: 21: Hoare triple {76940#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {76940#true} is VALID [2022-04-27 15:21:05,592 INFO L290 TraceCheckUtils]: 22: Hoare triple {76940#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {76940#true} is VALID [2022-04-27 15:21:05,593 INFO L272 TraceCheckUtils]: 23: Hoare triple {76940#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {77056#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:21:05,593 INFO L290 TraceCheckUtils]: 24: Hoare triple {77056#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {76940#true} is VALID [2022-04-27 15:21:05,594 INFO L272 TraceCheckUtils]: 25: Hoare triple {76940#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {77056#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:21:05,594 INFO L290 TraceCheckUtils]: 26: Hoare triple {77056#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {76940#true} is VALID [2022-04-27 15:21:05,594 INFO L290 TraceCheckUtils]: 27: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~5; {76940#true} is VALID [2022-04-27 15:21:05,594 INFO L290 TraceCheckUtils]: 28: Hoare triple {76940#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {76940#true} is VALID [2022-04-27 15:21:05,595 INFO L290 TraceCheckUtils]: 29: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,595 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {76940#true} {76940#true} #1176#return; {76940#true} is VALID [2022-04-27 15:21:05,595 INFO L290 TraceCheckUtils]: 31: Hoare triple {76940#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {76940#true} is VALID [2022-04-27 15:21:05,595 INFO L290 TraceCheckUtils]: 32: Hoare triple {76940#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {76940#true} is VALID [2022-04-27 15:21:05,595 INFO L272 TraceCheckUtils]: 33: Hoare triple {76940#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:05,596 INFO L290 TraceCheckUtils]: 34: Hoare triple {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {77072#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:21:05,597 INFO L290 TraceCheckUtils]: 35: Hoare triple {77072#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {77073#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} is VALID [2022-04-27 15:21:05,597 INFO L290 TraceCheckUtils]: 36: Hoare triple {77073#(and (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 1)) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {77074#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:05,598 INFO L290 TraceCheckUtils]: 37: Hoare triple {77074#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {77074#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:05,598 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {77074#(or (<= |#Ultimate.C_memset_#amount| 1) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {76940#true} #1178#return; {76941#false} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 39: Hoare triple {76941#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {76941#false} is VALID [2022-04-27 15:21:05,599 INFO L272 TraceCheckUtils]: 40: Hoare triple {76941#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {76940#true} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 41: Hoare triple {76940#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {76940#true} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 42: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~2; {76940#true} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 43: Hoare triple {76940#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {76940#true} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 44: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,599 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {76940#true} {76941#false} #1180#return; {76941#false} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 46: Hoare triple {76941#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {76941#false} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 47: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:05,599 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {76941#false} {76940#true} #1220#return; {76941#false} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 49: Hoare triple {76941#false} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {76941#false} is VALID [2022-04-27 15:21:05,599 INFO L272 TraceCheckUtils]: 50: Hoare triple {76941#false} call stub_driver_init(); {77075#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 51: Hoare triple {77075#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {76940#true} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 52: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,599 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {76940#true} {76941#false} #1222#return; {76941#false} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 54: Hoare triple {76941#false} assume !!(~status~5 >= 0); {76941#false} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 55: Hoare triple {76941#false} assume !(0 == ~__BLAST_NONDET~0); {76941#false} is VALID [2022-04-27 15:21:05,599 INFO L290 TraceCheckUtils]: 56: Hoare triple {76941#false} assume !(1 == ~__BLAST_NONDET~0); {76941#false} is VALID [2022-04-27 15:21:05,600 INFO L290 TraceCheckUtils]: 57: Hoare triple {76941#false} assume !(2 == ~__BLAST_NONDET~0); {76941#false} is VALID [2022-04-27 15:21:05,600 INFO L290 TraceCheckUtils]: 58: Hoare triple {76941#false} assume 3 == ~__BLAST_NONDET~0; {76941#false} is VALID [2022-04-27 15:21:05,600 INFO L272 TraceCheckUtils]: 59: Hoare triple {76941#false} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {77076#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:05,600 INFO L290 TraceCheckUtils]: 60: Hoare triple {77076#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {76940#true} is VALID [2022-04-27 15:21:05,600 INFO L290 TraceCheckUtils]: 61: Hoare triple {76940#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {76940#true} is VALID [2022-04-27 15:21:05,600 INFO L290 TraceCheckUtils]: 62: Hoare triple {76940#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {76940#true} is VALID [2022-04-27 15:21:05,601 INFO L272 TraceCheckUtils]: 63: Hoare triple {76940#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:05,601 INFO L290 TraceCheckUtils]: 64: Hoare triple {77051#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {76940#true} is VALID [2022-04-27 15:21:05,601 INFO L290 TraceCheckUtils]: 65: Hoare triple {76940#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {76940#true} is VALID [2022-04-27 15:21:05,601 INFO L290 TraceCheckUtils]: 66: Hoare triple {76940#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {76940#true} is VALID [2022-04-27 15:21:05,601 INFO L290 TraceCheckUtils]: 67: Hoare triple {76940#true} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {76940#true} is VALID [2022-04-27 15:21:05,601 INFO L290 TraceCheckUtils]: 68: Hoare triple {76940#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {76940#true} is VALID [2022-04-27 15:21:05,601 INFO L290 TraceCheckUtils]: 69: Hoare triple {76940#true} assume #res.base == dest.base && #res.offset == dest.offset; {76940#true} is VALID [2022-04-27 15:21:05,601 INFO L284 TraceCheckUtils]: 70: Hoare quadruple {76940#true} {76940#true} #1186#return; {76940#true} is VALID [2022-04-27 15:21:05,601 INFO L290 TraceCheckUtils]: 71: Hoare triple {76940#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {76940#true} is VALID [2022-04-27 15:21:05,601 INFO L290 TraceCheckUtils]: 72: Hoare triple {76940#true} assume !(~s~0 != ~NP~0); {76940#true} is VALID [2022-04-27 15:21:05,601 INFO L290 TraceCheckUtils]: 73: Hoare triple {76940#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {76940#true} is VALID [2022-04-27 15:21:05,601 INFO L290 TraceCheckUtils]: 74: Hoare triple {76940#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {76940#true} is VALID [2022-04-27 15:21:05,602 INFO L272 TraceCheckUtils]: 75: Hoare triple {76940#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {77121#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:05,602 INFO L290 TraceCheckUtils]: 76: Hoare triple {77121#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {76940#true} is VALID [2022-04-27 15:21:05,602 INFO L290 TraceCheckUtils]: 77: Hoare triple {76940#true} assume 0 != ~compRegistered~0; {76940#true} is VALID [2022-04-27 15:21:05,603 INFO L272 TraceCheckUtils]: 78: Hoare triple {76940#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:05,603 INFO L290 TraceCheckUtils]: 79: Hoare triple {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {76940#true} is VALID [2022-04-27 15:21:05,603 INFO L272 TraceCheckUtils]: 80: Hoare triple {76940#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:05,603 INFO L290 TraceCheckUtils]: 81: Hoare triple {77133#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {76940#true} is VALID [2022-04-27 15:21:05,603 INFO L290 TraceCheckUtils]: 82: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L284 TraceCheckUtils]: 83: Hoare quadruple {76940#true} {76940#true} #1174#return; {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L290 TraceCheckUtils]: 84: Hoare triple {76940#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L290 TraceCheckUtils]: 85: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L284 TraceCheckUtils]: 86: Hoare quadruple {76940#true} {76940#true} #1210#return; {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L290 TraceCheckUtils]: 87: Hoare triple {76940#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L290 TraceCheckUtils]: 88: Hoare triple {76940#true} assume -1073741802 == ~compRetStatus~0; {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L272 TraceCheckUtils]: 89: Hoare triple {76940#true} call stubMoreProcessingRequired(); {77137#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:05,604 INFO L290 TraceCheckUtils]: 90: Hoare triple {77137#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L290 TraceCheckUtils]: 91: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L284 TraceCheckUtils]: 92: Hoare quadruple {76940#true} {76940#true} #1212#return; {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L290 TraceCheckUtils]: 93: Hoare triple {76940#true} assume !(0 == ~__BLAST_NONDET~11); {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L290 TraceCheckUtils]: 94: Hoare triple {76940#true} assume !(1 == ~__BLAST_NONDET~11); {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L290 TraceCheckUtils]: 95: Hoare triple {76940#true} ~returnVal2~0 := 259; {76940#true} is VALID [2022-04-27 15:21:05,604 INFO L290 TraceCheckUtils]: 96: Hoare triple {76940#true} assume !(~s~0 == ~NP~0); {76940#true} is VALID [2022-04-27 15:21:05,605 INFO L290 TraceCheckUtils]: 97: Hoare triple {76940#true} assume ~s~0 == ~MPR1~0; {76940#true} is VALID [2022-04-27 15:21:05,605 INFO L290 TraceCheckUtils]: 98: Hoare triple {76940#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {76940#true} is VALID [2022-04-27 15:21:05,605 INFO L290 TraceCheckUtils]: 99: Hoare triple {76940#true} #res := ~returnVal2~0; {76940#true} is VALID [2022-04-27 15:21:05,605 INFO L290 TraceCheckUtils]: 100: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,605 INFO L284 TraceCheckUtils]: 101: Hoare quadruple {76940#true} {76940#true} #1192#return; {76940#true} is VALID [2022-04-27 15:21:05,605 INFO L290 TraceCheckUtils]: 102: Hoare triple {76940#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {76940#true} is VALID [2022-04-27 15:21:05,605 INFO L290 TraceCheckUtils]: 103: Hoare triple {76940#true} assume 259 == ~status~3; {76940#true} is VALID [2022-04-27 15:21:05,606 INFO L272 TraceCheckUtils]: 104: Hoare triple {76940#true} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {77138#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:05,606 INFO L290 TraceCheckUtils]: 105: Hoare triple {77138#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {76940#true} is VALID [2022-04-27 15:21:05,606 INFO L290 TraceCheckUtils]: 106: Hoare triple {76940#true} assume ~s~0 == ~MPR3~0; {76940#true} is VALID [2022-04-27 15:21:05,606 INFO L290 TraceCheckUtils]: 107: Hoare triple {76940#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {76940#true} is VALID [2022-04-27 15:21:05,606 INFO L290 TraceCheckUtils]: 108: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~13; {76940#true} is VALID [2022-04-27 15:21:05,606 INFO L290 TraceCheckUtils]: 109: Hoare triple {76940#true} #res := 0; {76940#true} is VALID [2022-04-27 15:21:05,606 INFO L290 TraceCheckUtils]: 110: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,606 INFO L284 TraceCheckUtils]: 111: Hoare quadruple {76940#true} {76940#true} #1194#return; {76940#true} is VALID [2022-04-27 15:21:05,606 INFO L290 TraceCheckUtils]: 112: Hoare triple {76940#true} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {76940#true} is VALID [2022-04-27 15:21:05,606 INFO L290 TraceCheckUtils]: 113: Hoare triple {76940#true} assume ~status~3 >= 0; {76940#true} is VALID [2022-04-27 15:21:05,606 INFO L290 TraceCheckUtils]: 114: Hoare triple {76940#true} assume !(~myStatus~0 >= 0); {76940#true} is VALID [2022-04-27 15:21:05,606 INFO L290 TraceCheckUtils]: 115: Hoare triple {76940#true} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {76940#true} is VALID [2022-04-27 15:21:05,607 INFO L272 TraceCheckUtils]: 116: Hoare triple {76940#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {77137#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:05,607 INFO L290 TraceCheckUtils]: 117: Hoare triple {77137#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {76940#true} is VALID [2022-04-27 15:21:05,607 INFO L290 TraceCheckUtils]: 118: Hoare triple {76940#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {76940#true} is VALID [2022-04-27 15:21:05,607 INFO L290 TraceCheckUtils]: 119: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,607 INFO L284 TraceCheckUtils]: 120: Hoare quadruple {76940#true} {76940#true} #1196#return; {76940#true} is VALID [2022-04-27 15:21:05,607 INFO L290 TraceCheckUtils]: 121: Hoare triple {76940#true} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {76940#true} is VALID [2022-04-27 15:21:05,607 INFO L290 TraceCheckUtils]: 122: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:05,607 INFO L284 TraceCheckUtils]: 123: Hoare quadruple {76940#true} {76941#false} #1230#return; {76941#false} is VALID [2022-04-27 15:21:05,607 INFO L290 TraceCheckUtils]: 124: Hoare triple {76941#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {76941#false} is VALID [2022-04-27 15:21:05,607 INFO L290 TraceCheckUtils]: 125: Hoare triple {76941#false} assume 0 != ~we_should_unload~0; {76941#false} is VALID [2022-04-27 15:21:05,607 INFO L290 TraceCheckUtils]: 126: Hoare triple {76941#false} assume !(1 == ~pended~0); {76941#false} is VALID [2022-04-27 15:21:05,607 INFO L290 TraceCheckUtils]: 127: Hoare triple {76941#false} assume !(1 == ~pended~0); {76941#false} is VALID [2022-04-27 15:21:05,607 INFO L290 TraceCheckUtils]: 128: Hoare triple {76941#false} assume !(~s~0 == ~UNLOADED~0); {76941#false} is VALID [2022-04-27 15:21:05,607 INFO L290 TraceCheckUtils]: 129: Hoare triple {76941#false} assume !(-1 == ~status~5); {76941#false} is VALID [2022-04-27 15:21:05,607 INFO L290 TraceCheckUtils]: 130: Hoare triple {76941#false} assume ~s~0 != ~SKIP2~0; {76941#false} is VALID [2022-04-27 15:21:05,608 INFO L290 TraceCheckUtils]: 131: Hoare triple {76941#false} assume ~s~0 != ~IPC~0; {76941#false} is VALID [2022-04-27 15:21:05,608 INFO L290 TraceCheckUtils]: 132: Hoare triple {76941#false} assume !(~s~0 != ~DC~0); {76941#false} is VALID [2022-04-27 15:21:05,608 INFO L290 TraceCheckUtils]: 133: Hoare triple {76941#false} assume !(1 == ~pended~0); {76941#false} is VALID [2022-04-27 15:21:05,608 INFO L290 TraceCheckUtils]: 134: Hoare triple {76941#false} assume ~s~0 == ~DC~0; {76941#false} is VALID [2022-04-27 15:21:05,608 INFO L290 TraceCheckUtils]: 135: Hoare triple {76941#false} assume 259 == ~status~5; {76941#false} is VALID [2022-04-27 15:21:05,608 INFO L272 TraceCheckUtils]: 136: Hoare triple {76941#false} call errorFn(); {76941#false} is VALID [2022-04-27 15:21:05,608 INFO L290 TraceCheckUtils]: 137: Hoare triple {76941#false} assume !false; {76941#false} is VALID [2022-04-27 15:21:05,608 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-04-27 15:21:05,608 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:21:05,608 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2079328822] [2022-04-27 15:21:05,608 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2079328822] provided 0 perfect and 1 imperfect interpolant sequences [2022-04-27 15:21:05,609 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [254402152] [2022-04-27 15:21:05,609 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:21:05,609 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-04-27 15:21:05,609 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2022-04-27 15:21:05,610 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-04-27 15:21:05,610 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2022-04-27 15:21:07,433 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:07,443 INFO L263 TraceCheckSpWp]: Trace formula consists of 1963 conjuncts, 8 conjunts are in the unsatisfiable core [2022-04-27 15:21:07,479 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:07,483 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-04-27 15:21:08,091 INFO L272 TraceCheckUtils]: 0: Hoare triple {76940#true} call ULTIMATE.init(); {76940#true} is VALID [2022-04-27 15:21:08,091 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {76940#true} is VALID [2022-04-27 15:21:08,091 INFO L290 TraceCheckUtils]: 2: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,091 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {76940#true} {76940#true} #1270#return; {76940#true} is VALID [2022-04-27 15:21:08,091 INFO L272 TraceCheckUtils]: 4: Hoare triple {76940#true} call #t~ret213 := main(); {76940#true} is VALID [2022-04-27 15:21:08,091 INFO L290 TraceCheckUtils]: 5: Hoare triple {76940#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {76940#true} is VALID [2022-04-27 15:21:08,091 INFO L272 TraceCheckUtils]: 6: Hoare triple {76940#true} call _BLAST_init(); {76940#true} is VALID [2022-04-27 15:21:08,091 INFO L290 TraceCheckUtils]: 7: Hoare triple {76940#true} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L290 TraceCheckUtils]: 8: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {76940#true} {76940#true} #1216#return; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L272 TraceCheckUtils]: 10: Hoare triple {76940#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L290 TraceCheckUtils]: 11: Hoare triple {76940#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L272 TraceCheckUtils]: 12: Hoare triple {76940#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L290 TraceCheckUtils]: 13: Hoare triple {76940#true} ~cond := #in~cond; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L290 TraceCheckUtils]: 14: Hoare triple {76940#true} assume !(0 == ~cond); {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L290 TraceCheckUtils]: 15: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {76940#true} {76940#true} #1254#return; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L290 TraceCheckUtils]: 17: Hoare triple {76940#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L290 TraceCheckUtils]: 18: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {76940#true} {76940#true} #1218#return; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L290 TraceCheckUtils]: 20: Hoare triple {76940#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L290 TraceCheckUtils]: 21: Hoare triple {76940#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L290 TraceCheckUtils]: 22: Hoare triple {76940#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L272 TraceCheckUtils]: 23: Hoare triple {76940#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L290 TraceCheckUtils]: 24: Hoare triple {76940#true} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {76940#true} is VALID [2022-04-27 15:21:08,092 INFO L272 TraceCheckUtils]: 25: Hoare triple {76940#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {76940#true} is VALID [2022-04-27 15:21:08,093 INFO L290 TraceCheckUtils]: 26: Hoare triple {76940#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {76940#true} is VALID [2022-04-27 15:21:08,093 INFO L290 TraceCheckUtils]: 27: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~5; {76940#true} is VALID [2022-04-27 15:21:08,093 INFO L290 TraceCheckUtils]: 28: Hoare triple {76940#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {76940#true} is VALID [2022-04-27 15:21:08,093 INFO L290 TraceCheckUtils]: 29: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,093 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {76940#true} {76940#true} #1176#return; {76940#true} is VALID [2022-04-27 15:21:08,093 INFO L290 TraceCheckUtils]: 31: Hoare triple {76940#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {76940#true} is VALID [2022-04-27 15:21:08,093 INFO L290 TraceCheckUtils]: 32: Hoare triple {76940#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {76940#true} is VALID [2022-04-27 15:21:08,093 INFO L272 TraceCheckUtils]: 33: Hoare triple {76940#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {76940#true} is VALID [2022-04-27 15:21:08,093 INFO L290 TraceCheckUtils]: 34: Hoare triple {76940#true} #t~loopctr214 := 0; {77072#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:21:08,094 INFO L290 TraceCheckUtils]: 35: Hoare triple {77072#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {77247#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (< (mod (+ |#Ultimate.C_memset_#t~loopctr214| 4294967295) 4294967296) (mod |#Ultimate.C_memset_#amount| 4294967296)) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} is VALID [2022-04-27 15:21:08,095 INFO L290 TraceCheckUtils]: 36: Hoare triple {77247#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (< (mod (+ |#Ultimate.C_memset_#t~loopctr214| 4294967295) 4294967296) (mod |#Ultimate.C_memset_#amount| 4294967296)) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {77251#(and (< 0 (+ (div (+ (* (- 1) (mod |#Ultimate.C_memset_#amount| 4294967296)) 1) 4294967296) 1)) (< 0 (mod |#Ultimate.C_memset_#amount| 4294967296)))} is VALID [2022-04-27 15:21:08,096 INFO L290 TraceCheckUtils]: 37: Hoare triple {77251#(and (< 0 (+ (div (+ (* (- 1) (mod |#Ultimate.C_memset_#amount| 4294967296)) 1) 4294967296) 1)) (< 0 (mod |#Ultimate.C_memset_#amount| 4294967296)))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {77251#(and (< 0 (+ (div (+ (* (- 1) (mod |#Ultimate.C_memset_#amount| 4294967296)) 1) 4294967296) 1)) (< 0 (mod |#Ultimate.C_memset_#amount| 4294967296)))} is VALID [2022-04-27 15:21:08,097 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {77251#(and (< 0 (+ (div (+ (* (- 1) (mod |#Ultimate.C_memset_#amount| 4294967296)) 1) 4294967296) 1)) (< 0 (mod |#Ultimate.C_memset_#amount| 4294967296)))} {76940#true} #1178#return; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L290 TraceCheckUtils]: 39: Hoare triple {76941#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L272 TraceCheckUtils]: 40: Hoare triple {76941#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L290 TraceCheckUtils]: 41: Hoare triple {76941#false} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L290 TraceCheckUtils]: 42: Hoare triple {76941#false} assume 0 == ~__BLAST_NONDET~2; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L290 TraceCheckUtils]: 43: Hoare triple {76941#false} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L290 TraceCheckUtils]: 44: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {76941#false} {76941#false} #1180#return; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L290 TraceCheckUtils]: 46: Hoare triple {76941#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L290 TraceCheckUtils]: 47: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {76941#false} {76940#true} #1220#return; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L290 TraceCheckUtils]: 49: Hoare triple {76941#false} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L272 TraceCheckUtils]: 50: Hoare triple {76941#false} call stub_driver_init(); {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L290 TraceCheckUtils]: 51: Hoare triple {76941#false} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L290 TraceCheckUtils]: 52: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {76941#false} {76941#false} #1222#return; {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L290 TraceCheckUtils]: 54: Hoare triple {76941#false} assume !!(~status~5 >= 0); {76941#false} is VALID [2022-04-27 15:21:08,097 INFO L290 TraceCheckUtils]: 55: Hoare triple {76941#false} assume !(0 == ~__BLAST_NONDET~0); {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 56: Hoare triple {76941#false} assume !(1 == ~__BLAST_NONDET~0); {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 57: Hoare triple {76941#false} assume !(2 == ~__BLAST_NONDET~0); {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 58: Hoare triple {76941#false} assume 3 == ~__BLAST_NONDET~0; {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L272 TraceCheckUtils]: 59: Hoare triple {76941#false} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 60: Hoare triple {76941#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 61: Hoare triple {76941#false} assume 0 == #t~mem81 % 256;havoc #t~mem81; {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 62: Hoare triple {76941#false} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L272 TraceCheckUtils]: 63: Hoare triple {76941#false} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 64: Hoare triple {76941#false} #t~loopctr215 := 0; {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 65: Hoare triple {76941#false} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 66: Hoare triple {76941#false} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 67: Hoare triple {76941#false} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 68: Hoare triple {76941#false} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 69: Hoare triple {76941#false} assume #res.base == dest.base && #res.offset == dest.offset; {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L284 TraceCheckUtils]: 70: Hoare quadruple {76941#false} {76941#false} #1186#return; {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 71: Hoare triple {76941#false} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 72: Hoare triple {76941#false} assume !(~s~0 != ~NP~0); {76941#false} is VALID [2022-04-27 15:21:08,098 INFO L290 TraceCheckUtils]: 73: Hoare triple {76941#false} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L290 TraceCheckUtils]: 74: Hoare triple {76941#false} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L272 TraceCheckUtils]: 75: Hoare triple {76941#false} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L290 TraceCheckUtils]: 76: Hoare triple {76941#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L290 TraceCheckUtils]: 77: Hoare triple {76941#false} assume 0 != ~compRegistered~0; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L272 TraceCheckUtils]: 78: Hoare triple {76941#false} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L290 TraceCheckUtils]: 79: Hoare triple {76941#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L272 TraceCheckUtils]: 80: Hoare triple {76941#false} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L290 TraceCheckUtils]: 81: Hoare triple {76941#false} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L290 TraceCheckUtils]: 82: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L284 TraceCheckUtils]: 83: Hoare quadruple {76941#false} {76941#false} #1174#return; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L290 TraceCheckUtils]: 84: Hoare triple {76941#false} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L290 TraceCheckUtils]: 85: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L284 TraceCheckUtils]: 86: Hoare quadruple {76941#false} {76941#false} #1210#return; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L290 TraceCheckUtils]: 87: Hoare triple {76941#false} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L290 TraceCheckUtils]: 88: Hoare triple {76941#false} assume -1073741802 == ~compRetStatus~0; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L272 TraceCheckUtils]: 89: Hoare triple {76941#false} call stubMoreProcessingRequired(); {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L290 TraceCheckUtils]: 90: Hoare triple {76941#false} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {76941#false} is VALID [2022-04-27 15:21:08,099 INFO L290 TraceCheckUtils]: 91: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L284 TraceCheckUtils]: 92: Hoare quadruple {76941#false} {76941#false} #1212#return; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 93: Hoare triple {76941#false} assume !(0 == ~__BLAST_NONDET~11); {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 94: Hoare triple {76941#false} assume !(1 == ~__BLAST_NONDET~11); {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 95: Hoare triple {76941#false} ~returnVal2~0 := 259; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 96: Hoare triple {76941#false} assume !(~s~0 == ~NP~0); {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 97: Hoare triple {76941#false} assume ~s~0 == ~MPR1~0; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 98: Hoare triple {76941#false} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 99: Hoare triple {76941#false} #res := ~returnVal2~0; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 100: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L284 TraceCheckUtils]: 101: Hoare quadruple {76941#false} {76941#false} #1192#return; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 102: Hoare triple {76941#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 103: Hoare triple {76941#false} assume 259 == ~status~3; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L272 TraceCheckUtils]: 104: Hoare triple {76941#false} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 105: Hoare triple {76941#false} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 106: Hoare triple {76941#false} assume ~s~0 == ~MPR3~0; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 107: Hoare triple {76941#false} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 108: Hoare triple {76941#false} assume 0 == ~__BLAST_NONDET~13; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 109: Hoare triple {76941#false} #res := 0; {76941#false} is VALID [2022-04-27 15:21:08,100 INFO L290 TraceCheckUtils]: 110: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L284 TraceCheckUtils]: 111: Hoare quadruple {76941#false} {76941#false} #1194#return; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 112: Hoare triple {76941#false} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 113: Hoare triple {76941#false} assume ~status~3 >= 0; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 114: Hoare triple {76941#false} assume !(~myStatus~0 >= 0); {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 115: Hoare triple {76941#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L272 TraceCheckUtils]: 116: Hoare triple {76941#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 117: Hoare triple {76941#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 118: Hoare triple {76941#false} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 119: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L284 TraceCheckUtils]: 120: Hoare quadruple {76941#false} {76941#false} #1196#return; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 121: Hoare triple {76941#false} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 122: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L284 TraceCheckUtils]: 123: Hoare quadruple {76941#false} {76941#false} #1230#return; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 124: Hoare triple {76941#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 125: Hoare triple {76941#false} assume 0 != ~we_should_unload~0; {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 126: Hoare triple {76941#false} assume !(1 == ~pended~0); {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 127: Hoare triple {76941#false} assume !(1 == ~pended~0); {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 128: Hoare triple {76941#false} assume !(~s~0 == ~UNLOADED~0); {76941#false} is VALID [2022-04-27 15:21:08,101 INFO L290 TraceCheckUtils]: 129: Hoare triple {76941#false} assume !(-1 == ~status~5); {76941#false} is VALID [2022-04-27 15:21:08,102 INFO L290 TraceCheckUtils]: 130: Hoare triple {76941#false} assume ~s~0 != ~SKIP2~0; {76941#false} is VALID [2022-04-27 15:21:08,102 INFO L290 TraceCheckUtils]: 131: Hoare triple {76941#false} assume ~s~0 != ~IPC~0; {76941#false} is VALID [2022-04-27 15:21:08,102 INFO L290 TraceCheckUtils]: 132: Hoare triple {76941#false} assume !(~s~0 != ~DC~0); {76941#false} is VALID [2022-04-27 15:21:08,102 INFO L290 TraceCheckUtils]: 133: Hoare triple {76941#false} assume !(1 == ~pended~0); {76941#false} is VALID [2022-04-27 15:21:08,102 INFO L290 TraceCheckUtils]: 134: Hoare triple {76941#false} assume ~s~0 == ~DC~0; {76941#false} is VALID [2022-04-27 15:21:08,102 INFO L290 TraceCheckUtils]: 135: Hoare triple {76941#false} assume 259 == ~status~5; {76941#false} is VALID [2022-04-27 15:21:08,102 INFO L272 TraceCheckUtils]: 136: Hoare triple {76941#false} call errorFn(); {76941#false} is VALID [2022-04-27 15:21:08,102 INFO L290 TraceCheckUtils]: 137: Hoare triple {76941#false} assume !false; {76941#false} is VALID [2022-04-27 15:21:08,102 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-04-27 15:21:08,102 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-04-27 15:21:08,553 INFO L290 TraceCheckUtils]: 137: Hoare triple {76941#false} assume !false; {76941#false} is VALID [2022-04-27 15:21:08,553 INFO L272 TraceCheckUtils]: 136: Hoare triple {76941#false} call errorFn(); {76941#false} is VALID [2022-04-27 15:21:08,553 INFO L290 TraceCheckUtils]: 135: Hoare triple {76941#false} assume 259 == ~status~5; {76941#false} is VALID [2022-04-27 15:21:08,553 INFO L290 TraceCheckUtils]: 134: Hoare triple {76941#false} assume ~s~0 == ~DC~0; {76941#false} is VALID [2022-04-27 15:21:08,553 INFO L290 TraceCheckUtils]: 133: Hoare triple {76941#false} assume !(1 == ~pended~0); {76941#false} is VALID [2022-04-27 15:21:08,553 INFO L290 TraceCheckUtils]: 132: Hoare triple {76941#false} assume !(~s~0 != ~DC~0); {76941#false} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 131: Hoare triple {76941#false} assume ~s~0 != ~IPC~0; {76941#false} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 130: Hoare triple {76941#false} assume ~s~0 != ~SKIP2~0; {76941#false} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 129: Hoare triple {76941#false} assume !(-1 == ~status~5); {76941#false} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 128: Hoare triple {76941#false} assume !(~s~0 == ~UNLOADED~0); {76941#false} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 127: Hoare triple {76941#false} assume !(1 == ~pended~0); {76941#false} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 126: Hoare triple {76941#false} assume !(1 == ~pended~0); {76941#false} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 125: Hoare triple {76941#false} assume 0 != ~we_should_unload~0; {76941#false} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 124: Hoare triple {76941#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {76941#false} is VALID [2022-04-27 15:21:08,554 INFO L284 TraceCheckUtils]: 123: Hoare quadruple {76940#true} {76941#false} #1230#return; {76941#false} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 122: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 121: Hoare triple {76940#true} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {76940#true} is VALID [2022-04-27 15:21:08,554 INFO L284 TraceCheckUtils]: 120: Hoare quadruple {76940#true} {76940#true} #1196#return; {76940#true} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 119: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 118: Hoare triple {76940#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {76940#true} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 117: Hoare triple {76940#true} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {76940#true} is VALID [2022-04-27 15:21:08,554 INFO L272 TraceCheckUtils]: 116: Hoare triple {76940#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {76940#true} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 115: Hoare triple {76940#true} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {76940#true} is VALID [2022-04-27 15:21:08,554 INFO L290 TraceCheckUtils]: 114: Hoare triple {76940#true} assume !(~myStatus~0 >= 0); {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 113: Hoare triple {76940#true} assume ~status~3 >= 0; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 112: Hoare triple {76940#true} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L284 TraceCheckUtils]: 111: Hoare quadruple {76940#true} {76940#true} #1194#return; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 110: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 109: Hoare triple {76940#true} #res := 0; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 108: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~13; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 107: Hoare triple {76940#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 106: Hoare triple {76940#true} assume ~s~0 == ~MPR3~0; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 105: Hoare triple {76940#true} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L272 TraceCheckUtils]: 104: Hoare triple {76940#true} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 103: Hoare triple {76940#true} assume 259 == ~status~3; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 102: Hoare triple {76940#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L284 TraceCheckUtils]: 101: Hoare quadruple {76940#true} {76940#true} #1192#return; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 100: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 99: Hoare triple {76940#true} #res := ~returnVal2~0; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 98: Hoare triple {76940#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 97: Hoare triple {76940#true} assume ~s~0 == ~MPR1~0; {76940#true} is VALID [2022-04-27 15:21:08,555 INFO L290 TraceCheckUtils]: 96: Hoare triple {76940#true} assume !(~s~0 == ~NP~0); {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L290 TraceCheckUtils]: 95: Hoare triple {76940#true} ~returnVal2~0 := 259; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L290 TraceCheckUtils]: 94: Hoare triple {76940#true} assume !(1 == ~__BLAST_NONDET~11); {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L290 TraceCheckUtils]: 93: Hoare triple {76940#true} assume !(0 == ~__BLAST_NONDET~11); {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L284 TraceCheckUtils]: 92: Hoare quadruple {76940#true} {76940#true} #1212#return; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L290 TraceCheckUtils]: 91: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L290 TraceCheckUtils]: 90: Hoare triple {76940#true} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L272 TraceCheckUtils]: 89: Hoare triple {76940#true} call stubMoreProcessingRequired(); {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L290 TraceCheckUtils]: 88: Hoare triple {76940#true} assume -1073741802 == ~compRetStatus~0; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L290 TraceCheckUtils]: 87: Hoare triple {76940#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L284 TraceCheckUtils]: 86: Hoare quadruple {76940#true} {76940#true} #1210#return; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L290 TraceCheckUtils]: 85: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L290 TraceCheckUtils]: 84: Hoare triple {76940#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L284 TraceCheckUtils]: 83: Hoare quadruple {76940#true} {76940#true} #1174#return; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L290 TraceCheckUtils]: 82: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L290 TraceCheckUtils]: 81: Hoare triple {76940#true} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L272 TraceCheckUtils]: 80: Hoare triple {76940#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L290 TraceCheckUtils]: 79: Hoare triple {76940#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {76940#true} is VALID [2022-04-27 15:21:08,556 INFO L272 TraceCheckUtils]: 78: Hoare triple {76940#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 77: Hoare triple {76940#true} assume 0 != ~compRegistered~0; {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 76: Hoare triple {76940#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L272 TraceCheckUtils]: 75: Hoare triple {76940#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 74: Hoare triple {76940#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 73: Hoare triple {76940#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 72: Hoare triple {76940#true} assume !(~s~0 != ~NP~0); {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 71: Hoare triple {76940#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L284 TraceCheckUtils]: 70: Hoare quadruple {76940#true} {76940#true} #1186#return; {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 69: Hoare triple {76940#true} assume #res.base == dest.base && #res.offset == dest.offset; {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 68: Hoare triple {76940#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 67: Hoare triple {76940#true} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 66: Hoare triple {76940#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 65: Hoare triple {76940#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 64: Hoare triple {76940#true} #t~loopctr215 := 0; {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L272 TraceCheckUtils]: 63: Hoare triple {76940#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 62: Hoare triple {76940#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 61: Hoare triple {76940#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {76940#true} is VALID [2022-04-27 15:21:08,557 INFO L290 TraceCheckUtils]: 60: Hoare triple {76940#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {76940#true} is VALID [2022-04-27 15:21:08,558 INFO L272 TraceCheckUtils]: 59: Hoare triple {76941#false} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {76940#true} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 58: Hoare triple {76941#false} assume 3 == ~__BLAST_NONDET~0; {76941#false} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 57: Hoare triple {76941#false} assume !(2 == ~__BLAST_NONDET~0); {76941#false} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 56: Hoare triple {76941#false} assume !(1 == ~__BLAST_NONDET~0); {76941#false} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 55: Hoare triple {76941#false} assume !(0 == ~__BLAST_NONDET~0); {76941#false} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 54: Hoare triple {76941#false} assume !!(~status~5 >= 0); {76941#false} is VALID [2022-04-27 15:21:08,558 INFO L284 TraceCheckUtils]: 53: Hoare quadruple {76940#true} {76941#false} #1222#return; {76941#false} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 52: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 51: Hoare triple {76940#true} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {76940#true} is VALID [2022-04-27 15:21:08,558 INFO L272 TraceCheckUtils]: 50: Hoare triple {76941#false} call stub_driver_init(); {76940#true} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 49: Hoare triple {76941#false} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {76941#false} is VALID [2022-04-27 15:21:08,558 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {76941#false} {76940#true} #1220#return; {76941#false} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 47: Hoare triple {76941#false} assume true; {76941#false} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 46: Hoare triple {76941#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {76941#false} is VALID [2022-04-27 15:21:08,558 INFO L284 TraceCheckUtils]: 45: Hoare quadruple {76940#true} {76941#false} #1180#return; {76941#false} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 44: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 43: Hoare triple {76940#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {76940#true} is VALID [2022-04-27 15:21:08,558 INFO L290 TraceCheckUtils]: 42: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~2; {76940#true} is VALID [2022-04-27 15:21:08,559 INFO L290 TraceCheckUtils]: 41: Hoare triple {76940#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {76940#true} is VALID [2022-04-27 15:21:08,559 INFO L272 TraceCheckUtils]: 40: Hoare triple {76941#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {76940#true} is VALID [2022-04-27 15:21:08,559 INFO L290 TraceCheckUtils]: 39: Hoare triple {76941#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {76941#false} is VALID [2022-04-27 15:21:08,559 INFO L284 TraceCheckUtils]: 38: Hoare quadruple {77858#(not (= 55 |#Ultimate.C_memset_#amount|))} {76940#true} #1178#return; {76941#false} is VALID [2022-04-27 15:21:08,560 INFO L290 TraceCheckUtils]: 37: Hoare triple {77858#(not (= 55 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {77858#(not (= 55 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:08,560 INFO L290 TraceCheckUtils]: 36: Hoare triple {77865#(or (not (= 55 |#Ultimate.C_memset_#amount|)) (< (mod |#Ultimate.C_memset_#t~loopctr214| 4294967296) (mod |#Ultimate.C_memset_#amount| 4294967296)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {77858#(not (= 55 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:08,564 INFO L290 TraceCheckUtils]: 35: Hoare triple {77869#(or (< (mod (+ |#Ultimate.C_memset_#t~loopctr214| 1) 4294967296) (mod |#Ultimate.C_memset_#amount| 4294967296)) (not (< (mod |#Ultimate.C_memset_#t~loopctr214| 4294967296) (mod |#Ultimate.C_memset_#amount| 4294967296))) (not (= 55 |#Ultimate.C_memset_#amount|)))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {77865#(or (not (= 55 |#Ultimate.C_memset_#amount|)) (< (mod |#Ultimate.C_memset_#t~loopctr214| 4294967296) (mod |#Ultimate.C_memset_#amount| 4294967296)))} is VALID [2022-04-27 15:21:08,564 INFO L290 TraceCheckUtils]: 34: Hoare triple {76940#true} #t~loopctr214 := 0; {77869#(or (< (mod (+ |#Ultimate.C_memset_#t~loopctr214| 1) 4294967296) (mod |#Ultimate.C_memset_#amount| 4294967296)) (not (< (mod |#Ultimate.C_memset_#t~loopctr214| 4294967296) (mod |#Ultimate.C_memset_#amount| 4294967296))) (not (= 55 |#Ultimate.C_memset_#amount|)))} is VALID [2022-04-27 15:21:08,564 INFO L272 TraceCheckUtils]: 33: Hoare triple {76940#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {76940#true} is VALID [2022-04-27 15:21:08,564 INFO L290 TraceCheckUtils]: 32: Hoare triple {76940#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {76940#true} is VALID [2022-04-27 15:21:08,564 INFO L290 TraceCheckUtils]: 31: Hoare triple {76940#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {76940#true} is VALID [2022-04-27 15:21:08,564 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {76940#true} {76940#true} #1176#return; {76940#true} is VALID [2022-04-27 15:21:08,564 INFO L290 TraceCheckUtils]: 29: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,564 INFO L290 TraceCheckUtils]: 28: Hoare triple {76940#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {76940#true} is VALID [2022-04-27 15:21:08,564 INFO L290 TraceCheckUtils]: 27: Hoare triple {76940#true} assume 0 == ~__BLAST_NONDET~5; {76940#true} is VALID [2022-04-27 15:21:08,564 INFO L290 TraceCheckUtils]: 26: Hoare triple {76940#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L272 TraceCheckUtils]: 25: Hoare triple {76940#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L290 TraceCheckUtils]: 24: Hoare triple {76940#true} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L272 TraceCheckUtils]: 23: Hoare triple {76940#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L290 TraceCheckUtils]: 22: Hoare triple {76940#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L290 TraceCheckUtils]: 21: Hoare triple {76940#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L290 TraceCheckUtils]: 20: Hoare triple {76940#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {76940#true} {76940#true} #1218#return; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L290 TraceCheckUtils]: 18: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L290 TraceCheckUtils]: 17: Hoare triple {76940#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {76940#true} {76940#true} #1254#return; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L290 TraceCheckUtils]: 15: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L290 TraceCheckUtils]: 14: Hoare triple {76940#true} assume !(0 == ~cond); {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L290 TraceCheckUtils]: 13: Hoare triple {76940#true} ~cond := #in~cond; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L272 TraceCheckUtils]: 12: Hoare triple {76940#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L290 TraceCheckUtils]: 11: Hoare triple {76940#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L272 TraceCheckUtils]: 10: Hoare triple {76940#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {76940#true} {76940#true} #1216#return; {76940#true} is VALID [2022-04-27 15:21:08,565 INFO L290 TraceCheckUtils]: 8: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,566 INFO L290 TraceCheckUtils]: 7: Hoare triple {76940#true} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {76940#true} is VALID [2022-04-27 15:21:08,566 INFO L272 TraceCheckUtils]: 6: Hoare triple {76940#true} call _BLAST_init(); {76940#true} is VALID [2022-04-27 15:21:08,566 INFO L290 TraceCheckUtils]: 5: Hoare triple {76940#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {76940#true} is VALID [2022-04-27 15:21:08,566 INFO L272 TraceCheckUtils]: 4: Hoare triple {76940#true} call #t~ret213 := main(); {76940#true} is VALID [2022-04-27 15:21:08,566 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {76940#true} {76940#true} #1270#return; {76940#true} is VALID [2022-04-27 15:21:08,566 INFO L290 TraceCheckUtils]: 2: Hoare triple {76940#true} assume true; {76940#true} is VALID [2022-04-27 15:21:08,566 INFO L290 TraceCheckUtils]: 1: Hoare triple {76940#true} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {76940#true} is VALID [2022-04-27 15:21:08,566 INFO L272 TraceCheckUtils]: 0: Hoare triple {76940#true} call ULTIMATE.init(); {76940#true} is VALID [2022-04-27 15:21:08,566 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-04-27 15:21:08,566 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [254402152] provided 0 perfect and 2 imperfect interpolant sequences [2022-04-27 15:21:08,566 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-04-27 15:21:08,566 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [15, 5, 5] total 20 [2022-04-27 15:21:08,567 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1287016442] [2022-04-27 15:21:08,567 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-04-27 15:21:08,567 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 20 states have (on average 8.95) internal successors, (179), 10 states have internal predecessors, (179), 2 states have call successors, (44), 12 states have call predecessors, (44), 5 states have return successors, (29), 2 states have call predecessors, (29), 2 states have call successors, (29) Word has length 138 [2022-04-27 15:21:14,594 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:21:14,595 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 20 states, 20 states have (on average 8.95) internal successors, (179), 10 states have internal predecessors, (179), 2 states have call successors, (44), 12 states have call predecessors, (44), 5 states have return successors, (29), 2 states have call predecessors, (29), 2 states have call successors, (29) [2022-04-27 15:21:14,759 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 252 edges. 252 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:21:14,759 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2022-04-27 15:21:14,759 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:21:14,759 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2022-04-27 15:21:14,760 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=79, Invalid=301, Unknown=0, NotChecked=0, Total=380 [2022-04-27 15:21:14,760 INFO L87 Difference]: Start difference. First operand 237 states and 252 transitions. Second operand has 20 states, 20 states have (on average 8.95) internal successors, (179), 10 states have internal predecessors, (179), 2 states have call successors, (44), 12 states have call predecessors, (44), 5 states have return successors, (29), 2 states have call predecessors, (29), 2 states have call successors, (29) [2022-04-27 15:21:16,906 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:21:24,443 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:21:24,443 INFO L93 Difference]: Finished difference Result 441 states and 478 transitions. [2022-04-27 15:21:24,443 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 16 states. [2022-04-27 15:21:24,443 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 20 states have (on average 8.95) internal successors, (179), 10 states have internal predecessors, (179), 2 states have call successors, (44), 12 states have call predecessors, (44), 5 states have return successors, (29), 2 states have call predecessors, (29), 2 states have call successors, (29) Word has length 138 [2022-04-27 15:21:24,443 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:21:24,444 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 20 states, 20 states have (on average 8.95) internal successors, (179), 10 states have internal predecessors, (179), 2 states have call successors, (44), 12 states have call predecessors, (44), 5 states have return successors, (29), 2 states have call predecessors, (29), 2 states have call successors, (29) [2022-04-27 15:21:24,445 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 16 states to 16 states and 272 transitions. [2022-04-27 15:21:24,445 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 20 states, 20 states have (on average 8.95) internal successors, (179), 10 states have internal predecessors, (179), 2 states have call successors, (44), 12 states have call predecessors, (44), 5 states have return successors, (29), 2 states have call predecessors, (29), 2 states have call successors, (29) [2022-04-27 15:21:24,447 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 16 states to 16 states and 272 transitions. [2022-04-27 15:21:24,447 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 16 states and 272 transitions. [2022-04-27 15:21:24,712 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 272 edges. 272 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:21:24,715 INFO L225 Difference]: With dead ends: 441 [2022-04-27 15:21:24,715 INFO L226 Difference]: Without dead ends: 253 [2022-04-27 15:21:24,716 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 327 GetRequests, 296 SyntacticMatches, 1 SemanticMatches, 30 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 203 ImplicationChecksByTransitivity, 0.8s TimeCoverageRelationStatistics Valid=242, Invalid=750, Unknown=0, NotChecked=0, Total=992 [2022-04-27 15:21:24,716 INFO L413 NwaCegarLoop]: 124 mSDtfsCounter, 310 mSDsluCounter, 385 mSDsCounter, 0 mSdLazyCounter, 848 mSolverCounterSat, 199 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 312 SdHoareTripleChecker+Valid, 509 SdHoareTripleChecker+Invalid, 1048 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 199 IncrementalHoareTripleChecker+Valid, 848 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.0s IncrementalHoareTripleChecker+Time [2022-04-27 15:21:24,716 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [312 Valid, 509 Invalid, 1048 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [199 Valid, 848 Invalid, 1 Unknown, 0 Unchecked, 5.0s Time] [2022-04-27 15:21:24,717 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 253 states. [2022-04-27 15:21:24,964 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 253 to 243. [2022-04-27 15:21:24,964 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:21:24,964 INFO L82 GeneralOperation]: Start isEquivalent. First operand 253 states. Second operand has 243 states, 183 states have (on average 1.0819672131147542) internal successors, (198), 183 states have internal predecessors, (198), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:21:24,964 INFO L74 IsIncluded]: Start isIncluded. First operand 253 states. Second operand has 243 states, 183 states have (on average 1.0819672131147542) internal successors, (198), 183 states have internal predecessors, (198), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:21:24,964 INFO L87 Difference]: Start difference. First operand 253 states. Second operand has 243 states, 183 states have (on average 1.0819672131147542) internal successors, (198), 183 states have internal predecessors, (198), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:21:24,967 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:21:24,967 INFO L93 Difference]: Finished difference Result 253 states and 270 transitions. [2022-04-27 15:21:24,967 INFO L276 IsEmpty]: Start isEmpty. Operand 253 states and 270 transitions. [2022-04-27 15:21:24,967 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:21:24,967 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:21:24,968 INFO L74 IsIncluded]: Start isIncluded. First operand has 243 states, 183 states have (on average 1.0819672131147542) internal successors, (198), 183 states have internal predecessors, (198), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) Second operand 253 states. [2022-04-27 15:21:24,968 INFO L87 Difference]: Start difference. First operand has 243 states, 183 states have (on average 1.0819672131147542) internal successors, (198), 183 states have internal predecessors, (198), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) Second operand 253 states. [2022-04-27 15:21:24,971 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:21:24,971 INFO L93 Difference]: Finished difference Result 253 states and 270 transitions. [2022-04-27 15:21:24,971 INFO L276 IsEmpty]: Start isEmpty. Operand 253 states and 270 transitions. [2022-04-27 15:21:24,971 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:21:24,971 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:21:24,971 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:21:24,971 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:21:24,972 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 243 states, 183 states have (on average 1.0819672131147542) internal successors, (198), 183 states have internal predecessors, (198), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:21:24,975 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 243 states to 243 states and 258 transitions. [2022-04-27 15:21:24,975 INFO L78 Accepts]: Start accepts. Automaton has 243 states and 258 transitions. Word has length 138 [2022-04-27 15:21:24,975 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:21:24,975 INFO L495 AbstractCegarLoop]: Abstraction has 243 states and 258 transitions. [2022-04-27 15:21:24,975 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 20 states have (on average 8.95) internal successors, (179), 10 states have internal predecessors, (179), 2 states have call successors, (44), 12 states have call predecessors, (44), 5 states have return successors, (29), 2 states have call predecessors, (29), 2 states have call successors, (29) [2022-04-27 15:21:24,976 INFO L276 IsEmpty]: Start isEmpty. Operand 243 states and 258 transitions. [2022-04-27 15:21:24,976 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 142 [2022-04-27 15:21:24,976 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:21:24,976 INFO L195 NwaCegarLoop]: trace histogram [4, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:21:25,007 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2022-04-27 15:21:25,179 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable40,6 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-04-27 15:21:25,180 INFO L420 AbstractCegarLoop]: === Iteration 42 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:21:25,180 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:21:25,180 INFO L85 PathProgramCache]: Analyzing trace with hash -1886974349, now seen corresponding path program 1 times [2022-04-27 15:21:25,180 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:21:25,180 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1928674096] [2022-04-27 15:21:25,180 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:21:25,180 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:21:25,476 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,558 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:21:25,560 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,564 INFO L290 TraceCheckUtils]: 0: Hoare triple {79573#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {79461#true} is VALID [2022-04-27 15:21:25,565 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,565 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {79461#true} {79461#true} #1270#return; {79461#true} is VALID [2022-04-27 15:21:25,585 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:21:25,586 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,590 INFO L290 TraceCheckUtils]: 0: Hoare triple {79574#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {79461#true} is VALID [2022-04-27 15:21:25,590 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,590 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {79461#true} {79461#true} #1216#return; {79461#true} is VALID [2022-04-27 15:21:25,595 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:21:25,601 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,606 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:21:25,607 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,610 INFO L290 TraceCheckUtils]: 0: Hoare triple {79461#true} ~cond := #in~cond; {79461#true} is VALID [2022-04-27 15:21:25,610 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume !(0 == ~cond); {79461#true} is VALID [2022-04-27 15:21:25,610 INFO L290 TraceCheckUtils]: 2: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,610 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {79461#true} {79461#true} #1254#return; {79461#true} is VALID [2022-04-27 15:21:25,610 INFO L290 TraceCheckUtils]: 0: Hoare triple {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {79461#true} is VALID [2022-04-27 15:21:25,610 INFO L272 TraceCheckUtils]: 1: Hoare triple {79461#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {79461#true} is VALID [2022-04-27 15:21:25,610 INFO L290 TraceCheckUtils]: 2: Hoare triple {79461#true} ~cond := #in~cond; {79461#true} is VALID [2022-04-27 15:21:25,610 INFO L290 TraceCheckUtils]: 3: Hoare triple {79461#true} assume !(0 == ~cond); {79461#true} is VALID [2022-04-27 15:21:25,610 INFO L290 TraceCheckUtils]: 4: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,610 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {79461#true} {79461#true} #1254#return; {79461#true} is VALID [2022-04-27 15:21:25,611 INFO L290 TraceCheckUtils]: 6: Hoare triple {79461#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {79461#true} is VALID [2022-04-27 15:21:25,611 INFO L290 TraceCheckUtils]: 7: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,611 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {79461#true} {79461#true} #1218#return; {79461#true} is VALID [2022-04-27 15:21:25,619 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:21:25,643 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,657 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:21:25,661 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,666 INFO L290 TraceCheckUtils]: 0: Hoare triple {79580#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {79461#true} is VALID [2022-04-27 15:21:25,666 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~5; {79461#true} is VALID [2022-04-27 15:21:25,666 INFO L290 TraceCheckUtils]: 2: Hoare triple {79461#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {79461#true} is VALID [2022-04-27 15:21:25,666 INFO L290 TraceCheckUtils]: 3: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,666 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {79461#true} {79461#true} #1176#return; {79461#true} is VALID [2022-04-27 15:21:25,666 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:21:25,673 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,804 INFO L290 TraceCheckUtils]: 0: Hoare triple {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {79599#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:21:25,805 INFO L290 TraceCheckUtils]: 1: Hoare triple {79599#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79600#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} is VALID [2022-04-27 15:21:25,806 INFO L290 TraceCheckUtils]: 2: Hoare triple {79600#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79601#(and (<= 2 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 2))} is VALID [2022-04-27 15:21:25,806 INFO L290 TraceCheckUtils]: 3: Hoare triple {79601#(and (<= 2 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 2))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79602#(and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 3 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 3))} is VALID [2022-04-27 15:21:25,807 INFO L290 TraceCheckUtils]: 4: Hoare triple {79602#(and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 3 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 3))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79603#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 4)) (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} is VALID [2022-04-27 15:21:25,808 INFO L290 TraceCheckUtils]: 5: Hoare triple {79603#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 4)) (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {79604#(or (<= |#Ultimate.C_memset_#amount| 4) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:25,808 INFO L290 TraceCheckUtils]: 6: Hoare triple {79604#(or (<= |#Ultimate.C_memset_#amount| 4) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {79604#(or (<= |#Ultimate.C_memset_#amount| 4) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:25,809 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {79604#(or (<= |#Ultimate.C_memset_#amount| 4) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {79461#true} #1178#return; {79462#false} is VALID [2022-04-27 15:21:25,809 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 19 [2022-04-27 15:21:25,810 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,814 INFO L290 TraceCheckUtils]: 0: Hoare triple {79461#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {79461#true} is VALID [2022-04-27 15:21:25,814 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~2; {79461#true} is VALID [2022-04-27 15:21:25,814 INFO L290 TraceCheckUtils]: 2: Hoare triple {79461#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {79461#true} is VALID [2022-04-27 15:21:25,814 INFO L290 TraceCheckUtils]: 3: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,814 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {79461#true} {79462#false} #1180#return; {79462#false} is VALID [2022-04-27 15:21:25,815 INFO L290 TraceCheckUtils]: 0: Hoare triple {79580#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {79461#true} is VALID [2022-04-27 15:21:25,816 INFO L272 TraceCheckUtils]: 1: Hoare triple {79461#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {79580#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:21:25,816 INFO L290 TraceCheckUtils]: 2: Hoare triple {79580#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {79461#true} is VALID [2022-04-27 15:21:25,816 INFO L290 TraceCheckUtils]: 3: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~5; {79461#true} is VALID [2022-04-27 15:21:25,816 INFO L290 TraceCheckUtils]: 4: Hoare triple {79461#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {79461#true} is VALID [2022-04-27 15:21:25,816 INFO L290 TraceCheckUtils]: 5: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,816 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {79461#true} {79461#true} #1176#return; {79461#true} is VALID [2022-04-27 15:21:25,816 INFO L290 TraceCheckUtils]: 7: Hoare triple {79461#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {79461#true} is VALID [2022-04-27 15:21:25,816 INFO L290 TraceCheckUtils]: 8: Hoare triple {79461#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {79461#true} is VALID [2022-04-27 15:21:25,817 INFO L272 TraceCheckUtils]: 9: Hoare triple {79461#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:25,817 INFO L290 TraceCheckUtils]: 10: Hoare triple {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {79599#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:21:25,818 INFO L290 TraceCheckUtils]: 11: Hoare triple {79599#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79600#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} is VALID [2022-04-27 15:21:25,819 INFO L290 TraceCheckUtils]: 12: Hoare triple {79600#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79601#(and (<= 2 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 2))} is VALID [2022-04-27 15:21:25,819 INFO L290 TraceCheckUtils]: 13: Hoare triple {79601#(and (<= 2 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 2))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79602#(and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 3 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 3))} is VALID [2022-04-27 15:21:25,820 INFO L290 TraceCheckUtils]: 14: Hoare triple {79602#(and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 3 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 3))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79603#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 4)) (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} is VALID [2022-04-27 15:21:25,821 INFO L290 TraceCheckUtils]: 15: Hoare triple {79603#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 4)) (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {79604#(or (<= |#Ultimate.C_memset_#amount| 4) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:25,821 INFO L290 TraceCheckUtils]: 16: Hoare triple {79604#(or (<= |#Ultimate.C_memset_#amount| 4) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {79604#(or (<= |#Ultimate.C_memset_#amount| 4) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:25,822 INFO L284 TraceCheckUtils]: 17: Hoare quadruple {79604#(or (<= |#Ultimate.C_memset_#amount| 4) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {79461#true} #1178#return; {79462#false} is VALID [2022-04-27 15:21:25,822 INFO L290 TraceCheckUtils]: 18: Hoare triple {79462#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {79462#false} is VALID [2022-04-27 15:21:25,822 INFO L272 TraceCheckUtils]: 19: Hoare triple {79462#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {79461#true} is VALID [2022-04-27 15:21:25,822 INFO L290 TraceCheckUtils]: 20: Hoare triple {79461#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {79461#true} is VALID [2022-04-27 15:21:25,822 INFO L290 TraceCheckUtils]: 21: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~2; {79461#true} is VALID [2022-04-27 15:21:25,822 INFO L290 TraceCheckUtils]: 22: Hoare triple {79461#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {79461#true} is VALID [2022-04-27 15:21:25,822 INFO L290 TraceCheckUtils]: 23: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,822 INFO L284 TraceCheckUtils]: 24: Hoare quadruple {79461#true} {79462#false} #1180#return; {79462#false} is VALID [2022-04-27 15:21:25,822 INFO L290 TraceCheckUtils]: 25: Hoare triple {79462#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {79462#false} is VALID [2022-04-27 15:21:25,823 INFO L290 TraceCheckUtils]: 26: Hoare triple {79462#false} assume true; {79462#false} is VALID [2022-04-27 15:21:25,823 INFO L284 TraceCheckUtils]: 27: Hoare quadruple {79462#false} {79461#true} #1220#return; {79462#false} is VALID [2022-04-27 15:21:25,840 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 53 [2022-04-27 15:21:25,841 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,845 INFO L290 TraceCheckUtils]: 0: Hoare triple {79605#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {79461#true} is VALID [2022-04-27 15:21:25,845 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,846 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {79461#true} {79462#false} #1222#return; {79462#false} is VALID [2022-04-27 15:21:25,871 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 62 [2022-04-27 15:21:25,888 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,899 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2022-04-27 15:21:25,906 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,915 INFO L290 TraceCheckUtils]: 0: Hoare triple {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {79461#true} is VALID [2022-04-27 15:21:25,916 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {79461#true} is VALID [2022-04-27 15:21:25,916 INFO L290 TraceCheckUtils]: 2: Hoare triple {79461#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {79461#true} is VALID [2022-04-27 15:21:25,916 INFO L290 TraceCheckUtils]: 3: Hoare triple {79461#true} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {79461#true} is VALID [2022-04-27 15:21:25,916 INFO L290 TraceCheckUtils]: 4: Hoare triple {79461#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {79461#true} is VALID [2022-04-27 15:21:25,916 INFO L290 TraceCheckUtils]: 5: Hoare triple {79461#true} assume #res.base == dest.base && #res.offset == dest.offset; {79461#true} is VALID [2022-04-27 15:21:25,916 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {79461#true} {79461#true} #1186#return; {79461#true} is VALID [2022-04-27 15:21:25,929 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 15 [2022-04-27 15:21:25,932 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,966 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:21:25,968 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,972 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:21:25,973 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,977 INFO L290 TraceCheckUtils]: 0: Hoare triple {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {79461#true} is VALID [2022-04-27 15:21:25,978 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,978 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {79461#true} {79461#true} #1174#return; {79461#true} is VALID [2022-04-27 15:21:25,978 INFO L290 TraceCheckUtils]: 0: Hoare triple {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {79461#true} is VALID [2022-04-27 15:21:25,978 INFO L272 TraceCheckUtils]: 1: Hoare triple {79461#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:25,978 INFO L290 TraceCheckUtils]: 2: Hoare triple {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {79461#true} is VALID [2022-04-27 15:21:25,979 INFO L290 TraceCheckUtils]: 3: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,979 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {79461#true} {79461#true} #1174#return; {79461#true} is VALID [2022-04-27 15:21:25,979 INFO L290 TraceCheckUtils]: 5: Hoare triple {79461#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {79461#true} is VALID [2022-04-27 15:21:25,979 INFO L290 TraceCheckUtils]: 6: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,979 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {79461#true} {79461#true} #1210#return; {79461#true} is VALID [2022-04-27 15:21:25,990 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:21:25,990 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:25,994 INFO L290 TraceCheckUtils]: 0: Hoare triple {79667#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {79461#true} is VALID [2022-04-27 15:21:25,994 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,994 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {79461#true} {79461#true} #1212#return; {79461#true} is VALID [2022-04-27 15:21:25,994 INFO L290 TraceCheckUtils]: 0: Hoare triple {79651#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {79461#true} is VALID [2022-04-27 15:21:25,994 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume 0 != ~compRegistered~0; {79461#true} is VALID [2022-04-27 15:21:25,995 INFO L272 TraceCheckUtils]: 2: Hoare triple {79461#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:25,995 INFO L290 TraceCheckUtils]: 3: Hoare triple {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {79461#true} is VALID [2022-04-27 15:21:25,996 INFO L272 TraceCheckUtils]: 4: Hoare triple {79461#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:25,996 INFO L290 TraceCheckUtils]: 5: Hoare triple {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {79461#true} is VALID [2022-04-27 15:21:25,996 INFO L290 TraceCheckUtils]: 6: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,996 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {79461#true} {79461#true} #1174#return; {79461#true} is VALID [2022-04-27 15:21:25,996 INFO L290 TraceCheckUtils]: 8: Hoare triple {79461#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {79461#true} is VALID [2022-04-27 15:21:25,996 INFO L290 TraceCheckUtils]: 9: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,996 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {79461#true} {79461#true} #1210#return; {79461#true} is VALID [2022-04-27 15:21:25,996 INFO L290 TraceCheckUtils]: 11: Hoare triple {79461#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {79461#true} is VALID [2022-04-27 15:21:25,996 INFO L290 TraceCheckUtils]: 12: Hoare triple {79461#true} assume -1073741802 == ~compRetStatus~0; {79461#true} is VALID [2022-04-27 15:21:25,997 INFO L272 TraceCheckUtils]: 13: Hoare triple {79461#true} call stubMoreProcessingRequired(); {79667#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:25,997 INFO L290 TraceCheckUtils]: 14: Hoare triple {79667#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {79461#true} is VALID [2022-04-27 15:21:25,997 INFO L290 TraceCheckUtils]: 15: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,997 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {79461#true} {79461#true} #1212#return; {79461#true} is VALID [2022-04-27 15:21:25,997 INFO L290 TraceCheckUtils]: 17: Hoare triple {79461#true} assume !(0 == ~__BLAST_NONDET~11); {79461#true} is VALID [2022-04-27 15:21:25,997 INFO L290 TraceCheckUtils]: 18: Hoare triple {79461#true} assume !(1 == ~__BLAST_NONDET~11); {79461#true} is VALID [2022-04-27 15:21:25,997 INFO L290 TraceCheckUtils]: 19: Hoare triple {79461#true} ~returnVal2~0 := 259; {79461#true} is VALID [2022-04-27 15:21:25,997 INFO L290 TraceCheckUtils]: 20: Hoare triple {79461#true} assume !(~s~0 == ~NP~0); {79461#true} is VALID [2022-04-27 15:21:25,997 INFO L290 TraceCheckUtils]: 21: Hoare triple {79461#true} assume ~s~0 == ~MPR1~0; {79461#true} is VALID [2022-04-27 15:21:25,997 INFO L290 TraceCheckUtils]: 22: Hoare triple {79461#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {79461#true} is VALID [2022-04-27 15:21:25,997 INFO L290 TraceCheckUtils]: 23: Hoare triple {79461#true} #res := ~returnVal2~0; {79461#true} is VALID [2022-04-27 15:21:25,997 INFO L290 TraceCheckUtils]: 24: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:25,997 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {79461#true} {79461#true} #1192#return; {79461#true} is VALID [2022-04-27 15:21:26,011 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 44 [2022-04-27 15:21:26,012 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:26,017 INFO L290 TraceCheckUtils]: 0: Hoare triple {79668#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {79461#true} is VALID [2022-04-27 15:21:26,017 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume ~s~0 == ~MPR3~0; {79461#true} is VALID [2022-04-27 15:21:26,017 INFO L290 TraceCheckUtils]: 2: Hoare triple {79461#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {79461#true} is VALID [2022-04-27 15:21:26,017 INFO L290 TraceCheckUtils]: 3: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~13; {79461#true} is VALID [2022-04-27 15:21:26,017 INFO L290 TraceCheckUtils]: 4: Hoare triple {79461#true} #res := 0; {79461#true} is VALID [2022-04-27 15:21:26,017 INFO L290 TraceCheckUtils]: 5: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,017 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {79461#true} {79461#true} #1194#return; {79461#true} is VALID [2022-04-27 15:21:26,018 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 56 [2022-04-27 15:21:26,018 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:26,021 INFO L290 TraceCheckUtils]: 0: Hoare triple {79667#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {79461#true} is VALID [2022-04-27 15:21:26,021 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {79461#true} is VALID [2022-04-27 15:21:26,022 INFO L290 TraceCheckUtils]: 2: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,022 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {79461#true} {79461#true} #1196#return; {79461#true} is VALID [2022-04-27 15:21:26,022 INFO L290 TraceCheckUtils]: 0: Hoare triple {79606#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {79461#true} is VALID [2022-04-27 15:21:26,022 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {79461#true} is VALID [2022-04-27 15:21:26,022 INFO L290 TraceCheckUtils]: 2: Hoare triple {79461#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {79461#true} is VALID [2022-04-27 15:21:26,023 INFO L272 TraceCheckUtils]: 3: Hoare triple {79461#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:26,023 INFO L290 TraceCheckUtils]: 4: Hoare triple {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {79461#true} is VALID [2022-04-27 15:21:26,023 INFO L290 TraceCheckUtils]: 5: Hoare triple {79461#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {79461#true} is VALID [2022-04-27 15:21:26,023 INFO L290 TraceCheckUtils]: 6: Hoare triple {79461#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {79461#true} is VALID [2022-04-27 15:21:26,023 INFO L290 TraceCheckUtils]: 7: Hoare triple {79461#true} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {79461#true} is VALID [2022-04-27 15:21:26,023 INFO L290 TraceCheckUtils]: 8: Hoare triple {79461#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {79461#true} is VALID [2022-04-27 15:21:26,023 INFO L290 TraceCheckUtils]: 9: Hoare triple {79461#true} assume #res.base == dest.base && #res.offset == dest.offset; {79461#true} is VALID [2022-04-27 15:21:26,023 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {79461#true} {79461#true} #1186#return; {79461#true} is VALID [2022-04-27 15:21:26,023 INFO L290 TraceCheckUtils]: 11: Hoare triple {79461#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {79461#true} is VALID [2022-04-27 15:21:26,023 INFO L290 TraceCheckUtils]: 12: Hoare triple {79461#true} assume !(~s~0 != ~NP~0); {79461#true} is VALID [2022-04-27 15:21:26,023 INFO L290 TraceCheckUtils]: 13: Hoare triple {79461#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {79461#true} is VALID [2022-04-27 15:21:26,023 INFO L290 TraceCheckUtils]: 14: Hoare triple {79461#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {79461#true} is VALID [2022-04-27 15:21:26,024 INFO L272 TraceCheckUtils]: 15: Hoare triple {79461#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {79651#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:26,024 INFO L290 TraceCheckUtils]: 16: Hoare triple {79651#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {79461#true} is VALID [2022-04-27 15:21:26,024 INFO L290 TraceCheckUtils]: 17: Hoare triple {79461#true} assume 0 != ~compRegistered~0; {79461#true} is VALID [2022-04-27 15:21:26,025 INFO L272 TraceCheckUtils]: 18: Hoare triple {79461#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:26,025 INFO L290 TraceCheckUtils]: 19: Hoare triple {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {79461#true} is VALID [2022-04-27 15:21:26,025 INFO L272 TraceCheckUtils]: 20: Hoare triple {79461#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:26,026 INFO L290 TraceCheckUtils]: 21: Hoare triple {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {79461#true} is VALID [2022-04-27 15:21:26,026 INFO L290 TraceCheckUtils]: 22: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,026 INFO L284 TraceCheckUtils]: 23: Hoare quadruple {79461#true} {79461#true} #1174#return; {79461#true} is VALID [2022-04-27 15:21:26,026 INFO L290 TraceCheckUtils]: 24: Hoare triple {79461#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {79461#true} is VALID [2022-04-27 15:21:26,026 INFO L290 TraceCheckUtils]: 25: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,026 INFO L284 TraceCheckUtils]: 26: Hoare quadruple {79461#true} {79461#true} #1210#return; {79461#true} is VALID [2022-04-27 15:21:26,026 INFO L290 TraceCheckUtils]: 27: Hoare triple {79461#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {79461#true} is VALID [2022-04-27 15:21:26,026 INFO L290 TraceCheckUtils]: 28: Hoare triple {79461#true} assume -1073741802 == ~compRetStatus~0; {79461#true} is VALID [2022-04-27 15:21:26,026 INFO L272 TraceCheckUtils]: 29: Hoare triple {79461#true} call stubMoreProcessingRequired(); {79667#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:26,026 INFO L290 TraceCheckUtils]: 30: Hoare triple {79667#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {79461#true} is VALID [2022-04-27 15:21:26,026 INFO L290 TraceCheckUtils]: 31: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,026 INFO L284 TraceCheckUtils]: 32: Hoare quadruple {79461#true} {79461#true} #1212#return; {79461#true} is VALID [2022-04-27 15:21:26,026 INFO L290 TraceCheckUtils]: 33: Hoare triple {79461#true} assume !(0 == ~__BLAST_NONDET~11); {79461#true} is VALID [2022-04-27 15:21:26,026 INFO L290 TraceCheckUtils]: 34: Hoare triple {79461#true} assume !(1 == ~__BLAST_NONDET~11); {79461#true} is VALID [2022-04-27 15:21:26,027 INFO L290 TraceCheckUtils]: 35: Hoare triple {79461#true} ~returnVal2~0 := 259; {79461#true} is VALID [2022-04-27 15:21:26,027 INFO L290 TraceCheckUtils]: 36: Hoare triple {79461#true} assume !(~s~0 == ~NP~0); {79461#true} is VALID [2022-04-27 15:21:26,027 INFO L290 TraceCheckUtils]: 37: Hoare triple {79461#true} assume ~s~0 == ~MPR1~0; {79461#true} is VALID [2022-04-27 15:21:26,027 INFO L290 TraceCheckUtils]: 38: Hoare triple {79461#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {79461#true} is VALID [2022-04-27 15:21:26,027 INFO L290 TraceCheckUtils]: 39: Hoare triple {79461#true} #res := ~returnVal2~0; {79461#true} is VALID [2022-04-27 15:21:26,027 INFO L290 TraceCheckUtils]: 40: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,027 INFO L284 TraceCheckUtils]: 41: Hoare quadruple {79461#true} {79461#true} #1192#return; {79461#true} is VALID [2022-04-27 15:21:26,027 INFO L290 TraceCheckUtils]: 42: Hoare triple {79461#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {79461#true} is VALID [2022-04-27 15:21:26,027 INFO L290 TraceCheckUtils]: 43: Hoare triple {79461#true} assume 259 == ~status~3; {79461#true} is VALID [2022-04-27 15:21:26,028 INFO L272 TraceCheckUtils]: 44: Hoare triple {79461#true} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {79668#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:26,028 INFO L290 TraceCheckUtils]: 45: Hoare triple {79668#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {79461#true} is VALID [2022-04-27 15:21:26,028 INFO L290 TraceCheckUtils]: 46: Hoare triple {79461#true} assume ~s~0 == ~MPR3~0; {79461#true} is VALID [2022-04-27 15:21:26,028 INFO L290 TraceCheckUtils]: 47: Hoare triple {79461#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {79461#true} is VALID [2022-04-27 15:21:26,028 INFO L290 TraceCheckUtils]: 48: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~13; {79461#true} is VALID [2022-04-27 15:21:26,028 INFO L290 TraceCheckUtils]: 49: Hoare triple {79461#true} #res := 0; {79461#true} is VALID [2022-04-27 15:21:26,028 INFO L290 TraceCheckUtils]: 50: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,028 INFO L284 TraceCheckUtils]: 51: Hoare quadruple {79461#true} {79461#true} #1194#return; {79461#true} is VALID [2022-04-27 15:21:26,028 INFO L290 TraceCheckUtils]: 52: Hoare triple {79461#true} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {79461#true} is VALID [2022-04-27 15:21:26,028 INFO L290 TraceCheckUtils]: 53: Hoare triple {79461#true} assume ~status~3 >= 0; {79461#true} is VALID [2022-04-27 15:21:26,028 INFO L290 TraceCheckUtils]: 54: Hoare triple {79461#true} assume ~myStatus~0 >= 0;call write~int(1, ~devExt~3.base, 52 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 54 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 53 + ~devExt~3.offset, 1); {79461#true} is VALID [2022-04-27 15:21:26,028 INFO L290 TraceCheckUtils]: 55: Hoare triple {79461#true} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {79461#true} is VALID [2022-04-27 15:21:26,029 INFO L272 TraceCheckUtils]: 56: Hoare triple {79461#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {79667#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:26,029 INFO L290 TraceCheckUtils]: 57: Hoare triple {79667#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {79461#true} is VALID [2022-04-27 15:21:26,029 INFO L290 TraceCheckUtils]: 58: Hoare triple {79461#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {79461#true} is VALID [2022-04-27 15:21:26,029 INFO L290 TraceCheckUtils]: 59: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,029 INFO L284 TraceCheckUtils]: 60: Hoare quadruple {79461#true} {79461#true} #1196#return; {79461#true} is VALID [2022-04-27 15:21:26,029 INFO L290 TraceCheckUtils]: 61: Hoare triple {79461#true} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {79461#true} is VALID [2022-04-27 15:21:26,029 INFO L290 TraceCheckUtils]: 62: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,029 INFO L284 TraceCheckUtils]: 63: Hoare quadruple {79461#true} {79462#false} #1230#return; {79462#false} is VALID [2022-04-27 15:21:26,030 INFO L272 TraceCheckUtils]: 0: Hoare triple {79461#true} call ULTIMATE.init(); {79573#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:21:26,031 INFO L290 TraceCheckUtils]: 1: Hoare triple {79573#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {79461#true} is VALID [2022-04-27 15:21:26,031 INFO L290 TraceCheckUtils]: 2: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,031 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {79461#true} {79461#true} #1270#return; {79461#true} is VALID [2022-04-27 15:21:26,031 INFO L272 TraceCheckUtils]: 4: Hoare triple {79461#true} call #t~ret213 := main(); {79461#true} is VALID [2022-04-27 15:21:26,031 INFO L290 TraceCheckUtils]: 5: Hoare triple {79461#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {79461#true} is VALID [2022-04-27 15:21:26,032 INFO L272 TraceCheckUtils]: 6: Hoare triple {79461#true} call _BLAST_init(); {79574#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:26,032 INFO L290 TraceCheckUtils]: 7: Hoare triple {79574#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {79461#true} is VALID [2022-04-27 15:21:26,032 INFO L290 TraceCheckUtils]: 8: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,032 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {79461#true} {79461#true} #1216#return; {79461#true} is VALID [2022-04-27 15:21:26,033 INFO L272 TraceCheckUtils]: 10: Hoare triple {79461#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:26,033 INFO L290 TraceCheckUtils]: 11: Hoare triple {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {79461#true} is VALID [2022-04-27 15:21:26,033 INFO L272 TraceCheckUtils]: 12: Hoare triple {79461#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {79461#true} is VALID [2022-04-27 15:21:26,033 INFO L290 TraceCheckUtils]: 13: Hoare triple {79461#true} ~cond := #in~cond; {79461#true} is VALID [2022-04-27 15:21:26,033 INFO L290 TraceCheckUtils]: 14: Hoare triple {79461#true} assume !(0 == ~cond); {79461#true} is VALID [2022-04-27 15:21:26,033 INFO L290 TraceCheckUtils]: 15: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,033 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {79461#true} {79461#true} #1254#return; {79461#true} is VALID [2022-04-27 15:21:26,033 INFO L290 TraceCheckUtils]: 17: Hoare triple {79461#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {79461#true} is VALID [2022-04-27 15:21:26,033 INFO L290 TraceCheckUtils]: 18: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,033 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {79461#true} {79461#true} #1218#return; {79461#true} is VALID [2022-04-27 15:21:26,033 INFO L290 TraceCheckUtils]: 20: Hoare triple {79461#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {79461#true} is VALID [2022-04-27 15:21:26,033 INFO L290 TraceCheckUtils]: 21: Hoare triple {79461#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {79461#true} is VALID [2022-04-27 15:21:26,033 INFO L290 TraceCheckUtils]: 22: Hoare triple {79461#true} assume !(0 == ~irp_choice~0); {79461#true} is VALID [2022-04-27 15:21:26,034 INFO L272 TraceCheckUtils]: 23: Hoare triple {79461#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {79580#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:21:26,034 INFO L290 TraceCheckUtils]: 24: Hoare triple {79580#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {79461#true} is VALID [2022-04-27 15:21:26,035 INFO L272 TraceCheckUtils]: 25: Hoare triple {79461#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {79580#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:21:26,035 INFO L290 TraceCheckUtils]: 26: Hoare triple {79580#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {79461#true} is VALID [2022-04-27 15:21:26,035 INFO L290 TraceCheckUtils]: 27: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~5; {79461#true} is VALID [2022-04-27 15:21:26,035 INFO L290 TraceCheckUtils]: 28: Hoare triple {79461#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {79461#true} is VALID [2022-04-27 15:21:26,035 INFO L290 TraceCheckUtils]: 29: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,035 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {79461#true} {79461#true} #1176#return; {79461#true} is VALID [2022-04-27 15:21:26,036 INFO L290 TraceCheckUtils]: 31: Hoare triple {79461#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {79461#true} is VALID [2022-04-27 15:21:26,036 INFO L290 TraceCheckUtils]: 32: Hoare triple {79461#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {79461#true} is VALID [2022-04-27 15:21:26,036 INFO L272 TraceCheckUtils]: 33: Hoare triple {79461#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:26,037 INFO L290 TraceCheckUtils]: 34: Hoare triple {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {79599#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:21:26,037 INFO L290 TraceCheckUtils]: 35: Hoare triple {79599#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79600#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} is VALID [2022-04-27 15:21:26,038 INFO L290 TraceCheckUtils]: 36: Hoare triple {79600#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79601#(and (<= 2 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 2))} is VALID [2022-04-27 15:21:26,039 INFO L290 TraceCheckUtils]: 37: Hoare triple {79601#(and (<= 2 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 2))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79602#(and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 3 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 3))} is VALID [2022-04-27 15:21:26,040 INFO L290 TraceCheckUtils]: 38: Hoare triple {79602#(and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 3 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 3))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79603#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 4)) (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} is VALID [2022-04-27 15:21:26,041 INFO L290 TraceCheckUtils]: 39: Hoare triple {79603#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 4)) (or (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0)))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {79604#(or (<= |#Ultimate.C_memset_#amount| 4) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:26,041 INFO L290 TraceCheckUtils]: 40: Hoare triple {79604#(or (<= |#Ultimate.C_memset_#amount| 4) (<= 4294967297 |#Ultimate.C_memset_#amount|))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {79604#(or (<= |#Ultimate.C_memset_#amount| 4) (<= 4294967297 |#Ultimate.C_memset_#amount|))} is VALID [2022-04-27 15:21:26,042 INFO L284 TraceCheckUtils]: 41: Hoare quadruple {79604#(or (<= |#Ultimate.C_memset_#amount| 4) (<= 4294967297 |#Ultimate.C_memset_#amount|))} {79461#true} #1178#return; {79462#false} is VALID [2022-04-27 15:21:26,042 INFO L290 TraceCheckUtils]: 42: Hoare triple {79462#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {79462#false} is VALID [2022-04-27 15:21:26,042 INFO L272 TraceCheckUtils]: 43: Hoare triple {79462#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {79461#true} is VALID [2022-04-27 15:21:26,042 INFO L290 TraceCheckUtils]: 44: Hoare triple {79461#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {79461#true} is VALID [2022-04-27 15:21:26,042 INFO L290 TraceCheckUtils]: 45: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~2; {79461#true} is VALID [2022-04-27 15:21:26,042 INFO L290 TraceCheckUtils]: 46: Hoare triple {79461#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {79461#true} is VALID [2022-04-27 15:21:26,042 INFO L290 TraceCheckUtils]: 47: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,042 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {79461#true} {79462#false} #1180#return; {79462#false} is VALID [2022-04-27 15:21:26,042 INFO L290 TraceCheckUtils]: 49: Hoare triple {79462#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {79462#false} is VALID [2022-04-27 15:21:26,042 INFO L290 TraceCheckUtils]: 50: Hoare triple {79462#false} assume true; {79462#false} is VALID [2022-04-27 15:21:26,042 INFO L284 TraceCheckUtils]: 51: Hoare quadruple {79462#false} {79461#true} #1220#return; {79462#false} is VALID [2022-04-27 15:21:26,042 INFO L290 TraceCheckUtils]: 52: Hoare triple {79462#false} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {79462#false} is VALID [2022-04-27 15:21:26,042 INFO L272 TraceCheckUtils]: 53: Hoare triple {79462#false} call stub_driver_init(); {79605#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:26,043 INFO L290 TraceCheckUtils]: 54: Hoare triple {79605#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {79461#true} is VALID [2022-04-27 15:21:26,043 INFO L290 TraceCheckUtils]: 55: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,043 INFO L284 TraceCheckUtils]: 56: Hoare quadruple {79461#true} {79462#false} #1222#return; {79462#false} is VALID [2022-04-27 15:21:26,043 INFO L290 TraceCheckUtils]: 57: Hoare triple {79462#false} assume !!(~status~5 >= 0); {79462#false} is VALID [2022-04-27 15:21:26,043 INFO L290 TraceCheckUtils]: 58: Hoare triple {79462#false} assume !(0 == ~__BLAST_NONDET~0); {79462#false} is VALID [2022-04-27 15:21:26,043 INFO L290 TraceCheckUtils]: 59: Hoare triple {79462#false} assume !(1 == ~__BLAST_NONDET~0); {79462#false} is VALID [2022-04-27 15:21:26,043 INFO L290 TraceCheckUtils]: 60: Hoare triple {79462#false} assume !(2 == ~__BLAST_NONDET~0); {79462#false} is VALID [2022-04-27 15:21:26,043 INFO L290 TraceCheckUtils]: 61: Hoare triple {79462#false} assume 3 == ~__BLAST_NONDET~0; {79462#false} is VALID [2022-04-27 15:21:26,043 INFO L272 TraceCheckUtils]: 62: Hoare triple {79462#false} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {79606#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:26,043 INFO L290 TraceCheckUtils]: 63: Hoare triple {79606#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {79461#true} is VALID [2022-04-27 15:21:26,043 INFO L290 TraceCheckUtils]: 64: Hoare triple {79461#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {79461#true} is VALID [2022-04-27 15:21:26,043 INFO L290 TraceCheckUtils]: 65: Hoare triple {79461#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {79461#true} is VALID [2022-04-27 15:21:26,044 INFO L272 TraceCheckUtils]: 66: Hoare triple {79461#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:26,044 INFO L290 TraceCheckUtils]: 67: Hoare triple {79575#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {79461#true} is VALID [2022-04-27 15:21:26,044 INFO L290 TraceCheckUtils]: 68: Hoare triple {79461#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {79461#true} is VALID [2022-04-27 15:21:26,044 INFO L290 TraceCheckUtils]: 69: Hoare triple {79461#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {79461#true} is VALID [2022-04-27 15:21:26,044 INFO L290 TraceCheckUtils]: 70: Hoare triple {79461#true} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {79461#true} is VALID [2022-04-27 15:21:26,044 INFO L290 TraceCheckUtils]: 71: Hoare triple {79461#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {79461#true} is VALID [2022-04-27 15:21:26,044 INFO L290 TraceCheckUtils]: 72: Hoare triple {79461#true} assume #res.base == dest.base && #res.offset == dest.offset; {79461#true} is VALID [2022-04-27 15:21:26,044 INFO L284 TraceCheckUtils]: 73: Hoare quadruple {79461#true} {79461#true} #1186#return; {79461#true} is VALID [2022-04-27 15:21:26,044 INFO L290 TraceCheckUtils]: 74: Hoare triple {79461#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {79461#true} is VALID [2022-04-27 15:21:26,044 INFO L290 TraceCheckUtils]: 75: Hoare triple {79461#true} assume !(~s~0 != ~NP~0); {79461#true} is VALID [2022-04-27 15:21:26,044 INFO L290 TraceCheckUtils]: 76: Hoare triple {79461#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {79461#true} is VALID [2022-04-27 15:21:26,045 INFO L290 TraceCheckUtils]: 77: Hoare triple {79461#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {79461#true} is VALID [2022-04-27 15:21:26,045 INFO L272 TraceCheckUtils]: 78: Hoare triple {79461#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {79651#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:26,045 INFO L290 TraceCheckUtils]: 79: Hoare triple {79651#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {79461#true} is VALID [2022-04-27 15:21:26,045 INFO L290 TraceCheckUtils]: 80: Hoare triple {79461#true} assume 0 != ~compRegistered~0; {79461#true} is VALID [2022-04-27 15:21:26,046 INFO L272 TraceCheckUtils]: 81: Hoare triple {79461#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:26,046 INFO L290 TraceCheckUtils]: 82: Hoare triple {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {79461#true} is VALID [2022-04-27 15:21:26,047 INFO L272 TraceCheckUtils]: 83: Hoare triple {79461#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:26,047 INFO L290 TraceCheckUtils]: 84: Hoare triple {79663#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {79461#true} is VALID [2022-04-27 15:21:26,047 INFO L290 TraceCheckUtils]: 85: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,047 INFO L284 TraceCheckUtils]: 86: Hoare quadruple {79461#true} {79461#true} #1174#return; {79461#true} is VALID [2022-04-27 15:21:26,047 INFO L290 TraceCheckUtils]: 87: Hoare triple {79461#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {79461#true} is VALID [2022-04-27 15:21:26,047 INFO L290 TraceCheckUtils]: 88: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,047 INFO L284 TraceCheckUtils]: 89: Hoare quadruple {79461#true} {79461#true} #1210#return; {79461#true} is VALID [2022-04-27 15:21:26,047 INFO L290 TraceCheckUtils]: 90: Hoare triple {79461#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {79461#true} is VALID [2022-04-27 15:21:26,047 INFO L290 TraceCheckUtils]: 91: Hoare triple {79461#true} assume -1073741802 == ~compRetStatus~0; {79461#true} is VALID [2022-04-27 15:21:26,047 INFO L272 TraceCheckUtils]: 92: Hoare triple {79461#true} call stubMoreProcessingRequired(); {79667#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:26,047 INFO L290 TraceCheckUtils]: 93: Hoare triple {79667#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L290 TraceCheckUtils]: 94: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L284 TraceCheckUtils]: 95: Hoare quadruple {79461#true} {79461#true} #1212#return; {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L290 TraceCheckUtils]: 96: Hoare triple {79461#true} assume !(0 == ~__BLAST_NONDET~11); {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L290 TraceCheckUtils]: 97: Hoare triple {79461#true} assume !(1 == ~__BLAST_NONDET~11); {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L290 TraceCheckUtils]: 98: Hoare triple {79461#true} ~returnVal2~0 := 259; {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L290 TraceCheckUtils]: 99: Hoare triple {79461#true} assume !(~s~0 == ~NP~0); {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L290 TraceCheckUtils]: 100: Hoare triple {79461#true} assume ~s~0 == ~MPR1~0; {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L290 TraceCheckUtils]: 101: Hoare triple {79461#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L290 TraceCheckUtils]: 102: Hoare triple {79461#true} #res := ~returnVal2~0; {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L290 TraceCheckUtils]: 103: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L284 TraceCheckUtils]: 104: Hoare quadruple {79461#true} {79461#true} #1192#return; {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L290 TraceCheckUtils]: 105: Hoare triple {79461#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {79461#true} is VALID [2022-04-27 15:21:26,048 INFO L290 TraceCheckUtils]: 106: Hoare triple {79461#true} assume 259 == ~status~3; {79461#true} is VALID [2022-04-27 15:21:26,049 INFO L272 TraceCheckUtils]: 107: Hoare triple {79461#true} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {79668#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:26,049 INFO L290 TraceCheckUtils]: 108: Hoare triple {79668#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {79461#true} is VALID [2022-04-27 15:21:26,049 INFO L290 TraceCheckUtils]: 109: Hoare triple {79461#true} assume ~s~0 == ~MPR3~0; {79461#true} is VALID [2022-04-27 15:21:26,049 INFO L290 TraceCheckUtils]: 110: Hoare triple {79461#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {79461#true} is VALID [2022-04-27 15:21:26,049 INFO L290 TraceCheckUtils]: 111: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~13; {79461#true} is VALID [2022-04-27 15:21:26,049 INFO L290 TraceCheckUtils]: 112: Hoare triple {79461#true} #res := 0; {79461#true} is VALID [2022-04-27 15:21:26,049 INFO L290 TraceCheckUtils]: 113: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,049 INFO L284 TraceCheckUtils]: 114: Hoare quadruple {79461#true} {79461#true} #1194#return; {79461#true} is VALID [2022-04-27 15:21:26,049 INFO L290 TraceCheckUtils]: 115: Hoare triple {79461#true} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {79461#true} is VALID [2022-04-27 15:21:26,049 INFO L290 TraceCheckUtils]: 116: Hoare triple {79461#true} assume ~status~3 >= 0; {79461#true} is VALID [2022-04-27 15:21:26,049 INFO L290 TraceCheckUtils]: 117: Hoare triple {79461#true} assume ~myStatus~0 >= 0;call write~int(1, ~devExt~3.base, 52 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 54 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 53 + ~devExt~3.offset, 1); {79461#true} is VALID [2022-04-27 15:21:26,050 INFO L290 TraceCheckUtils]: 118: Hoare triple {79461#true} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {79461#true} is VALID [2022-04-27 15:21:26,050 INFO L272 TraceCheckUtils]: 119: Hoare triple {79461#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {79667#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:26,050 INFO L290 TraceCheckUtils]: 120: Hoare triple {79667#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {79461#true} is VALID [2022-04-27 15:21:26,050 INFO L290 TraceCheckUtils]: 121: Hoare triple {79461#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {79461#true} is VALID [2022-04-27 15:21:26,050 INFO L290 TraceCheckUtils]: 122: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,050 INFO L284 TraceCheckUtils]: 123: Hoare quadruple {79461#true} {79461#true} #1196#return; {79461#true} is VALID [2022-04-27 15:21:26,050 INFO L290 TraceCheckUtils]: 124: Hoare triple {79461#true} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {79461#true} is VALID [2022-04-27 15:21:26,050 INFO L290 TraceCheckUtils]: 125: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:26,050 INFO L284 TraceCheckUtils]: 126: Hoare quadruple {79461#true} {79462#false} #1230#return; {79462#false} is VALID [2022-04-27 15:21:26,050 INFO L290 TraceCheckUtils]: 127: Hoare triple {79462#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L290 TraceCheckUtils]: 128: Hoare triple {79462#false} assume 0 != ~we_should_unload~0; {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L290 TraceCheckUtils]: 129: Hoare triple {79462#false} assume !(1 == ~pended~0); {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L290 TraceCheckUtils]: 130: Hoare triple {79462#false} assume !(1 == ~pended~0); {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L290 TraceCheckUtils]: 131: Hoare triple {79462#false} assume !(~s~0 == ~UNLOADED~0); {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L290 TraceCheckUtils]: 132: Hoare triple {79462#false} assume !(-1 == ~status~5); {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L290 TraceCheckUtils]: 133: Hoare triple {79462#false} assume ~s~0 != ~SKIP2~0; {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L290 TraceCheckUtils]: 134: Hoare triple {79462#false} assume ~s~0 != ~IPC~0; {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L290 TraceCheckUtils]: 135: Hoare triple {79462#false} assume !(~s~0 != ~DC~0); {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L290 TraceCheckUtils]: 136: Hoare triple {79462#false} assume !(1 == ~pended~0); {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L290 TraceCheckUtils]: 137: Hoare triple {79462#false} assume ~s~0 == ~DC~0; {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L290 TraceCheckUtils]: 138: Hoare triple {79462#false} assume 259 == ~status~5; {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L272 TraceCheckUtils]: 139: Hoare triple {79462#false} call errorFn(); {79462#false} is VALID [2022-04-27 15:21:26,051 INFO L290 TraceCheckUtils]: 140: Hoare triple {79462#false} assume !false; {79462#false} is VALID [2022-04-27 15:21:26,052 INFO L134 CoverageAnalysis]: Checked inductivity of 12 backedges. 0 proven. 10 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-04-27 15:21:26,052 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:21:26,052 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1928674096] [2022-04-27 15:21:26,052 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1928674096] provided 0 perfect and 1 imperfect interpolant sequences [2022-04-27 15:21:26,052 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1921850206] [2022-04-27 15:21:26,052 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:21:26,052 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-04-27 15:21:26,052 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2022-04-27 15:21:26,053 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-04-27 15:21:26,053 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2022-04-27 15:21:27,809 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:27,819 INFO L263 TraceCheckSpWp]: Trace formula consists of 2025 conjuncts, 12 conjunts are in the unsatisfiable core [2022-04-27 15:21:27,855 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:27,859 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-04-27 15:21:30,881 INFO L272 TraceCheckUtils]: 0: Hoare triple {79461#true} call ULTIMATE.init(); {79461#true} is VALID [2022-04-27 15:21:30,881 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {79461#true} is VALID [2022-04-27 15:21:30,881 INFO L290 TraceCheckUtils]: 2: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:30,881 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {79461#true} {79461#true} #1270#return; {79461#true} is VALID [2022-04-27 15:21:30,881 INFO L272 TraceCheckUtils]: 4: Hoare triple {79461#true} call #t~ret213 := main(); {79461#true} is VALID [2022-04-27 15:21:30,881 INFO L290 TraceCheckUtils]: 5: Hoare triple {79461#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {79461#true} is VALID [2022-04-27 15:21:30,881 INFO L272 TraceCheckUtils]: 6: Hoare triple {79461#true} call _BLAST_init(); {79461#true} is VALID [2022-04-27 15:21:30,881 INFO L290 TraceCheckUtils]: 7: Hoare triple {79461#true} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L290 TraceCheckUtils]: 8: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {79461#true} {79461#true} #1216#return; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L272 TraceCheckUtils]: 10: Hoare triple {79461#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L290 TraceCheckUtils]: 11: Hoare triple {79461#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L272 TraceCheckUtils]: 12: Hoare triple {79461#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L290 TraceCheckUtils]: 13: Hoare triple {79461#true} ~cond := #in~cond; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L290 TraceCheckUtils]: 14: Hoare triple {79461#true} assume !(0 == ~cond); {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L290 TraceCheckUtils]: 15: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {79461#true} {79461#true} #1254#return; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L290 TraceCheckUtils]: 17: Hoare triple {79461#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L290 TraceCheckUtils]: 18: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {79461#true} {79461#true} #1218#return; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L290 TraceCheckUtils]: 20: Hoare triple {79461#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L290 TraceCheckUtils]: 21: Hoare triple {79461#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L290 TraceCheckUtils]: 22: Hoare triple {79461#true} assume !(0 == ~irp_choice~0); {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L272 TraceCheckUtils]: 23: Hoare triple {79461#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L290 TraceCheckUtils]: 24: Hoare triple {79461#true} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {79461#true} is VALID [2022-04-27 15:21:30,882 INFO L272 TraceCheckUtils]: 25: Hoare triple {79461#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {79461#true} is VALID [2022-04-27 15:21:30,883 INFO L290 TraceCheckUtils]: 26: Hoare triple {79461#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {79461#true} is VALID [2022-04-27 15:21:30,883 INFO L290 TraceCheckUtils]: 27: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~5; {79461#true} is VALID [2022-04-27 15:21:30,883 INFO L290 TraceCheckUtils]: 28: Hoare triple {79461#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {79461#true} is VALID [2022-04-27 15:21:30,883 INFO L290 TraceCheckUtils]: 29: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:30,883 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {79461#true} {79461#true} #1176#return; {79461#true} is VALID [2022-04-27 15:21:30,883 INFO L290 TraceCheckUtils]: 31: Hoare triple {79461#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {79461#true} is VALID [2022-04-27 15:21:30,883 INFO L290 TraceCheckUtils]: 32: Hoare triple {79461#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {79461#true} is VALID [2022-04-27 15:21:30,883 INFO L272 TraceCheckUtils]: 33: Hoare triple {79461#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {79461#true} is VALID [2022-04-27 15:21:30,883 INFO L290 TraceCheckUtils]: 34: Hoare triple {79461#true} #t~loopctr214 := 0; {79599#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:21:30,884 INFO L290 TraceCheckUtils]: 35: Hoare triple {79599#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79777#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} is VALID [2022-04-27 15:21:30,884 INFO L290 TraceCheckUtils]: 36: Hoare triple {79777#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79461#true} is VALID [2022-04-27 15:21:30,884 INFO L290 TraceCheckUtils]: 37: Hoare triple {79461#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79461#true} is VALID [2022-04-27 15:21:30,884 INFO L290 TraceCheckUtils]: 38: Hoare triple {79461#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79461#true} is VALID [2022-04-27 15:21:30,884 INFO L290 TraceCheckUtils]: 39: Hoare triple {79461#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {79461#true} is VALID [2022-04-27 15:21:30,884 INFO L290 TraceCheckUtils]: 40: Hoare triple {79461#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L284 TraceCheckUtils]: 41: Hoare quadruple {79461#true} {79461#true} #1178#return; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L290 TraceCheckUtils]: 42: Hoare triple {79461#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L272 TraceCheckUtils]: 43: Hoare triple {79461#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L290 TraceCheckUtils]: 44: Hoare triple {79461#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L290 TraceCheckUtils]: 45: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~2; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L290 TraceCheckUtils]: 46: Hoare triple {79461#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L290 TraceCheckUtils]: 47: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {79461#true} {79461#true} #1180#return; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L290 TraceCheckUtils]: 49: Hoare triple {79461#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L290 TraceCheckUtils]: 50: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L284 TraceCheckUtils]: 51: Hoare quadruple {79461#true} {79461#true} #1220#return; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L290 TraceCheckUtils]: 52: Hoare triple {79461#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L272 TraceCheckUtils]: 53: Hoare triple {79461#true} call stub_driver_init(); {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L290 TraceCheckUtils]: 54: Hoare triple {79461#true} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L290 TraceCheckUtils]: 55: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L284 TraceCheckUtils]: 56: Hoare quadruple {79461#true} {79461#true} #1222#return; {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L290 TraceCheckUtils]: 57: Hoare triple {79461#true} assume !!(~status~5 >= 0); {79461#true} is VALID [2022-04-27 15:21:30,885 INFO L290 TraceCheckUtils]: 58: Hoare triple {79461#true} assume !(0 == ~__BLAST_NONDET~0); {79461#true} is VALID [2022-04-27 15:21:30,886 INFO L290 TraceCheckUtils]: 59: Hoare triple {79461#true} assume !(1 == ~__BLAST_NONDET~0); {79461#true} is VALID [2022-04-27 15:21:30,886 INFO L290 TraceCheckUtils]: 60: Hoare triple {79461#true} assume !(2 == ~__BLAST_NONDET~0); {79461#true} is VALID [2022-04-27 15:21:30,886 INFO L290 TraceCheckUtils]: 61: Hoare triple {79461#true} assume 3 == ~__BLAST_NONDET~0; {79461#true} is VALID [2022-04-27 15:21:30,886 INFO L272 TraceCheckUtils]: 62: Hoare triple {79461#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {79461#true} is VALID [2022-04-27 15:21:30,886 INFO L290 TraceCheckUtils]: 63: Hoare triple {79461#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {79461#true} is VALID [2022-04-27 15:21:30,886 INFO L290 TraceCheckUtils]: 64: Hoare triple {79461#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {79461#true} is VALID [2022-04-27 15:21:30,886 INFO L290 TraceCheckUtils]: 65: Hoare triple {79461#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {79461#true} is VALID [2022-04-27 15:21:30,886 INFO L272 TraceCheckUtils]: 66: Hoare triple {79461#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {79461#true} is VALID [2022-04-27 15:21:30,886 INFO L290 TraceCheckUtils]: 67: Hoare triple {79461#true} #t~loopctr215 := 0; {79874#(= |#Ultimate.C_memmove_#t~loopctr215| 0)} is VALID [2022-04-27 15:21:30,887 INFO L290 TraceCheckUtils]: 68: Hoare triple {79874#(= |#Ultimate.C_memmove_#t~loopctr215| 0)} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {79878#(= |#Ultimate.C_memmove_#t~loopctr215| 1)} is VALID [2022-04-27 15:21:30,888 INFO L290 TraceCheckUtils]: 69: Hoare triple {79878#(= |#Ultimate.C_memmove_#t~loopctr215| 1)} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {79882#(not (< 1 (mod |#Ultimate.C_memmove_size| 4294967296)))} is VALID [2022-04-27 15:21:30,888 INFO L290 TraceCheckUtils]: 70: Hoare triple {79882#(not (< 1 (mod |#Ultimate.C_memmove_size| 4294967296)))} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {79882#(not (< 1 (mod |#Ultimate.C_memmove_size| 4294967296)))} is VALID [2022-04-27 15:21:30,888 INFO L290 TraceCheckUtils]: 71: Hoare triple {79882#(not (< 1 (mod |#Ultimate.C_memmove_size| 4294967296)))} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {79882#(not (< 1 (mod |#Ultimate.C_memmove_size| 4294967296)))} is VALID [2022-04-27 15:21:30,888 INFO L290 TraceCheckUtils]: 72: Hoare triple {79882#(not (< 1 (mod |#Ultimate.C_memmove_size| 4294967296)))} assume #res.base == dest.base && #res.offset == dest.offset; {79882#(not (< 1 (mod |#Ultimate.C_memmove_size| 4294967296)))} is VALID [2022-04-27 15:21:30,889 INFO L284 TraceCheckUtils]: 73: Hoare quadruple {79882#(not (< 1 (mod |#Ultimate.C_memmove_size| 4294967296)))} {79461#true} #1186#return; {79462#false} is VALID [2022-04-27 15:21:30,889 INFO L290 TraceCheckUtils]: 74: Hoare triple {79462#false} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {79462#false} is VALID [2022-04-27 15:21:30,889 INFO L290 TraceCheckUtils]: 75: Hoare triple {79462#false} assume !(~s~0 != ~NP~0); {79462#false} is VALID [2022-04-27 15:21:30,889 INFO L290 TraceCheckUtils]: 76: Hoare triple {79462#false} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {79462#false} is VALID [2022-04-27 15:21:30,889 INFO L290 TraceCheckUtils]: 77: Hoare triple {79462#false} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {79462#false} is VALID [2022-04-27 15:21:30,889 INFO L272 TraceCheckUtils]: 78: Hoare triple {79462#false} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {79462#false} is VALID [2022-04-27 15:21:30,889 INFO L290 TraceCheckUtils]: 79: Hoare triple {79462#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 80: Hoare triple {79462#false} assume 0 != ~compRegistered~0; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L272 TraceCheckUtils]: 81: Hoare triple {79462#false} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 82: Hoare triple {79462#false} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L272 TraceCheckUtils]: 83: Hoare triple {79462#false} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 84: Hoare triple {79462#false} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 85: Hoare triple {79462#false} assume true; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L284 TraceCheckUtils]: 86: Hoare quadruple {79462#false} {79462#false} #1174#return; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 87: Hoare triple {79462#false} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 88: Hoare triple {79462#false} assume true; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L284 TraceCheckUtils]: 89: Hoare quadruple {79462#false} {79462#false} #1210#return; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 90: Hoare triple {79462#false} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 91: Hoare triple {79462#false} assume -1073741802 == ~compRetStatus~0; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L272 TraceCheckUtils]: 92: Hoare triple {79462#false} call stubMoreProcessingRequired(); {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 93: Hoare triple {79462#false} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 94: Hoare triple {79462#false} assume true; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L284 TraceCheckUtils]: 95: Hoare quadruple {79462#false} {79462#false} #1212#return; {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 96: Hoare triple {79462#false} assume !(0 == ~__BLAST_NONDET~11); {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 97: Hoare triple {79462#false} assume !(1 == ~__BLAST_NONDET~11); {79462#false} is VALID [2022-04-27 15:21:30,890 INFO L290 TraceCheckUtils]: 98: Hoare triple {79462#false} ~returnVal2~0 := 259; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 99: Hoare triple {79462#false} assume !(~s~0 == ~NP~0); {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 100: Hoare triple {79462#false} assume ~s~0 == ~MPR1~0; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 101: Hoare triple {79462#false} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 102: Hoare triple {79462#false} #res := ~returnVal2~0; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 103: Hoare triple {79462#false} assume true; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L284 TraceCheckUtils]: 104: Hoare quadruple {79462#false} {79462#false} #1192#return; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 105: Hoare triple {79462#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 106: Hoare triple {79462#false} assume 259 == ~status~3; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L272 TraceCheckUtils]: 107: Hoare triple {79462#false} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 108: Hoare triple {79462#false} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 109: Hoare triple {79462#false} assume ~s~0 == ~MPR3~0; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 110: Hoare triple {79462#false} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 111: Hoare triple {79462#false} assume 0 == ~__BLAST_NONDET~13; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 112: Hoare triple {79462#false} #res := 0; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 113: Hoare triple {79462#false} assume true; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L284 TraceCheckUtils]: 114: Hoare quadruple {79462#false} {79462#false} #1194#return; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 115: Hoare triple {79462#false} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {79462#false} is VALID [2022-04-27 15:21:30,891 INFO L290 TraceCheckUtils]: 116: Hoare triple {79462#false} assume ~status~3 >= 0; {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 117: Hoare triple {79462#false} assume ~myStatus~0 >= 0;call write~int(1, ~devExt~3.base, 52 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 54 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 53 + ~devExt~3.offset, 1); {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 118: Hoare triple {79462#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L272 TraceCheckUtils]: 119: Hoare triple {79462#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 120: Hoare triple {79462#false} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 121: Hoare triple {79462#false} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 122: Hoare triple {79462#false} assume true; {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L284 TraceCheckUtils]: 123: Hoare quadruple {79462#false} {79462#false} #1196#return; {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 124: Hoare triple {79462#false} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 125: Hoare triple {79462#false} assume true; {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L284 TraceCheckUtils]: 126: Hoare quadruple {79462#false} {79461#true} #1230#return; {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 127: Hoare triple {79462#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 128: Hoare triple {79462#false} assume 0 != ~we_should_unload~0; {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 129: Hoare triple {79462#false} assume !(1 == ~pended~0); {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 130: Hoare triple {79462#false} assume !(1 == ~pended~0); {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 131: Hoare triple {79462#false} assume !(~s~0 == ~UNLOADED~0); {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 132: Hoare triple {79462#false} assume !(-1 == ~status~5); {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 133: Hoare triple {79462#false} assume ~s~0 != ~SKIP2~0; {79462#false} is VALID [2022-04-27 15:21:30,892 INFO L290 TraceCheckUtils]: 134: Hoare triple {79462#false} assume ~s~0 != ~IPC~0; {79462#false} is VALID [2022-04-27 15:21:30,893 INFO L290 TraceCheckUtils]: 135: Hoare triple {79462#false} assume !(~s~0 != ~DC~0); {79462#false} is VALID [2022-04-27 15:21:30,893 INFO L290 TraceCheckUtils]: 136: Hoare triple {79462#false} assume !(1 == ~pended~0); {79462#false} is VALID [2022-04-27 15:21:30,893 INFO L290 TraceCheckUtils]: 137: Hoare triple {79462#false} assume ~s~0 == ~DC~0; {79462#false} is VALID [2022-04-27 15:21:30,893 INFO L290 TraceCheckUtils]: 138: Hoare triple {79462#false} assume 259 == ~status~5; {79462#false} is VALID [2022-04-27 15:21:30,893 INFO L272 TraceCheckUtils]: 139: Hoare triple {79462#false} call errorFn(); {79462#false} is VALID [2022-04-27 15:21:30,893 INFO L290 TraceCheckUtils]: 140: Hoare triple {79462#false} assume !false; {79462#false} is VALID [2022-04-27 15:21:30,893 INFO L134 CoverageAnalysis]: Checked inductivity of 12 backedges. 0 proven. 8 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2022-04-27 15:21:30,893 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-04-27 15:21:33,065 INFO L290 TraceCheckUtils]: 140: Hoare triple {79462#false} assume !false; {79462#false} is VALID [2022-04-27 15:21:33,065 INFO L272 TraceCheckUtils]: 139: Hoare triple {79462#false} call errorFn(); {79462#false} is VALID [2022-04-27 15:21:33,065 INFO L290 TraceCheckUtils]: 138: Hoare triple {79462#false} assume 259 == ~status~5; {79462#false} is VALID [2022-04-27 15:21:33,065 INFO L290 TraceCheckUtils]: 137: Hoare triple {79462#false} assume ~s~0 == ~DC~0; {79462#false} is VALID [2022-04-27 15:21:33,065 INFO L290 TraceCheckUtils]: 136: Hoare triple {79462#false} assume !(1 == ~pended~0); {79462#false} is VALID [2022-04-27 15:21:33,065 INFO L290 TraceCheckUtils]: 135: Hoare triple {79462#false} assume !(~s~0 != ~DC~0); {79462#false} is VALID [2022-04-27 15:21:33,065 INFO L290 TraceCheckUtils]: 134: Hoare triple {79462#false} assume ~s~0 != ~IPC~0; {79462#false} is VALID [2022-04-27 15:21:33,065 INFO L290 TraceCheckUtils]: 133: Hoare triple {79462#false} assume ~s~0 != ~SKIP2~0; {79462#false} is VALID [2022-04-27 15:21:33,065 INFO L290 TraceCheckUtils]: 132: Hoare triple {79462#false} assume !(-1 == ~status~5); {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 131: Hoare triple {79462#false} assume !(~s~0 == ~UNLOADED~0); {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 130: Hoare triple {79462#false} assume !(1 == ~pended~0); {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 129: Hoare triple {79462#false} assume !(1 == ~pended~0); {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 128: Hoare triple {79462#false} assume 0 != ~we_should_unload~0; {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 127: Hoare triple {79462#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L284 TraceCheckUtils]: 126: Hoare quadruple {79462#false} {79461#true} #1230#return; {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 125: Hoare triple {79462#false} assume true; {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 124: Hoare triple {79462#false} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L284 TraceCheckUtils]: 123: Hoare quadruple {79461#true} {79462#false} #1196#return; {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 122: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 121: Hoare triple {79461#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {79461#true} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 120: Hoare triple {79461#true} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {79461#true} is VALID [2022-04-27 15:21:33,066 INFO L272 TraceCheckUtils]: 119: Hoare triple {79462#false} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {79461#true} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 118: Hoare triple {79462#false} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 117: Hoare triple {79462#false} assume ~myStatus~0 >= 0;call write~int(1, ~devExt~3.base, 52 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 54 + ~devExt~3.offset, 1);call write~int(0, ~devExt~3.base, 53 + ~devExt~3.offset, 1); {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 116: Hoare triple {79462#false} assume ~status~3 >= 0; {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L290 TraceCheckUtils]: 115: Hoare triple {79462#false} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {79462#false} is VALID [2022-04-27 15:21:33,066 INFO L284 TraceCheckUtils]: 114: Hoare quadruple {79461#true} {79462#false} #1194#return; {79462#false} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 113: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 112: Hoare triple {79461#true} #res := 0; {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 111: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~13; {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 110: Hoare triple {79461#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 109: Hoare triple {79461#true} assume ~s~0 == ~MPR3~0; {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 108: Hoare triple {79461#true} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L272 TraceCheckUtils]: 107: Hoare triple {79462#false} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 106: Hoare triple {79462#false} assume 259 == ~status~3; {79462#false} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 105: Hoare triple {79462#false} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {79462#false} is VALID [2022-04-27 15:21:33,067 INFO L284 TraceCheckUtils]: 104: Hoare quadruple {79461#true} {79462#false} #1192#return; {79462#false} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 103: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 102: Hoare triple {79461#true} #res := ~returnVal2~0; {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 101: Hoare triple {79461#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 100: Hoare triple {79461#true} assume ~s~0 == ~MPR1~0; {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 99: Hoare triple {79461#true} assume !(~s~0 == ~NP~0); {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 98: Hoare triple {79461#true} ~returnVal2~0 := 259; {79461#true} is VALID [2022-04-27 15:21:33,067 INFO L290 TraceCheckUtils]: 97: Hoare triple {79461#true} assume !(1 == ~__BLAST_NONDET~11); {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L290 TraceCheckUtils]: 96: Hoare triple {79461#true} assume !(0 == ~__BLAST_NONDET~11); {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L284 TraceCheckUtils]: 95: Hoare quadruple {79461#true} {79461#true} #1212#return; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L290 TraceCheckUtils]: 94: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L290 TraceCheckUtils]: 93: Hoare triple {79461#true} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L272 TraceCheckUtils]: 92: Hoare triple {79461#true} call stubMoreProcessingRequired(); {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L290 TraceCheckUtils]: 91: Hoare triple {79461#true} assume -1073741802 == ~compRetStatus~0; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L290 TraceCheckUtils]: 90: Hoare triple {79461#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L284 TraceCheckUtils]: 89: Hoare quadruple {79461#true} {79461#true} #1210#return; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L290 TraceCheckUtils]: 88: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L290 TraceCheckUtils]: 87: Hoare triple {79461#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L284 TraceCheckUtils]: 86: Hoare quadruple {79461#true} {79461#true} #1174#return; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L290 TraceCheckUtils]: 85: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L290 TraceCheckUtils]: 84: Hoare triple {79461#true} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L272 TraceCheckUtils]: 83: Hoare triple {79461#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L290 TraceCheckUtils]: 82: Hoare triple {79461#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L272 TraceCheckUtils]: 81: Hoare triple {79461#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L290 TraceCheckUtils]: 80: Hoare triple {79461#true} assume 0 != ~compRegistered~0; {79461#true} is VALID [2022-04-27 15:21:33,068 INFO L290 TraceCheckUtils]: 79: Hoare triple {79461#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {79461#true} is VALID [2022-04-27 15:21:33,069 INFO L272 TraceCheckUtils]: 78: Hoare triple {79462#false} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {79461#true} is VALID [2022-04-27 15:21:33,069 INFO L290 TraceCheckUtils]: 77: Hoare triple {79462#false} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {79462#false} is VALID [2022-04-27 15:21:33,069 INFO L290 TraceCheckUtils]: 76: Hoare triple {79462#false} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {79462#false} is VALID [2022-04-27 15:21:33,069 INFO L290 TraceCheckUtils]: 75: Hoare triple {79462#false} assume !(~s~0 != ~NP~0); {79462#false} is VALID [2022-04-27 15:21:33,069 INFO L290 TraceCheckUtils]: 74: Hoare triple {79462#false} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {79462#false} is VALID [2022-04-27 15:21:33,070 INFO L284 TraceCheckUtils]: 73: Hoare quadruple {80303#(not (= |#Ultimate.C_memmove_size| 28))} {79461#true} #1186#return; {79462#false} is VALID [2022-04-27 15:21:33,070 INFO L290 TraceCheckUtils]: 72: Hoare triple {80303#(not (= |#Ultimate.C_memmove_size| 28))} assume #res.base == dest.base && #res.offset == dest.offset; {80303#(not (= |#Ultimate.C_memmove_size| 28))} is VALID [2022-04-27 15:21:33,070 INFO L290 TraceCheckUtils]: 71: Hoare triple {80303#(not (= |#Ultimate.C_memmove_size| 28))} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {80303#(not (= |#Ultimate.C_memmove_size| 28))} is VALID [2022-04-27 15:21:33,071 INFO L290 TraceCheckUtils]: 70: Hoare triple {80303#(not (= |#Ultimate.C_memmove_size| 28))} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {80303#(not (= |#Ultimate.C_memmove_size| 28))} is VALID [2022-04-27 15:21:33,071 INFO L290 TraceCheckUtils]: 69: Hoare triple {80316#(or (not (= |#Ultimate.C_memmove_size| 28)) (< (mod |#Ultimate.C_memmove_#t~loopctr215| 4294967296) (mod |#Ultimate.C_memmove_size| 4294967296)))} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {80303#(not (= |#Ultimate.C_memmove_size| 28))} is VALID [2022-04-27 15:21:33,073 INFO L290 TraceCheckUtils]: 68: Hoare triple {80320#(or (not (= |#Ultimate.C_memmove_size| 28)) (< (mod (+ |#Ultimate.C_memmove_#t~loopctr215| 1) 4294967296) (mod |#Ultimate.C_memmove_size| 4294967296)))} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {80316#(or (not (= |#Ultimate.C_memmove_size| 28)) (< (mod |#Ultimate.C_memmove_#t~loopctr215| 4294967296) (mod |#Ultimate.C_memmove_size| 4294967296)))} is VALID [2022-04-27 15:21:33,073 INFO L290 TraceCheckUtils]: 67: Hoare triple {79461#true} #t~loopctr215 := 0; {80320#(or (not (= |#Ultimate.C_memmove_size| 28)) (< (mod (+ |#Ultimate.C_memmove_#t~loopctr215| 1) 4294967296) (mod |#Ultimate.C_memmove_size| 4294967296)))} is VALID [2022-04-27 15:21:33,073 INFO L272 TraceCheckUtils]: 66: Hoare triple {79461#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {79461#true} is VALID [2022-04-27 15:21:33,073 INFO L290 TraceCheckUtils]: 65: Hoare triple {79461#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {79461#true} is VALID [2022-04-27 15:21:33,073 INFO L290 TraceCheckUtils]: 64: Hoare triple {79461#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {79461#true} is VALID [2022-04-27 15:21:33,073 INFO L290 TraceCheckUtils]: 63: Hoare triple {79461#true} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {79461#true} is VALID [2022-04-27 15:21:33,073 INFO L272 TraceCheckUtils]: 62: Hoare triple {79461#true} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 61: Hoare triple {79461#true} assume 3 == ~__BLAST_NONDET~0; {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 60: Hoare triple {79461#true} assume !(2 == ~__BLAST_NONDET~0); {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 59: Hoare triple {79461#true} assume !(1 == ~__BLAST_NONDET~0); {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 58: Hoare triple {79461#true} assume !(0 == ~__BLAST_NONDET~0); {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 57: Hoare triple {79461#true} assume !!(~status~5 >= 0); {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L284 TraceCheckUtils]: 56: Hoare quadruple {79461#true} {79461#true} #1222#return; {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 55: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 54: Hoare triple {79461#true} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L272 TraceCheckUtils]: 53: Hoare triple {79461#true} call stub_driver_init(); {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 52: Hoare triple {79461#true} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L284 TraceCheckUtils]: 51: Hoare quadruple {79461#true} {79461#true} #1220#return; {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 50: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 49: Hoare triple {79461#true} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L284 TraceCheckUtils]: 48: Hoare quadruple {79461#true} {79461#true} #1180#return; {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 47: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 46: Hoare triple {79461#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {79461#true} is VALID [2022-04-27 15:21:33,074 INFO L290 TraceCheckUtils]: 45: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~2; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 44: Hoare triple {79461#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L272 TraceCheckUtils]: 43: Hoare triple {79461#true} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 42: Hoare triple {79461#true} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L284 TraceCheckUtils]: 41: Hoare quadruple {79461#true} {79461#true} #1178#return; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 40: Hoare triple {79461#true} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 39: Hoare triple {79461#true} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 38: Hoare triple {79461#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 37: Hoare triple {79461#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 36: Hoare triple {79461#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 35: Hoare triple {79461#true} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 34: Hoare triple {79461#true} #t~loopctr214 := 0; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L272 TraceCheckUtils]: 33: Hoare triple {79461#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 32: Hoare triple {79461#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 31: Hoare triple {79461#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {79461#true} {79461#true} #1176#return; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 29: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 28: Hoare triple {79461#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {79461#true} is VALID [2022-04-27 15:21:33,075 INFO L290 TraceCheckUtils]: 27: Hoare triple {79461#true} assume 0 == ~__BLAST_NONDET~5; {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L290 TraceCheckUtils]: 26: Hoare triple {79461#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L272 TraceCheckUtils]: 25: Hoare triple {79461#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L290 TraceCheckUtils]: 24: Hoare triple {79461#true} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L272 TraceCheckUtils]: 23: Hoare triple {79461#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L290 TraceCheckUtils]: 22: Hoare triple {79461#true} assume !(0 == ~irp_choice~0); {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L290 TraceCheckUtils]: 21: Hoare triple {79461#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L290 TraceCheckUtils]: 20: Hoare triple {79461#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {79461#true} {79461#true} #1218#return; {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L290 TraceCheckUtils]: 18: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L290 TraceCheckUtils]: 17: Hoare triple {79461#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {79461#true} {79461#true} #1254#return; {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L290 TraceCheckUtils]: 15: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L290 TraceCheckUtils]: 14: Hoare triple {79461#true} assume !(0 == ~cond); {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L290 TraceCheckUtils]: 13: Hoare triple {79461#true} ~cond := #in~cond; {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L272 TraceCheckUtils]: 12: Hoare triple {79461#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L290 TraceCheckUtils]: 11: Hoare triple {79461#true} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L272 TraceCheckUtils]: 10: Hoare triple {79461#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {79461#true} is VALID [2022-04-27 15:21:33,076 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {79461#true} {79461#true} #1216#return; {79461#true} is VALID [2022-04-27 15:21:33,077 INFO L290 TraceCheckUtils]: 8: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,077 INFO L290 TraceCheckUtils]: 7: Hoare triple {79461#true} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {79461#true} is VALID [2022-04-27 15:21:33,077 INFO L272 TraceCheckUtils]: 6: Hoare triple {79461#true} call _BLAST_init(); {79461#true} is VALID [2022-04-27 15:21:33,077 INFO L290 TraceCheckUtils]: 5: Hoare triple {79461#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {79461#true} is VALID [2022-04-27 15:21:33,077 INFO L272 TraceCheckUtils]: 4: Hoare triple {79461#true} call #t~ret213 := main(); {79461#true} is VALID [2022-04-27 15:21:33,077 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {79461#true} {79461#true} #1270#return; {79461#true} is VALID [2022-04-27 15:21:33,077 INFO L290 TraceCheckUtils]: 2: Hoare triple {79461#true} assume true; {79461#true} is VALID [2022-04-27 15:21:33,077 INFO L290 TraceCheckUtils]: 1: Hoare triple {79461#true} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {79461#true} is VALID [2022-04-27 15:21:33,077 INFO L272 TraceCheckUtils]: 0: Hoare triple {79461#true} call ULTIMATE.init(); {79461#true} is VALID [2022-04-27 15:21:33,077 INFO L134 CoverageAnalysis]: Checked inductivity of 12 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2022-04-27 15:21:33,077 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1921850206] provided 0 perfect and 2 imperfect interpolant sequences [2022-04-27 15:21:33,077 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-04-27 15:21:33,077 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 7, 5] total 25 [2022-04-27 15:21:33,078 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1039655119] [2022-04-27 15:21:33,078 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-04-27 15:21:33,078 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 25 states have (on average 7.44) internal successors, (186), 15 states have internal predecessors, (186), 2 states have call successors, (41), 12 states have call predecessors, (41), 5 states have return successors, (33), 2 states have call predecessors, (33), 2 states have call successors, (33) Word has length 141 [2022-04-27 15:21:33,247 INFO L84 Accepts]: Finished accepts. word is accepted. [2022-04-27 15:21:33,247 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with has 25 states, 25 states have (on average 7.44) internal successors, (186), 15 states have internal predecessors, (186), 2 states have call successors, (41), 12 states have call predecessors, (41), 5 states have return successors, (33), 2 states have call predecessors, (33), 2 states have call successors, (33) [2022-04-27 15:21:33,413 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 260 edges. 260 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:21:33,413 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2022-04-27 15:21:33,413 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-04-27 15:21:33,413 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2022-04-27 15:21:33,414 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=86, Invalid=514, Unknown=0, NotChecked=0, Total=600 [2022-04-27 15:21:33,414 INFO L87 Difference]: Start difference. First operand 243 states and 258 transitions. Second operand has 25 states, 25 states have (on average 7.44) internal successors, (186), 15 states have internal predecessors, (186), 2 states have call successors, (41), 12 states have call predecessors, (41), 5 states have return successors, (33), 2 states have call predecessors, (33), 2 states have call successors, (33) [2022-04-27 15:21:35,577 WARN L534 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2022-04-27 15:21:46,192 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:21:46,193 INFO L93 Difference]: Finished difference Result 461 states and 504 transitions. [2022-04-27 15:21:46,193 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2022-04-27 15:21:46,193 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 25 states have (on average 7.44) internal successors, (186), 15 states have internal predecessors, (186), 2 states have call successors, (41), 12 states have call predecessors, (41), 5 states have return successors, (33), 2 states have call predecessors, (33), 2 states have call successors, (33) Word has length 141 [2022-04-27 15:21:46,193 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-04-27 15:21:46,193 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 25 states, 25 states have (on average 7.44) internal successors, (186), 15 states have internal predecessors, (186), 2 states have call successors, (41), 12 states have call predecessors, (41), 5 states have return successors, (33), 2 states have call predecessors, (33), 2 states have call successors, (33) [2022-04-27 15:21:46,195 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 21 states to 21 states and 283 transitions. [2022-04-27 15:21:46,195 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 25 states, 25 states have (on average 7.44) internal successors, (186), 15 states have internal predecessors, (186), 2 states have call successors, (41), 12 states have call predecessors, (41), 5 states have return successors, (33), 2 states have call predecessors, (33), 2 states have call successors, (33) [2022-04-27 15:21:46,197 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 21 states to 21 states and 283 transitions. [2022-04-27 15:21:46,197 INFO L86 InductivityCheck]: Starting inductivity check of a Floyd-Hoare automaton with 21 states and 283 transitions. [2022-04-27 15:21:46,482 INFO L122 InductivityCheck]: Floyd-Hoare automaton has 283 edges. 283 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2022-04-27 15:21:46,486 INFO L225 Difference]: With dead ends: 461 [2022-04-27 15:21:46,486 INFO L226 Difference]: Without dead ends: 261 [2022-04-27 15:21:46,487 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 341 GetRequests, 300 SyntacticMatches, 1 SemanticMatches, 40 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 297 ImplicationChecksByTransitivity, 1.1s TimeCoverageRelationStatistics Valid=312, Invalid=1410, Unknown=0, NotChecked=0, Total=1722 [2022-04-27 15:21:46,487 INFO L413 NwaCegarLoop]: 121 mSDtfsCounter, 217 mSDsluCounter, 506 mSDsCounter, 0 mSdLazyCounter, 1235 mSolverCounterSat, 138 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 7.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 219 SdHoareTripleChecker+Valid, 627 SdHoareTripleChecker+Invalid, 1374 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 138 IncrementalHoareTripleChecker+Valid, 1235 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 7.0s IncrementalHoareTripleChecker+Time [2022-04-27 15:21:46,487 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [219 Valid, 627 Invalid, 1374 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [138 Valid, 1235 Invalid, 1 Unknown, 0 Unchecked, 7.0s Time] [2022-04-27 15:21:46,488 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 261 states. [2022-04-27 15:21:46,805 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 261 to 251. [2022-04-27 15:21:46,806 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2022-04-27 15:21:46,806 INFO L82 GeneralOperation]: Start isEquivalent. First operand 261 states. Second operand has 251 states, 191 states have (on average 1.0785340314136125) internal successors, (206), 191 states have internal predecessors, (206), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:21:46,806 INFO L74 IsIncluded]: Start isIncluded. First operand 261 states. Second operand has 251 states, 191 states have (on average 1.0785340314136125) internal successors, (206), 191 states have internal predecessors, (206), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:21:46,806 INFO L87 Difference]: Start difference. First operand 261 states. Second operand has 251 states, 191 states have (on average 1.0785340314136125) internal successors, (206), 191 states have internal predecessors, (206), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:21:46,809 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:21:46,809 INFO L93 Difference]: Finished difference Result 261 states and 278 transitions. [2022-04-27 15:21:46,809 INFO L276 IsEmpty]: Start isEmpty. Operand 261 states and 278 transitions. [2022-04-27 15:21:46,809 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:21:46,810 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:21:46,810 INFO L74 IsIncluded]: Start isIncluded. First operand has 251 states, 191 states have (on average 1.0785340314136125) internal successors, (206), 191 states have internal predecessors, (206), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) Second operand 261 states. [2022-04-27 15:21:46,810 INFO L87 Difference]: Start difference. First operand has 251 states, 191 states have (on average 1.0785340314136125) internal successors, (206), 191 states have internal predecessors, (206), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) Second operand 261 states. [2022-04-27 15:21:46,813 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-04-27 15:21:46,813 INFO L93 Difference]: Finished difference Result 261 states and 278 transitions. [2022-04-27 15:21:46,813 INFO L276 IsEmpty]: Start isEmpty. Operand 261 states and 278 transitions. [2022-04-27 15:21:46,813 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-04-27 15:21:46,813 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2022-04-27 15:21:46,813 INFO L88 GeneralOperation]: Finished isEquivalent. [2022-04-27 15:21:46,813 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2022-04-27 15:21:46,813 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 251 states, 191 states have (on average 1.0785340314136125) internal successors, (206), 191 states have internal predecessors, (206), 31 states have call successors, (31), 31 states have call predecessors, (31), 28 states have return successors, (29), 28 states have call predecessors, (29), 29 states have call successors, (29) [2022-04-27 15:21:46,816 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 251 states to 251 states and 266 transitions. [2022-04-27 15:21:46,816 INFO L78 Accepts]: Start accepts. Automaton has 251 states and 266 transitions. Word has length 141 [2022-04-27 15:21:46,817 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-04-27 15:21:46,817 INFO L495 AbstractCegarLoop]: Abstraction has 251 states and 266 transitions. [2022-04-27 15:21:46,817 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 25 states have (on average 7.44) internal successors, (186), 15 states have internal predecessors, (186), 2 states have call successors, (41), 12 states have call predecessors, (41), 5 states have return successors, (33), 2 states have call predecessors, (33), 2 states have call successors, (33) [2022-04-27 15:21:46,817 INFO L276 IsEmpty]: Start isEmpty. Operand 251 states and 266 transitions. [2022-04-27 15:21:46,817 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 146 [2022-04-27 15:21:46,817 INFO L187 NwaCegarLoop]: Found error trace [2022-04-27 15:21:46,818 INFO L195 NwaCegarLoop]: trace histogram [5, 4, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-04-27 15:21:46,852 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2022-04-27 15:21:47,031 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable41,7 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-04-27 15:21:47,031 INFO L420 AbstractCegarLoop]: === Iteration 43 === Targeting errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION === [errorFnErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-04-27 15:21:47,032 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-04-27 15:21:47,032 INFO L85 PathProgramCache]: Analyzing trace with hash -477840538, now seen corresponding path program 2 times [2022-04-27 15:21:47,032 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-04-27 15:21:47,032 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1204384503] [2022-04-27 15:21:47,032 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-04-27 15:21:47,032 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-04-27 15:21:47,361 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,448 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 0 [2022-04-27 15:21:47,449 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,454 INFO L290 TraceCheckUtils]: 0: Hoare triple {82205#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {82089#true} is VALID [2022-04-27 15:21:47,454 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,454 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {82089#true} {82089#true} #1270#return; {82089#true} is VALID [2022-04-27 15:21:47,477 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 6 [2022-04-27 15:21:47,478 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,482 INFO L290 TraceCheckUtils]: 0: Hoare triple {82206#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {82089#true} is VALID [2022-04-27 15:21:47,482 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,482 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {82089#true} {82089#true} #1216#return; {82089#true} is VALID [2022-04-27 15:21:47,488 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2022-04-27 15:21:47,494 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,499 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:21:47,500 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,503 INFO L290 TraceCheckUtils]: 0: Hoare triple {82089#true} ~cond := #in~cond; {82089#true} is VALID [2022-04-27 15:21:47,503 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume !(0 == ~cond); {82089#true} is VALID [2022-04-27 15:21:47,503 INFO L290 TraceCheckUtils]: 2: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,504 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {82089#true} {82089#true} #1254#return; {82089#true} is VALID [2022-04-27 15:21:47,504 INFO L290 TraceCheckUtils]: 0: Hoare triple {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {82089#true} is VALID [2022-04-27 15:21:47,504 INFO L272 TraceCheckUtils]: 1: Hoare triple {82089#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {82089#true} is VALID [2022-04-27 15:21:47,504 INFO L290 TraceCheckUtils]: 2: Hoare triple {82089#true} ~cond := #in~cond; {82089#true} is VALID [2022-04-27 15:21:47,504 INFO L290 TraceCheckUtils]: 3: Hoare triple {82089#true} assume !(0 == ~cond); {82089#true} is VALID [2022-04-27 15:21:47,504 INFO L290 TraceCheckUtils]: 4: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,504 INFO L284 TraceCheckUtils]: 5: Hoare quadruple {82089#true} {82089#true} #1254#return; {82089#true} is VALID [2022-04-27 15:21:47,504 INFO L290 TraceCheckUtils]: 6: Hoare triple {82089#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {82089#true} is VALID [2022-04-27 15:21:47,504 INFO L290 TraceCheckUtils]: 7: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,504 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {82089#true} {82089#true} #1218#return; {82089#true} is VALID [2022-04-27 15:21:47,512 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2022-04-27 15:21:47,537 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,548 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:21:47,552 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,557 INFO L290 TraceCheckUtils]: 0: Hoare triple {82212#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {82089#true} is VALID [2022-04-27 15:21:47,557 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume 0 == ~__BLAST_NONDET~5; {82089#true} is VALID [2022-04-27 15:21:47,557 INFO L290 TraceCheckUtils]: 2: Hoare triple {82089#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {82089#true} is VALID [2022-04-27 15:21:47,557 INFO L290 TraceCheckUtils]: 3: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,557 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {82089#true} {82089#true} #1176#return; {82089#true} is VALID [2022-04-27 15:21:47,557 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2022-04-27 15:21:47,565 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,717 INFO L290 TraceCheckUtils]: 0: Hoare triple {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {82232#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:21:47,718 INFO L290 TraceCheckUtils]: 1: Hoare triple {82232#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82233#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} is VALID [2022-04-27 15:21:47,719 INFO L290 TraceCheckUtils]: 2: Hoare triple {82233#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82234#(and (<= 2 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 2))} is VALID [2022-04-27 15:21:47,720 INFO L290 TraceCheckUtils]: 3: Hoare triple {82234#(and (<= 2 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 2))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82235#(and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 3 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 3))} is VALID [2022-04-27 15:21:47,721 INFO L290 TraceCheckUtils]: 4: Hoare triple {82235#(and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 3 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 3))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82236#(and (<= 4 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 4))} is VALID [2022-04-27 15:21:47,722 INFO L290 TraceCheckUtils]: 5: Hoare triple {82236#(and (<= 4 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 4))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82237#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 5)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} is VALID [2022-04-27 15:21:47,723 INFO L290 TraceCheckUtils]: 6: Hoare triple {82237#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 5)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {82238#(or (<= 4294967297 |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#amount| 5))} is VALID [2022-04-27 15:21:47,723 INFO L290 TraceCheckUtils]: 7: Hoare triple {82238#(or (<= 4294967297 |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#amount| 5))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {82238#(or (<= 4294967297 |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#amount| 5))} is VALID [2022-04-27 15:21:47,724 INFO L284 TraceCheckUtils]: 8: Hoare quadruple {82238#(or (<= 4294967297 |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#amount| 5))} {82089#true} #1178#return; {82090#false} is VALID [2022-04-27 15:21:47,724 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2022-04-27 15:21:47,726 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,730 INFO L290 TraceCheckUtils]: 0: Hoare triple {82089#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {82089#true} is VALID [2022-04-27 15:21:47,730 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume 0 == ~__BLAST_NONDET~2; {82089#true} is VALID [2022-04-27 15:21:47,730 INFO L290 TraceCheckUtils]: 2: Hoare triple {82089#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {82089#true} is VALID [2022-04-27 15:21:47,730 INFO L290 TraceCheckUtils]: 3: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,730 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {82089#true} {82090#false} #1180#return; {82090#false} is VALID [2022-04-27 15:21:47,730 INFO L290 TraceCheckUtils]: 0: Hoare triple {82212#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {82089#true} is VALID [2022-04-27 15:21:47,731 INFO L272 TraceCheckUtils]: 1: Hoare triple {82089#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {82212#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:21:47,731 INFO L290 TraceCheckUtils]: 2: Hoare triple {82212#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {82089#true} is VALID [2022-04-27 15:21:47,732 INFO L290 TraceCheckUtils]: 3: Hoare triple {82089#true} assume 0 == ~__BLAST_NONDET~5; {82089#true} is VALID [2022-04-27 15:21:47,732 INFO L290 TraceCheckUtils]: 4: Hoare triple {82089#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {82089#true} is VALID [2022-04-27 15:21:47,732 INFO L290 TraceCheckUtils]: 5: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,732 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {82089#true} {82089#true} #1176#return; {82089#true} is VALID [2022-04-27 15:21:47,732 INFO L290 TraceCheckUtils]: 7: Hoare triple {82089#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {82089#true} is VALID [2022-04-27 15:21:47,732 INFO L290 TraceCheckUtils]: 8: Hoare triple {82089#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {82089#true} is VALID [2022-04-27 15:21:47,732 INFO L272 TraceCheckUtils]: 9: Hoare triple {82089#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:47,733 INFO L290 TraceCheckUtils]: 10: Hoare triple {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {82232#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:21:47,734 INFO L290 TraceCheckUtils]: 11: Hoare triple {82232#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82233#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} is VALID [2022-04-27 15:21:47,735 INFO L290 TraceCheckUtils]: 12: Hoare triple {82233#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82234#(and (<= 2 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 2))} is VALID [2022-04-27 15:21:47,735 INFO L290 TraceCheckUtils]: 13: Hoare triple {82234#(and (<= 2 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 2))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82235#(and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 3 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 3))} is VALID [2022-04-27 15:21:47,736 INFO L290 TraceCheckUtils]: 14: Hoare triple {82235#(and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 3 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 3))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82236#(and (<= 4 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 4))} is VALID [2022-04-27 15:21:47,737 INFO L290 TraceCheckUtils]: 15: Hoare triple {82236#(and (<= 4 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 4))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82237#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 5)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} is VALID [2022-04-27 15:21:47,738 INFO L290 TraceCheckUtils]: 16: Hoare triple {82237#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 5)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {82238#(or (<= 4294967297 |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#amount| 5))} is VALID [2022-04-27 15:21:47,738 INFO L290 TraceCheckUtils]: 17: Hoare triple {82238#(or (<= 4294967297 |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#amount| 5))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {82238#(or (<= 4294967297 |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#amount| 5))} is VALID [2022-04-27 15:21:47,739 INFO L284 TraceCheckUtils]: 18: Hoare quadruple {82238#(or (<= 4294967297 |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#amount| 5))} {82089#true} #1178#return; {82090#false} is VALID [2022-04-27 15:21:47,739 INFO L290 TraceCheckUtils]: 19: Hoare triple {82090#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {82090#false} is VALID [2022-04-27 15:21:47,739 INFO L272 TraceCheckUtils]: 20: Hoare triple {82090#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {82089#true} is VALID [2022-04-27 15:21:47,739 INFO L290 TraceCheckUtils]: 21: Hoare triple {82089#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {82089#true} is VALID [2022-04-27 15:21:47,739 INFO L290 TraceCheckUtils]: 22: Hoare triple {82089#true} assume 0 == ~__BLAST_NONDET~2; {82089#true} is VALID [2022-04-27 15:21:47,739 INFO L290 TraceCheckUtils]: 23: Hoare triple {82089#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {82089#true} is VALID [2022-04-27 15:21:47,739 INFO L290 TraceCheckUtils]: 24: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,740 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {82089#true} {82090#false} #1180#return; {82090#false} is VALID [2022-04-27 15:21:47,740 INFO L290 TraceCheckUtils]: 26: Hoare triple {82090#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {82090#false} is VALID [2022-04-27 15:21:47,740 INFO L290 TraceCheckUtils]: 27: Hoare triple {82090#false} assume true; {82090#false} is VALID [2022-04-27 15:21:47,740 INFO L284 TraceCheckUtils]: 28: Hoare quadruple {82090#false} {82089#true} #1220#return; {82090#false} is VALID [2022-04-27 15:21:47,758 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 54 [2022-04-27 15:21:47,759 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,762 INFO L290 TraceCheckUtils]: 0: Hoare triple {82239#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {82089#true} is VALID [2022-04-27 15:21:47,763 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,763 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {82089#true} {82090#false} #1222#return; {82090#false} is VALID [2022-04-27 15:21:47,788 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 63 [2022-04-27 15:21:47,814 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,827 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2022-04-27 15:21:47,839 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,848 INFO L290 TraceCheckUtils]: 0: Hoare triple {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {82089#true} is VALID [2022-04-27 15:21:47,848 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {82089#true} is VALID [2022-04-27 15:21:47,848 INFO L290 TraceCheckUtils]: 2: Hoare triple {82089#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {82089#true} is VALID [2022-04-27 15:21:47,848 INFO L290 TraceCheckUtils]: 3: Hoare triple {82089#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {82089#true} is VALID [2022-04-27 15:21:47,848 INFO L290 TraceCheckUtils]: 4: Hoare triple {82089#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {82089#true} is VALID [2022-04-27 15:21:47,848 INFO L290 TraceCheckUtils]: 5: Hoare triple {82089#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {82089#true} is VALID [2022-04-27 15:21:47,848 INFO L290 TraceCheckUtils]: 6: Hoare triple {82089#true} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {82089#true} is VALID [2022-04-27 15:21:47,848 INFO L290 TraceCheckUtils]: 7: Hoare triple {82089#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {82089#true} is VALID [2022-04-27 15:21:47,848 INFO L290 TraceCheckUtils]: 8: Hoare triple {82089#true} assume #res.base == dest.base && #res.offset == dest.offset; {82089#true} is VALID [2022-04-27 15:21:47,848 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {82089#true} {82089#true} #1186#return; {82089#true} is VALID [2022-04-27 15:21:47,878 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 18 [2022-04-27 15:21:47,881 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,898 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-04-27 15:21:47,900 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,904 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2022-04-27 15:21:47,905 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,909 INFO L290 TraceCheckUtils]: 0: Hoare triple {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {82089#true} is VALID [2022-04-27 15:21:47,909 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,909 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {82089#true} {82089#true} #1174#return; {82089#true} is VALID [2022-04-27 15:21:47,909 INFO L290 TraceCheckUtils]: 0: Hoare triple {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {82089#true} is VALID [2022-04-27 15:21:47,910 INFO L272 TraceCheckUtils]: 1: Hoare triple {82089#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:47,910 INFO L290 TraceCheckUtils]: 2: Hoare triple {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {82089#true} is VALID [2022-04-27 15:21:47,910 INFO L290 TraceCheckUtils]: 3: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,910 INFO L284 TraceCheckUtils]: 4: Hoare quadruple {82089#true} {82089#true} #1174#return; {82089#true} is VALID [2022-04-27 15:21:47,910 INFO L290 TraceCheckUtils]: 5: Hoare triple {82089#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {82089#true} is VALID [2022-04-27 15:21:47,910 INFO L290 TraceCheckUtils]: 6: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,910 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {82089#true} {82089#true} #1210#return; {82089#true} is VALID [2022-04-27 15:21:47,922 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2022-04-27 15:21:47,923 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,926 INFO L290 TraceCheckUtils]: 0: Hoare triple {82304#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {82089#true} is VALID [2022-04-27 15:21:47,926 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,927 INFO L284 TraceCheckUtils]: 2: Hoare quadruple {82089#true} {82089#true} #1212#return; {82089#true} is VALID [2022-04-27 15:21:47,927 INFO L290 TraceCheckUtils]: 0: Hoare triple {82288#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {82089#true} is VALID [2022-04-27 15:21:47,927 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume 0 != ~compRegistered~0; {82089#true} is VALID [2022-04-27 15:21:47,927 INFO L272 TraceCheckUtils]: 2: Hoare triple {82089#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:47,928 INFO L290 TraceCheckUtils]: 3: Hoare triple {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {82089#true} is VALID [2022-04-27 15:21:47,928 INFO L272 TraceCheckUtils]: 4: Hoare triple {82089#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:47,928 INFO L290 TraceCheckUtils]: 5: Hoare triple {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {82089#true} is VALID [2022-04-27 15:21:47,928 INFO L290 TraceCheckUtils]: 6: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,928 INFO L284 TraceCheckUtils]: 7: Hoare quadruple {82089#true} {82089#true} #1174#return; {82089#true} is VALID [2022-04-27 15:21:47,928 INFO L290 TraceCheckUtils]: 8: Hoare triple {82089#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {82089#true} is VALID [2022-04-27 15:21:47,928 INFO L290 TraceCheckUtils]: 9: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,928 INFO L284 TraceCheckUtils]: 10: Hoare quadruple {82089#true} {82089#true} #1210#return; {82089#true} is VALID [2022-04-27 15:21:47,929 INFO L290 TraceCheckUtils]: 11: Hoare triple {82089#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {82089#true} is VALID [2022-04-27 15:21:47,929 INFO L290 TraceCheckUtils]: 12: Hoare triple {82089#true} assume -1073741802 == ~compRetStatus~0; {82089#true} is VALID [2022-04-27 15:21:47,929 INFO L272 TraceCheckUtils]: 13: Hoare triple {82089#true} call stubMoreProcessingRequired(); {82304#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:47,929 INFO L290 TraceCheckUtils]: 14: Hoare triple {82304#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {82089#true} is VALID [2022-04-27 15:21:47,929 INFO L290 TraceCheckUtils]: 15: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,929 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {82089#true} {82089#true} #1212#return; {82089#true} is VALID [2022-04-27 15:21:47,929 INFO L290 TraceCheckUtils]: 17: Hoare triple {82089#true} assume !(0 == ~__BLAST_NONDET~11); {82089#true} is VALID [2022-04-27 15:21:47,929 INFO L290 TraceCheckUtils]: 18: Hoare triple {82089#true} assume !(1 == ~__BLAST_NONDET~11); {82089#true} is VALID [2022-04-27 15:21:47,929 INFO L290 TraceCheckUtils]: 19: Hoare triple {82089#true} ~returnVal2~0 := 259; {82089#true} is VALID [2022-04-27 15:21:47,929 INFO L290 TraceCheckUtils]: 20: Hoare triple {82089#true} assume !(~s~0 == ~NP~0); {82089#true} is VALID [2022-04-27 15:21:47,929 INFO L290 TraceCheckUtils]: 21: Hoare triple {82089#true} assume ~s~0 == ~MPR1~0; {82089#true} is VALID [2022-04-27 15:21:47,929 INFO L290 TraceCheckUtils]: 22: Hoare triple {82089#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {82089#true} is VALID [2022-04-27 15:21:47,929 INFO L290 TraceCheckUtils]: 23: Hoare triple {82089#true} #res := ~returnVal2~0; {82089#true} is VALID [2022-04-27 15:21:47,930 INFO L290 TraceCheckUtils]: 24: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,930 INFO L284 TraceCheckUtils]: 25: Hoare quadruple {82089#true} {82089#true} #1192#return; {82089#true} is VALID [2022-04-27 15:21:47,945 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 47 [2022-04-27 15:21:47,946 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,950 INFO L290 TraceCheckUtils]: 0: Hoare triple {82305#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {82089#true} is VALID [2022-04-27 15:21:47,950 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume ~s~0 == ~MPR3~0; {82089#true} is VALID [2022-04-27 15:21:47,951 INFO L290 TraceCheckUtils]: 2: Hoare triple {82089#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {82089#true} is VALID [2022-04-27 15:21:47,951 INFO L290 TraceCheckUtils]: 3: Hoare triple {82089#true} assume 0 == ~__BLAST_NONDET~13; {82089#true} is VALID [2022-04-27 15:21:47,951 INFO L290 TraceCheckUtils]: 4: Hoare triple {82089#true} #res := 0; {82089#true} is VALID [2022-04-27 15:21:47,951 INFO L290 TraceCheckUtils]: 5: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,951 INFO L284 TraceCheckUtils]: 6: Hoare quadruple {82089#true} {82089#true} #1194#return; {82089#true} is VALID [2022-04-27 15:21:47,951 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 59 [2022-04-27 15:21:47,951 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-04-27 15:21:47,954 INFO L290 TraceCheckUtils]: 0: Hoare triple {82304#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {82089#true} is VALID [2022-04-27 15:21:47,955 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {82089#true} is VALID [2022-04-27 15:21:47,955 INFO L290 TraceCheckUtils]: 2: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,955 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {82089#true} {82089#true} #1196#return; {82089#true} is VALID [2022-04-27 15:21:47,955 INFO L290 TraceCheckUtils]: 0: Hoare triple {82240#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {82089#true} is VALID [2022-04-27 15:21:47,955 INFO L290 TraceCheckUtils]: 1: Hoare triple {82089#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {82089#true} is VALID [2022-04-27 15:21:47,955 INFO L290 TraceCheckUtils]: 2: Hoare triple {82089#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L272 TraceCheckUtils]: 3: Hoare triple {82089#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:47,956 INFO L290 TraceCheckUtils]: 4: Hoare triple {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L290 TraceCheckUtils]: 5: Hoare triple {82089#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L290 TraceCheckUtils]: 6: Hoare triple {82089#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L290 TraceCheckUtils]: 7: Hoare triple {82089#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L290 TraceCheckUtils]: 8: Hoare triple {82089#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L290 TraceCheckUtils]: 9: Hoare triple {82089#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L290 TraceCheckUtils]: 10: Hoare triple {82089#true} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L290 TraceCheckUtils]: 11: Hoare triple {82089#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L290 TraceCheckUtils]: 12: Hoare triple {82089#true} assume #res.base == dest.base && #res.offset == dest.offset; {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L284 TraceCheckUtils]: 13: Hoare quadruple {82089#true} {82089#true} #1186#return; {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L290 TraceCheckUtils]: 14: Hoare triple {82089#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L290 TraceCheckUtils]: 15: Hoare triple {82089#true} assume !(~s~0 != ~NP~0); {82089#true} is VALID [2022-04-27 15:21:47,956 INFO L290 TraceCheckUtils]: 16: Hoare triple {82089#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {82089#true} is VALID [2022-04-27 15:21:47,957 INFO L290 TraceCheckUtils]: 17: Hoare triple {82089#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {82089#true} is VALID [2022-04-27 15:21:47,960 INFO L272 TraceCheckUtils]: 18: Hoare triple {82089#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {82288#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:47,960 INFO L290 TraceCheckUtils]: 19: Hoare triple {82288#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {82089#true} is VALID [2022-04-27 15:21:47,960 INFO L290 TraceCheckUtils]: 20: Hoare triple {82089#true} assume 0 != ~compRegistered~0; {82089#true} is VALID [2022-04-27 15:21:47,961 INFO L272 TraceCheckUtils]: 21: Hoare triple {82089#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:47,961 INFO L290 TraceCheckUtils]: 22: Hoare triple {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {82089#true} is VALID [2022-04-27 15:21:47,962 INFO L272 TraceCheckUtils]: 23: Hoare triple {82089#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:47,962 INFO L290 TraceCheckUtils]: 24: Hoare triple {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {82089#true} is VALID [2022-04-27 15:21:47,962 INFO L290 TraceCheckUtils]: 25: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,962 INFO L284 TraceCheckUtils]: 26: Hoare quadruple {82089#true} {82089#true} #1174#return; {82089#true} is VALID [2022-04-27 15:21:47,962 INFO L290 TraceCheckUtils]: 27: Hoare triple {82089#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {82089#true} is VALID [2022-04-27 15:21:47,962 INFO L290 TraceCheckUtils]: 28: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,962 INFO L284 TraceCheckUtils]: 29: Hoare quadruple {82089#true} {82089#true} #1210#return; {82089#true} is VALID [2022-04-27 15:21:47,962 INFO L290 TraceCheckUtils]: 30: Hoare triple {82089#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {82089#true} is VALID [2022-04-27 15:21:47,962 INFO L290 TraceCheckUtils]: 31: Hoare triple {82089#true} assume -1073741802 == ~compRetStatus~0; {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L272 TraceCheckUtils]: 32: Hoare triple {82089#true} call stubMoreProcessingRequired(); {82304#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:47,963 INFO L290 TraceCheckUtils]: 33: Hoare triple {82304#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L290 TraceCheckUtils]: 34: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L284 TraceCheckUtils]: 35: Hoare quadruple {82089#true} {82089#true} #1212#return; {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L290 TraceCheckUtils]: 36: Hoare triple {82089#true} assume !(0 == ~__BLAST_NONDET~11); {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L290 TraceCheckUtils]: 37: Hoare triple {82089#true} assume !(1 == ~__BLAST_NONDET~11); {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L290 TraceCheckUtils]: 38: Hoare triple {82089#true} ~returnVal2~0 := 259; {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L290 TraceCheckUtils]: 39: Hoare triple {82089#true} assume !(~s~0 == ~NP~0); {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L290 TraceCheckUtils]: 40: Hoare triple {82089#true} assume ~s~0 == ~MPR1~0; {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L290 TraceCheckUtils]: 41: Hoare triple {82089#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L290 TraceCheckUtils]: 42: Hoare triple {82089#true} #res := ~returnVal2~0; {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L290 TraceCheckUtils]: 43: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L284 TraceCheckUtils]: 44: Hoare quadruple {82089#true} {82089#true} #1192#return; {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L290 TraceCheckUtils]: 45: Hoare triple {82089#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {82089#true} is VALID [2022-04-27 15:21:47,963 INFO L290 TraceCheckUtils]: 46: Hoare triple {82089#true} assume 259 == ~status~3; {82089#true} is VALID [2022-04-27 15:21:47,964 INFO L272 TraceCheckUtils]: 47: Hoare triple {82089#true} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {82305#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:47,964 INFO L290 TraceCheckUtils]: 48: Hoare triple {82305#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {82089#true} is VALID [2022-04-27 15:21:47,964 INFO L290 TraceCheckUtils]: 49: Hoare triple {82089#true} assume ~s~0 == ~MPR3~0; {82089#true} is VALID [2022-04-27 15:21:47,964 INFO L290 TraceCheckUtils]: 50: Hoare triple {82089#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {82089#true} is VALID [2022-04-27 15:21:47,964 INFO L290 TraceCheckUtils]: 51: Hoare triple {82089#true} assume 0 == ~__BLAST_NONDET~13; {82089#true} is VALID [2022-04-27 15:21:47,964 INFO L290 TraceCheckUtils]: 52: Hoare triple {82089#true} #res := 0; {82089#true} is VALID [2022-04-27 15:21:47,964 INFO L290 TraceCheckUtils]: 53: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,964 INFO L284 TraceCheckUtils]: 54: Hoare quadruple {82089#true} {82089#true} #1194#return; {82089#true} is VALID [2022-04-27 15:21:47,965 INFO L290 TraceCheckUtils]: 55: Hoare triple {82089#true} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {82089#true} is VALID [2022-04-27 15:21:47,965 INFO L290 TraceCheckUtils]: 56: Hoare triple {82089#true} assume ~status~3 >= 0; {82089#true} is VALID [2022-04-27 15:21:47,965 INFO L290 TraceCheckUtils]: 57: Hoare triple {82089#true} assume !(~myStatus~0 >= 0); {82089#true} is VALID [2022-04-27 15:21:47,965 INFO L290 TraceCheckUtils]: 58: Hoare triple {82089#true} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {82089#true} is VALID [2022-04-27 15:21:47,965 INFO L272 TraceCheckUtils]: 59: Hoare triple {82089#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {82304#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:47,965 INFO L290 TraceCheckUtils]: 60: Hoare triple {82304#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {82089#true} is VALID [2022-04-27 15:21:47,965 INFO L290 TraceCheckUtils]: 61: Hoare triple {82089#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {82089#true} is VALID [2022-04-27 15:21:47,965 INFO L290 TraceCheckUtils]: 62: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,965 INFO L284 TraceCheckUtils]: 63: Hoare quadruple {82089#true} {82089#true} #1196#return; {82089#true} is VALID [2022-04-27 15:21:47,966 INFO L290 TraceCheckUtils]: 64: Hoare triple {82089#true} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {82089#true} is VALID [2022-04-27 15:21:47,966 INFO L290 TraceCheckUtils]: 65: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,966 INFO L284 TraceCheckUtils]: 66: Hoare quadruple {82089#true} {82090#false} #1230#return; {82090#false} is VALID [2022-04-27 15:21:47,967 INFO L272 TraceCheckUtils]: 0: Hoare triple {82089#true} call ULTIMATE.init(); {82205#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} is VALID [2022-04-27 15:21:47,967 INFO L290 TraceCheckUtils]: 1: Hoare triple {82205#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~myStatus~0 |old(~myStatus~0)|) (= ~pirp~0.base |old(~pirp~0.base)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= ~s~0 |old(~s~0)|) (= ~pirp~0.offset |old(~pirp~0.offset)|) (= |old(~_SLAM_alloc_dummy~0)| ~_SLAM_alloc_dummy~0) (= |old(#NULL.base)| |#NULL.base|))} #NULL.base, #NULL.offset := 0, 0;assume 0 == #valid[0];assume 0 < #StackHeapBarrier;call #Ultimate.allocInit(2, 1);call write~init~int(48, 1, 0, 1);call write~init~int(0, 1, 1, 1);call #Ultimate.allocInit(18, 2);call #Ultimate.allocInit(12, 3);~s~0 := 0;~UNLOADED~0 := 0;~NP~0 := 0;~DC~0 := 0;~SKIP1~0 := 0;~SKIP2~0 := 0;~MPR1~0 := 0;~MPR3~0 := 0;~IPC~0 := 0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0;~myStatus~0 := 0;~pirp~0.base, ~pirp~0.offset := 0, 0;~_SLAM_alloc_dummy~0 := 0; {82089#true} is VALID [2022-04-27 15:21:47,967 INFO L290 TraceCheckUtils]: 2: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,967 INFO L284 TraceCheckUtils]: 3: Hoare quadruple {82089#true} {82089#true} #1270#return; {82089#true} is VALID [2022-04-27 15:21:47,967 INFO L272 TraceCheckUtils]: 4: Hoare triple {82089#true} call #t~ret213 := main(); {82089#true} is VALID [2022-04-27 15:21:47,967 INFO L290 TraceCheckUtils]: 5: Hoare triple {82089#true} call ~#d~0.base, ~#d~0.offset := #Ultimate.allocOnStack(168);call ~#u~0.base, ~#u~0.offset := #Ultimate.allocOnStack(8);havoc ~status~5;assume -2147483648 <= #t~nondet154 && #t~nondet154 <= 2147483647;~we_should_unload~0 := #t~nondet154;havoc #t~nondet154;call ~#irp~0.base, ~#irp~0.offset := #Ultimate.allocOnStack(111);assume -2147483648 <= #t~nondet155 && #t~nondet155 <= 2147483647;~__BLAST_NONDET~0 := #t~nondet155;havoc #t~nondet155;assume -2147483648 <= #t~nondet156 && #t~nondet156 <= 2147483647;~irp_choice~0 := #t~nondet156;havoc #t~nondet156;call ~#devext~0.base, ~#devext~0.offset := #Ultimate.allocOnStack(55);call ~#devobj~0.base, ~#devobj~0.offset := #Ultimate.allocOnStack(175);call write~$Pointer$(~#devext~0.base, ~#devext~0.offset, ~#devobj~0.base, 40 + ~#devobj~0.offset, 4);call ~#ext~0.base, ~#ext~0.offset := #Ultimate.allocOnStack(20);call write~$Pointer$(~#ext~0.base, ~#ext~0.offset, ~#d~0.base, 24 + ~#d~0.offset, 4);call ~#hookkb~0.base, ~#hookkb~0.offset := #Ultimate.allocOnStack(24);call ~#stack~0.base, ~#stack~0.offset := #Ultimate.allocOnStack(108);call write~int(#t~nondet157, ~#stack~0.base, ~#stack~0.offset, 1);havoc #t~nondet157;call write~int(#t~nondet158, ~#stack~0.base, 36 + ~#stack~0.offset, 1);havoc #t~nondet158;call write~int(#t~nondet159, ~#stack~0.base, 72 + ~#stack~0.offset, 1);havoc #t~nondet159;call write~int(#t~nondet160, ~#stack~0.base, 1 + ~#stack~0.offset, 1);havoc #t~nondet160;call write~int(#t~nondet161, ~#stack~0.base, 37 + ~#stack~0.offset, 1);havoc #t~nondet161;call write~int(#t~nondet162, ~#stack~0.base, 73 + ~#stack~0.offset, 1);havoc #t~nondet162;call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 16 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 52 + ~#stack~0.offset, 4);call write~$Pointer$(~#hookkb~0.base, ~#hookkb~0.offset, ~#stack~0.base, 88 + ~#stack~0.offset, 4);call write~int(#t~nondet163, ~#stack~0.base, 8 + ~#stack~0.offset, 4);havoc #t~nondet163;call write~int(#t~nondet164, ~#stack~0.base, 44 + ~#stack~0.offset, 4);havoc #t~nondet164;call write~int(#t~nondet165, ~#stack~0.base, 80 + ~#stack~0.offset, 4);havoc #t~nondet165;call write~int(#t~nondet166, ~#stack~0.base, 12 + ~#stack~0.offset, 4);havoc #t~nondet166;call write~int(#t~nondet167, ~#stack~0.base, 48 + ~#stack~0.offset, 4);havoc #t~nondet167;call write~int(#t~nondet168, ~#stack~0.base, 84 + ~#stack~0.offset, 4);havoc #t~nondet168;call write~$Pointer$(~#stack~0.base, 36 + ~#stack~0.offset, ~#irp~0.base, 96 + ~#irp~0.offset, 4);~pirp~0.base, ~pirp~0.offset := ~#irp~0.base, ~#irp~0.offset; {82089#true} is VALID [2022-04-27 15:21:47,968 INFO L272 TraceCheckUtils]: 6: Hoare triple {82089#true} call _BLAST_init(); {82206#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:47,968 INFO L290 TraceCheckUtils]: 7: Hoare triple {82206#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= ~DC~0 |old(~DC~0)|) (= |old(~SKIP1~0)| ~SKIP1~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~MPR3~0 |old(~MPR3~0)|) (= ~MPR1~0 |old(~MPR1~0)|) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |old(~UNLOADED~0)| ~UNLOADED~0) (= ~NP~0 |old(~NP~0)|) (= ~pended~0 |old(~pended~0)|) (= ~IPC~0 |old(~IPC~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~SKIP2~0)| ~SKIP2~0) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~UNLOADED~0 := 0;~NP~0 := 1;~DC~0 := 2;~SKIP1~0 := 3;~SKIP2~0 := 4;~MPR1~0 := 5;~MPR3~0 := 6;~IPC~0 := 7;~s~0 := ~UNLOADED~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {82089#true} is VALID [2022-04-27 15:21:47,968 INFO L290 TraceCheckUtils]: 8: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,968 INFO L284 TraceCheckUtils]: 9: Hoare quadruple {82089#true} {82089#true} #1216#return; {82089#true} is VALID [2022-04-27 15:21:47,969 INFO L272 TraceCheckUtils]: 10: Hoare triple {82089#true} call #t~ret169 := DriverEntry(~#d~0.base, ~#d~0.offset, ~#u~0.base, ~#u~0.offset); {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:47,969 INFO L290 TraceCheckUtils]: 11: Hoare triple {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~RegistryPath.base, ~RegistryPath.offset := #in~RegistryPath.base, #in~RegistryPath.offset;assume -2147483648 <= #t~nondet20 && #t~nondet20 <= 2147483647;~i~0 := #t~nondet20;havoc #t~nondet20; {82089#true} is VALID [2022-04-27 15:21:47,969 INFO L272 TraceCheckUtils]: 12: Hoare triple {82089#true} call assume_abort_if_not((if ~i~0 % 4294967296 < 28 then 1 else 0)); {82089#true} is VALID [2022-04-27 15:21:47,969 INFO L290 TraceCheckUtils]: 13: Hoare triple {82089#true} ~cond := #in~cond; {82089#true} is VALID [2022-04-27 15:21:47,969 INFO L290 TraceCheckUtils]: 14: Hoare triple {82089#true} assume !(0 == ~cond); {82089#true} is VALID [2022-04-27 15:21:47,969 INFO L290 TraceCheckUtils]: 15: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,969 INFO L284 TraceCheckUtils]: 16: Hoare quadruple {82089#true} {82089#true} #1254#return; {82089#true} is VALID [2022-04-27 15:21:47,969 INFO L290 TraceCheckUtils]: 17: Hoare triple {82089#true} call write~$Pointer$(#funAddr~KbFilter_DispatchPassThrough.base, #funAddr~KbFilter_DispatchPassThrough.offset, ~DriverObject.base, 56 + ~DriverObject.offset + 4 * (if ~i~0 % 4294967296 % 4294967296 <= 2147483647 then ~i~0 % 4294967296 % 4294967296 else ~i~0 % 4294967296 % 4294967296 - 4294967296), 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 56 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_CreateClose.base, #funAddr~KbFilter_CreateClose.offset, ~DriverObject.base, 64 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_PnP.base, #funAddr~KbFilter_PnP.offset, ~DriverObject.base, 164 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Power.base, #funAddr~KbFilter_Power.offset, ~DriverObject.base, 144 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_InternIoCtl.base, #funAddr~KbFilter_InternIoCtl.offset, ~DriverObject.base, 116 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_Unload.base, #funAddr~KbFilter_Unload.offset, ~DriverObject.base, 52 + ~DriverObject.offset, 4);call #t~mem21.base, #t~mem21.offset := read~$Pointer$(~DriverObject.base, 24 + ~DriverObject.offset, 4);call write~$Pointer$(#funAddr~KbFilter_AddDevice.base, #funAddr~KbFilter_AddDevice.offset, #t~mem21.base, 4 + #t~mem21.offset, 4);havoc #t~mem21.base, #t~mem21.offset;#res := 0; {82089#true} is VALID [2022-04-27 15:21:47,969 INFO L290 TraceCheckUtils]: 18: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,969 INFO L284 TraceCheckUtils]: 19: Hoare quadruple {82089#true} {82089#true} #1218#return; {82089#true} is VALID [2022-04-27 15:21:47,969 INFO L290 TraceCheckUtils]: 20: Hoare triple {82089#true} assume -2147483648 <= #t~ret169 && #t~ret169 <= 2147483647;~status~5 := #t~ret169;havoc #t~ret169; {82089#true} is VALID [2022-04-27 15:21:47,969 INFO L290 TraceCheckUtils]: 21: Hoare triple {82089#true} assume ~status~5 >= 0;~s~0 := ~NP~0;~customIrp~0 := 0;~setEventCalled~0 := ~customIrp~0;~lowerDriverReturn~0 := ~setEventCalled~0;~compRegistered~0 := ~lowerDriverReturn~0;~compFptr~0.base, ~compFptr~0.offset := 0, ~compRegistered~0;~pended~0 := ~compFptr~0.base + ~compFptr~0.offset;call write~int(0, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := 0; {82089#true} is VALID [2022-04-27 15:21:47,970 INFO L290 TraceCheckUtils]: 22: Hoare triple {82089#true} assume 0 == ~irp_choice~0;call write~int(-1073741637, ~pirp~0.base, 24 + ~pirp~0.offset, 4);~myStatus~0 := -1073741637; {82089#true} is VALID [2022-04-27 15:21:47,970 INFO L272 TraceCheckUtils]: 23: Hoare triple {82089#true} call #t~ret170 := KbFilter_AddDevice(~#d~0.base, ~#d~0.offset, ~#devobj~0.base, ~#devobj~0.offset); {82212#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:21:47,970 INFO L290 TraceCheckUtils]: 24: Hoare triple {82212#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~Driver.base, ~Driver.offset := #in~Driver.base, #in~Driver.offset;~PDO.base, ~PDO.offset := #in~PDO.base, #in~PDO.offset;havoc ~devExt~0.base, ~devExt~0.offset;call ~#device~0.base, ~#device~0.offset := #Ultimate.allocOnStack(4);havoc ~status~0;~status~0 := 0; {82089#true} is VALID [2022-04-27 15:21:47,971 INFO L272 TraceCheckUtils]: 25: Hoare triple {82089#true} call #t~ret22 := IoCreateDevice(~Driver.base, ~Driver.offset, 55, 0, 0, 11, 0, 0, ~#device~0.base, ~#device~0.offset); {82212#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} is VALID [2022-04-27 15:21:47,971 INFO L290 TraceCheckUtils]: 26: Hoare triple {82212#(and (= |old(#length)| |#length|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(#valid)| |#valid|))} ~DriverObject.base, ~DriverObject.offset := #in~DriverObject.base, #in~DriverObject.offset;~DeviceExtensionSize := #in~DeviceExtensionSize;~DeviceName.base, ~DeviceName.offset := #in~DeviceName.base, #in~DeviceName.offset;~DeviceType := #in~DeviceType;~DeviceCharacteristics := #in~DeviceCharacteristics;~Exclusive := #in~Exclusive;~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;assume -2147483648 <= #t~nondet185 && #t~nondet185 <= 2147483647;~__BLAST_NONDET~5 := #t~nondet185;havoc #t~nondet185;havoc ~tmp~8.base, ~tmp~8.offset; {82089#true} is VALID [2022-04-27 15:21:47,972 INFO L290 TraceCheckUtils]: 27: Hoare triple {82089#true} assume 0 == ~__BLAST_NONDET~5; {82089#true} is VALID [2022-04-27 15:21:47,972 INFO L290 TraceCheckUtils]: 28: Hoare triple {82089#true} call #t~malloc186.base, #t~malloc186.offset := #Ultimate.allocOnHeap(175);~tmp~8.base, ~tmp~8.offset := #t~malloc186.base, #t~malloc186.offset;havoc #t~malloc186.base, #t~malloc186.offset;call write~$Pointer$(~tmp~8.base, ~tmp~8.offset, ~DeviceObject.base, ~DeviceObject.offset, 4);call #t~mem187.base, #t~mem187.offset := read~$Pointer$(~DeviceObject.base, ~DeviceObject.offset, 4);call #t~malloc188.base, #t~malloc188.offset := #Ultimate.allocOnHeap(~DeviceExtensionSize);call write~$Pointer$(#t~malloc188.base, #t~malloc188.offset, #t~mem187.base, 40 + #t~mem187.offset, 4);havoc #t~mem187.base, #t~mem187.offset;havoc #t~malloc188.base, #t~malloc188.offset;#res := 0; {82089#true} is VALID [2022-04-27 15:21:47,972 INFO L290 TraceCheckUtils]: 29: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,972 INFO L284 TraceCheckUtils]: 30: Hoare quadruple {82089#true} {82089#true} #1176#return; {82089#true} is VALID [2022-04-27 15:21:47,972 INFO L290 TraceCheckUtils]: 31: Hoare triple {82089#true} assume -2147483648 <= #t~ret22 && #t~ret22 <= 2147483647;~status~0 := #t~ret22;havoc #t~ret22; {82089#true} is VALID [2022-04-27 15:21:47,972 INFO L290 TraceCheckUtils]: 32: Hoare triple {82089#true} assume !!(~status~0 >= 0);call #t~mem23.base, #t~mem23.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem24.base, #t~mem24.offset := read~$Pointer$(#t~mem23.base, 40 + #t~mem23.offset, 4); {82089#true} is VALID [2022-04-27 15:21:47,972 INFO L272 TraceCheckUtils]: 33: Hoare triple {82089#true} call #t~memset~res25.base, #t~memset~res25.offset := #Ultimate.C_memset(#t~mem24.base, #t~mem24.offset, 0, 55); {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:47,973 INFO L290 TraceCheckUtils]: 34: Hoare triple {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr214 := 0; {82232#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} is VALID [2022-04-27 15:21:47,974 INFO L290 TraceCheckUtils]: 35: Hoare triple {82232#(and (<= 0 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 0))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82233#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} is VALID [2022-04-27 15:21:47,974 INFO L290 TraceCheckUtils]: 36: Hoare triple {82233#(and (<= |#Ultimate.C_memset_#t~loopctr214| 1) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 1 |#Ultimate.C_memset_#t~loopctr214|))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82234#(and (<= 2 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 2))} is VALID [2022-04-27 15:21:47,975 INFO L290 TraceCheckUtils]: 37: Hoare triple {82234#(and (<= 2 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 2))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82235#(and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 3 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 3))} is VALID [2022-04-27 15:21:47,976 INFO L290 TraceCheckUtils]: 38: Hoare triple {82235#(and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= 3 |#Ultimate.C_memset_#t~loopctr214|) (<= |#Ultimate.C_memset_#t~loopctr214| 3))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82236#(and (<= 4 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 4))} is VALID [2022-04-27 15:21:47,977 INFO L290 TraceCheckUtils]: 39: Hoare triple {82236#(and (<= 4 |#Ultimate.C_memset_#t~loopctr214|) (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#t~loopctr214| 4))} assume #t~loopctr214 % 4294967296 < #amount % 4294967296;#memory_$Pointer$.base, #memory_$Pointer$.offset := #memory_$Pointer$.base[#ptr.base,#ptr.offset + #t~loopctr214 := 0], #memory_$Pointer$.offset[#ptr.base,#ptr.offset + #t~loopctr214 := #value % 256];#memory_int := #memory_int[#ptr.base,#ptr.offset + #t~loopctr214 := #value];#t~loopctr214 := 1 + #t~loopctr214; {82237#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 5)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} is VALID [2022-04-27 15:21:47,978 INFO L290 TraceCheckUtils]: 40: Hoare triple {82237#(and (or (not (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))) (<= |#Ultimate.C_memset_#t~loopctr214| 5)) (or (and (<= (+ (* (div |#Ultimate.C_memset_#amount| 4294967296) 4294967296) 1) |#Ultimate.C_memset_#amount|) (not (<= (+ (div |#Ultimate.C_memset_#t~loopctr214| 4294967296) 1) 0))) (<= (div |#Ultimate.C_memset_#amount| 4294967296) (div |#Ultimate.C_memset_#t~loopctr214| 4294967296))))} assume !(#t~loopctr214 % 4294967296 < #amount % 4294967296); {82238#(or (<= 4294967297 |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#amount| 5))} is VALID [2022-04-27 15:21:47,978 INFO L290 TraceCheckUtils]: 41: Hoare triple {82238#(or (<= 4294967297 |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#amount| 5))} assume #res.base == #ptr.base && #res.offset == #ptr.offset; {82238#(or (<= 4294967297 |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#amount| 5))} is VALID [2022-04-27 15:21:47,979 INFO L284 TraceCheckUtils]: 42: Hoare quadruple {82238#(or (<= 4294967297 |#Ultimate.C_memset_#amount|) (<= |#Ultimate.C_memset_#amount| 5))} {82089#true} #1178#return; {82090#false} is VALID [2022-04-27 15:21:47,979 INFO L290 TraceCheckUtils]: 43: Hoare triple {82090#false} havoc #t~mem23.base, #t~mem23.offset;havoc #t~mem24.base, #t~mem24.offset;havoc #t~memset~res25.base, #t~memset~res25.offset;call #t~mem26.base, #t~mem26.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem27.base, #t~mem27.offset := read~$Pointer$(#t~mem26.base, 40 + #t~mem26.offset, 4);~devExt~0.base, ~devExt~0.offset := #t~mem27.base, #t~mem27.offset;havoc #t~mem26.base, #t~mem26.offset;havoc #t~mem27.base, #t~mem27.offset;call #t~mem28.base, #t~mem28.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4); {82090#false} is VALID [2022-04-27 15:21:47,979 INFO L272 TraceCheckUtils]: 44: Hoare triple {82090#false} call #t~ret29.base, #t~ret29.offset := IoAttachDeviceToDeviceStack(#t~mem28.base, #t~mem28.offset, ~PDO.base, ~PDO.offset); {82089#true} is VALID [2022-04-27 15:21:47,979 INFO L290 TraceCheckUtils]: 45: Hoare triple {82089#true} ~SourceDevice.base, ~SourceDevice.offset := #in~SourceDevice.base, #in~SourceDevice.offset;~TargetDevice.base, ~TargetDevice.offset := #in~TargetDevice.base, #in~TargetDevice.offset;assume -2147483648 <= #t~nondet180 && #t~nondet180 <= 2147483647;~__BLAST_NONDET~2 := #t~nondet180;havoc #t~nondet180; {82089#true} is VALID [2022-04-27 15:21:47,979 INFO L290 TraceCheckUtils]: 46: Hoare triple {82089#true} assume 0 == ~__BLAST_NONDET~2; {82089#true} is VALID [2022-04-27 15:21:47,979 INFO L290 TraceCheckUtils]: 47: Hoare triple {82089#true} #res.base, #res.offset := ~TargetDevice.base, ~TargetDevice.offset; {82089#true} is VALID [2022-04-27 15:21:47,979 INFO L290 TraceCheckUtils]: 48: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,979 INFO L284 TraceCheckUtils]: 49: Hoare quadruple {82089#true} {82090#false} #1180#return; {82090#false} is VALID [2022-04-27 15:21:47,979 INFO L290 TraceCheckUtils]: 50: Hoare triple {82090#false} call write~$Pointer$(#t~ret29.base, #t~ret29.offset, ~devExt~0.base, 8 + ~devExt~0.offset, 4);havoc #t~mem28.base, #t~mem28.offset;havoc #t~ret29.base, #t~ret29.offset;call #t~mem30.base, #t~mem30.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call write~$Pointer$(#t~mem30.base, #t~mem30.offset, ~devExt~0.base, ~devExt~0.offset, 4);havoc #t~mem30.base, #t~mem30.offset;call write~$Pointer$(~PDO.base, ~PDO.offset, ~devExt~0.base, 4 + ~devExt~0.offset, 4);call write~int(1, ~devExt~0.base, 48 + ~devExt~0.offset, 4);call write~int(0, ~devExt~0.base, 53 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 54 + ~devExt~0.offset, 1);call write~int(0, ~devExt~0.base, 52 + ~devExt~0.offset, 1);call #t~mem31.base, #t~mem31.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem32 := read~int(#t~mem31.base, 28 + #t~mem31.offset, 4);call write~int(~bitwiseOr(#t~mem32, 8196), #t~mem31.base, 28 + #t~mem31.offset, 4);havoc #t~mem31.base, #t~mem31.offset;havoc #t~mem32;call #t~mem33.base, #t~mem33.offset := read~$Pointer$(~#device~0.base, ~#device~0.offset, 4);call #t~mem34 := read~int(#t~mem33.base, 28 + #t~mem33.offset, 4);call write~int((if 0 == #t~mem34 then 0 else (if 1 == #t~mem34 then 1 else ~bitwiseAnd(#t~mem34, 4294967167))), #t~mem33.base, 28 + #t~mem33.offset, 4);havoc #t~mem33.base, #t~mem33.offset;havoc #t~mem34;#res := ~status~0;call ULTIMATE.dealloc(~#device~0.base, ~#device~0.offset);havoc ~#device~0.base, ~#device~0.offset; {82090#false} is VALID [2022-04-27 15:21:47,979 INFO L290 TraceCheckUtils]: 51: Hoare triple {82090#false} assume true; {82090#false} is VALID [2022-04-27 15:21:47,979 INFO L284 TraceCheckUtils]: 52: Hoare quadruple {82090#false} {82089#true} #1220#return; {82090#false} is VALID [2022-04-27 15:21:47,979 INFO L290 TraceCheckUtils]: 53: Hoare triple {82090#false} assume -2147483648 <= #t~ret170 && #t~ret170 <= 2147483647;~status~5 := #t~ret170;havoc #t~ret170; {82090#false} is VALID [2022-04-27 15:21:47,979 INFO L272 TraceCheckUtils]: 54: Hoare triple {82090#false} call stub_driver_init(); {82239#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:47,980 INFO L290 TraceCheckUtils]: 55: Hoare triple {82239#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~pended~0 |old(~pended~0)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~s~0 := ~NP~0;~pended~0 := 0;~compFptr~0.base, ~compFptr~0.offset := 0, 0;~compRegistered~0 := 0;~lowerDriverReturn~0 := 0;~setEventCalled~0 := 0;~customIrp~0 := 0; {82089#true} is VALID [2022-04-27 15:21:47,980 INFO L290 TraceCheckUtils]: 56: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,980 INFO L284 TraceCheckUtils]: 57: Hoare quadruple {82089#true} {82090#false} #1222#return; {82090#false} is VALID [2022-04-27 15:21:47,980 INFO L290 TraceCheckUtils]: 58: Hoare triple {82090#false} assume !!(~status~5 >= 0); {82090#false} is VALID [2022-04-27 15:21:47,980 INFO L290 TraceCheckUtils]: 59: Hoare triple {82090#false} assume !(0 == ~__BLAST_NONDET~0); {82090#false} is VALID [2022-04-27 15:21:47,980 INFO L290 TraceCheckUtils]: 60: Hoare triple {82090#false} assume !(1 == ~__BLAST_NONDET~0); {82090#false} is VALID [2022-04-27 15:21:47,980 INFO L290 TraceCheckUtils]: 61: Hoare triple {82090#false} assume !(2 == ~__BLAST_NONDET~0); {82090#false} is VALID [2022-04-27 15:21:47,980 INFO L290 TraceCheckUtils]: 62: Hoare triple {82090#false} assume 3 == ~__BLAST_NONDET~0; {82090#false} is VALID [2022-04-27 15:21:47,980 INFO L272 TraceCheckUtils]: 63: Hoare triple {82090#false} call #t~ret174 := KbFilter_PnP(~#devobj~0.base, ~#devobj~0.offset, ~pirp~0.base, ~pirp~0.offset); {82240#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:47,980 INFO L290 TraceCheckUtils]: 64: Hoare triple {82240#(and (= |old(~compRegistered~0)| ~compRegistered~0) (= |old(#length)| |#length|) (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= ~myStatus~0 |old(~myStatus~0)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|) (= |old(~compFptr~0.base)| ~compFptr~0.base) (= |old(~compFptr~0.offset)| ~compFptr~0.offset) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= |old(#valid)| |#valid|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;havoc ~devExt~3.base, ~devExt~3.offset;havoc ~irpStack~3.base, ~irpStack~3.offset;havoc ~status~3;call ~#event~1.base, ~#event~1.offset := #Ultimate.allocOnStack(16);havoc ~irpSp~0.base, ~irpSp~0.offset;havoc ~nextIrpSp~0.base, ~nextIrpSp~0.offset;havoc ~irpSp___0~0.base, ~irpSp___0~0.offset;~status~3 := 0;call #t~mem79.base, #t~mem79.offset := read~$Pointer$(~DeviceObject.base, 40 + ~DeviceObject.offset, 4);~devExt~3.base, ~devExt~3.offset := #t~mem79.base, #t~mem79.offset;havoc #t~mem79.base, #t~mem79.offset;call #t~mem80.base, #t~mem80.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpStack~3.base, ~irpStack~3.offset := #t~mem80.base, #t~mem80.offset;havoc #t~mem80.base, #t~mem80.offset;call #t~mem81 := read~int(~irpStack~3.base, 1 + ~irpStack~3.offset, 1); {82089#true} is VALID [2022-04-27 15:21:47,980 INFO L290 TraceCheckUtils]: 65: Hoare triple {82089#true} assume 0 == #t~mem81 % 256;havoc #t~mem81; {82089#true} is VALID [2022-04-27 15:21:47,980 INFO L290 TraceCheckUtils]: 66: Hoare triple {82089#true} call #t~mem102.base, #t~mem102.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp~0.base, ~irpSp~0.offset := #t~mem102.base, #t~mem102.offset;havoc #t~mem102.base, #t~mem102.offset;call #t~mem103.base, #t~mem103.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~nextIrpSp~0.base, ~nextIrpSp~0.offset := #t~mem103.base, #t~mem103.offset - 36;havoc #t~mem103.base, #t~mem103.offset; {82089#true} is VALID [2022-04-27 15:21:47,981 INFO L272 TraceCheckUtils]: 67: Hoare triple {82089#true} call #t~memmove~res104.base, #t~memmove~res104.offset := #Ultimate.C_memmove(~nextIrpSp~0.base, ~nextIrpSp~0.offset, ~irpSp~0.base, ~irpSp~0.offset, 28); {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} is VALID [2022-04-27 15:21:47,981 INFO L290 TraceCheckUtils]: 68: Hoare triple {82207#(and (= |#memory_int| |old(#memory_int)|) (= |#memory_$Pointer$.base| |old(#memory_$Pointer$.base)|) (= |#memory_$Pointer$.offset| |old(#memory_$Pointer$.offset)|))} #t~loopctr215 := 0; {82089#true} is VALID [2022-04-27 15:21:47,981 INFO L290 TraceCheckUtils]: 69: Hoare triple {82089#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {82089#true} is VALID [2022-04-27 15:21:47,981 INFO L290 TraceCheckUtils]: 70: Hoare triple {82089#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {82089#true} is VALID [2022-04-27 15:21:47,981 INFO L290 TraceCheckUtils]: 71: Hoare triple {82089#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {82089#true} is VALID [2022-04-27 15:21:47,981 INFO L290 TraceCheckUtils]: 72: Hoare triple {82089#true} assume #t~loopctr215 % 4294967296 < size % 4294967296;call #t~mem216 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem216, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem217 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem217, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem218 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem218, dest.base, dest.offset + #t~loopctr215, 1);call #t~mem219 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 4);call write~unchecked~int(#t~mem219, dest.base, dest.offset + #t~loopctr215, 4);call #t~mem220 := read~unchecked~int(src.base, src.offset + #t~loopctr215, 1);call write~unchecked~int(#t~mem220, dest.base, dest.offset + #t~loopctr215, 1);#t~loopctr215 := 1 + #t~loopctr215; {82089#true} is VALID [2022-04-27 15:21:47,981 INFO L290 TraceCheckUtils]: 73: Hoare triple {82089#true} assume !(#t~loopctr215 % 4294967296 < size % 4294967296);#t~loopctr221 := 0; {82089#true} is VALID [2022-04-27 15:21:47,981 INFO L290 TraceCheckUtils]: 74: Hoare triple {82089#true} assume #t~loopctr221 % 4294967296 < size % 4294967296;call #t~mem222.base, #t~mem222.offset := read~unchecked~$Pointer$(src.base, src.offset + #t~loopctr221, 4);call write~unchecked~$Pointer$(#t~mem222.base, #t~mem222.offset, dest.base, dest.offset + #t~loopctr221, 4);#t~loopctr221 := 4 + #t~loopctr221; {82089#true} is VALID [2022-04-27 15:21:47,981 INFO L290 TraceCheckUtils]: 75: Hoare triple {82089#true} assume !(#t~loopctr221 % 4294967296 < size % 4294967296); {82089#true} is VALID [2022-04-27 15:21:47,982 INFO L290 TraceCheckUtils]: 76: Hoare triple {82089#true} assume #res.base == dest.base && #res.offset == dest.offset; {82089#true} is VALID [2022-04-27 15:21:47,982 INFO L284 TraceCheckUtils]: 77: Hoare quadruple {82089#true} {82089#true} #1186#return; {82089#true} is VALID [2022-04-27 15:21:47,982 INFO L290 TraceCheckUtils]: 78: Hoare triple {82089#true} havoc #t~memmove~res104.base, #t~memmove~res104.offset;call write~int(0, ~nextIrpSp~0.base, 3 + ~nextIrpSp~0.offset, 1); {82089#true} is VALID [2022-04-27 15:21:47,982 INFO L290 TraceCheckUtils]: 79: Hoare triple {82089#true} assume !(~s~0 != ~NP~0); {82089#true} is VALID [2022-04-27 15:21:47,982 INFO L290 TraceCheckUtils]: 80: Hoare triple {82089#true} assume !(0 != ~compRegistered~0);~compRegistered~0 := 1;~compFptr~0.base, ~compFptr~0.offset := #funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset; {82089#true} is VALID [2022-04-27 15:21:47,982 INFO L290 TraceCheckUtils]: 81: Hoare triple {82089#true} call #t~mem105.base, #t~mem105.offset := read~$Pointer$(~Irp.base, 96 + ~Irp.offset, 4);~irpSp___0~0.base, ~irpSp___0~0.offset := #t~mem105.base, #t~mem105.offset - 36;havoc #t~mem105.base, #t~mem105.offset;call write~$Pointer$(#funAddr~KbFilter_Complete.base, #funAddr~KbFilter_Complete.offset, ~irpSp___0~0.base, 28 + ~irpSp___0~0.offset, 4);call write~$Pointer$(~#event~1.base, ~#event~1.offset, ~irpSp___0~0.base, 32 + ~irpSp___0~0.offset, 4);call write~int(0, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(64, ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call #t~mem106 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem106 % 256, 128), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem106;call #t~mem107 := read~int(~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);call write~int(~bitwiseOr(#t~mem107 % 256, 32), ~irpSp___0~0.base, 3 + ~irpSp___0~0.offset, 1);havoc #t~mem107;call #t~mem108.base, #t~mem108.offset := read~$Pointer$(~devExt~3.base, 8 + ~devExt~3.offset, 4); {82089#true} is VALID [2022-04-27 15:21:47,982 INFO L272 TraceCheckUtils]: 82: Hoare triple {82089#true} call #t~ret109 := IofCallDriver(#t~mem108.base, #t~mem108.offset, ~Irp.base, ~Irp.offset); {82288#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:47,983 INFO L290 TraceCheckUtils]: 83: Hoare triple {82288#(and (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~lowerDriverReturn~0 |old(~lowerDriverReturn~0)|) (= ~s~0 |old(~s~0)|))} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;assume -2147483648 <= #t~nondet195 && #t~nondet195 <= 2147483647;~__BLAST_NONDET~11 := #t~nondet195;havoc #t~nondet195;havoc ~returnVal2~0;havoc ~compRetStatus~0;~lcontext~0.base, ~lcontext~0.offset := 0, 0;havoc ~tmp~10; {82089#true} is VALID [2022-04-27 15:21:47,983 INFO L290 TraceCheckUtils]: 84: Hoare triple {82089#true} assume 0 != ~compRegistered~0; {82089#true} is VALID [2022-04-27 15:21:47,983 INFO L272 TraceCheckUtils]: 85: Hoare triple {82089#true} call #t~ret196 := KbFilter_Complete(~DeviceObject.base, ~DeviceObject.offset, ~Irp.base, ~Irp.offset, ~lcontext~0.base, ~lcontext~0.offset); {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:47,983 INFO L290 TraceCheckUtils]: 86: Hoare triple {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~DeviceObject.base, ~DeviceObject.offset := #in~DeviceObject.base, #in~DeviceObject.offset;~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~Context.base, ~Context.offset := #in~Context.base, #in~Context.offset;havoc ~event~0.base, ~event~0.offset;~event~0.base, ~event~0.offset := ~Context.base, ~Context.offset; {82089#true} is VALID [2022-04-27 15:21:47,984 INFO L272 TraceCheckUtils]: 87: Hoare triple {82089#true} call #t~ret35 := KeSetEvent(~event~0.base, ~event~0.offset, 0, 0); {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} is VALID [2022-04-27 15:21:47,984 INFO L290 TraceCheckUtils]: 88: Hoare triple {82300#(= ~setEventCalled~0 |old(~setEventCalled~0)|)} ~Event.base, ~Event.offset := #in~Event.base, #in~Event.offset;~Increment := #in~Increment;~Wait := #in~Wait;assume -2147483648 <= #t~nondet199 && #t~nondet199 <= 2147483647;~l~0 := #t~nondet199;havoc #t~nondet199;~setEventCalled~0 := 1;#res := ~l~0; {82089#true} is VALID [2022-04-27 15:21:47,984 INFO L290 TraceCheckUtils]: 89: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,984 INFO L284 TraceCheckUtils]: 90: Hoare quadruple {82089#true} {82089#true} #1174#return; {82089#true} is VALID [2022-04-27 15:21:47,984 INFO L290 TraceCheckUtils]: 91: Hoare triple {82089#true} assume -2147483648 <= #t~ret35 && #t~ret35 <= 2147483647;havoc #t~ret35;#res := -1073741802; {82089#true} is VALID [2022-04-27 15:21:47,984 INFO L290 TraceCheckUtils]: 92: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,984 INFO L284 TraceCheckUtils]: 93: Hoare quadruple {82089#true} {82089#true} #1210#return; {82089#true} is VALID [2022-04-27 15:21:47,984 INFO L290 TraceCheckUtils]: 94: Hoare triple {82089#true} assume -2147483648 <= #t~ret196 && #t~ret196 <= 2147483647;~tmp~10 := #t~ret196;havoc #t~ret196;~compRetStatus~0 := ~tmp~10; {82089#true} is VALID [2022-04-27 15:21:47,984 INFO L290 TraceCheckUtils]: 95: Hoare triple {82089#true} assume -1073741802 == ~compRetStatus~0; {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L272 TraceCheckUtils]: 96: Hoare triple {82089#true} call stubMoreProcessingRequired(); {82304#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:47,985 INFO L290 TraceCheckUtils]: 97: Hoare triple {82304#(= ~s~0 |old(~s~0)|)} assume ~s~0 == ~NP~0;~s~0 := ~MPR1~0; {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L290 TraceCheckUtils]: 98: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L284 TraceCheckUtils]: 99: Hoare quadruple {82089#true} {82089#true} #1212#return; {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L290 TraceCheckUtils]: 100: Hoare triple {82089#true} assume !(0 == ~__BLAST_NONDET~11); {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L290 TraceCheckUtils]: 101: Hoare triple {82089#true} assume !(1 == ~__BLAST_NONDET~11); {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L290 TraceCheckUtils]: 102: Hoare triple {82089#true} ~returnVal2~0 := 259; {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L290 TraceCheckUtils]: 103: Hoare triple {82089#true} assume !(~s~0 == ~NP~0); {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L290 TraceCheckUtils]: 104: Hoare triple {82089#true} assume ~s~0 == ~MPR1~0; {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L290 TraceCheckUtils]: 105: Hoare triple {82089#true} assume 259 == ~returnVal2~0;~s~0 := ~MPR3~0;~lowerDriverReturn~0 := ~returnVal2~0; {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L290 TraceCheckUtils]: 106: Hoare triple {82089#true} #res := ~returnVal2~0; {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L290 TraceCheckUtils]: 107: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L284 TraceCheckUtils]: 108: Hoare quadruple {82089#true} {82089#true} #1192#return; {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L290 TraceCheckUtils]: 109: Hoare triple {82089#true} assume -2147483648 <= #t~ret109 && #t~ret109 <= 2147483647;~status~3 := #t~ret109;havoc #t~mem108.base, #t~mem108.offset;havoc #t~ret109; {82089#true} is VALID [2022-04-27 15:21:47,985 INFO L290 TraceCheckUtils]: 110: Hoare triple {82089#true} assume 259 == ~status~3; {82089#true} is VALID [2022-04-27 15:21:47,986 INFO L272 TraceCheckUtils]: 111: Hoare triple {82089#true} call #t~ret110 := KeWaitForSingleObject(~#event~1.base, ~#event~1.offset, 0, 0, 0, 0, 0); {82305#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} is VALID [2022-04-27 15:21:47,986 INFO L290 TraceCheckUtils]: 112: Hoare triple {82305#(and (= |old(~customIrp~0)| ~customIrp~0) (= ~setEventCalled~0 |old(~setEventCalled~0)|) (= ~s~0 |old(~s~0)|))} ~Object.base, ~Object.offset := #in~Object.base, #in~Object.offset;~WaitReason := #in~WaitReason;~WaitMode := #in~WaitMode;~Alertable := #in~Alertable;~Timeout.base, ~Timeout.offset := #in~Timeout.base, #in~Timeout.offset;assume -2147483648 <= #t~nondet200 && #t~nondet200 <= 2147483647;~__BLAST_NONDET~13 := #t~nondet200;havoc #t~nondet200; {82089#true} is VALID [2022-04-27 15:21:47,986 INFO L290 TraceCheckUtils]: 113: Hoare triple {82089#true} assume ~s~0 == ~MPR3~0; {82089#true} is VALID [2022-04-27 15:21:47,986 INFO L290 TraceCheckUtils]: 114: Hoare triple {82089#true} assume 1 == ~setEventCalled~0;~s~0 := ~NP~0;~setEventCalled~0 := 0; {82089#true} is VALID [2022-04-27 15:21:47,986 INFO L290 TraceCheckUtils]: 115: Hoare triple {82089#true} assume 0 == ~__BLAST_NONDET~13; {82089#true} is VALID [2022-04-27 15:21:47,987 INFO L290 TraceCheckUtils]: 116: Hoare triple {82089#true} #res := 0; {82089#true} is VALID [2022-04-27 15:21:47,987 INFO L290 TraceCheckUtils]: 117: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,987 INFO L284 TraceCheckUtils]: 118: Hoare quadruple {82089#true} {82089#true} #1194#return; {82089#true} is VALID [2022-04-27 15:21:47,987 INFO L290 TraceCheckUtils]: 119: Hoare triple {82089#true} assume -2147483648 <= #t~ret110 && #t~ret110 <= 2147483647;havoc #t~ret110; {82089#true} is VALID [2022-04-27 15:21:47,987 INFO L290 TraceCheckUtils]: 120: Hoare triple {82089#true} assume ~status~3 >= 0; {82089#true} is VALID [2022-04-27 15:21:47,987 INFO L290 TraceCheckUtils]: 121: Hoare triple {82089#true} assume !(~myStatus~0 >= 0); {82089#true} is VALID [2022-04-27 15:21:47,987 INFO L290 TraceCheckUtils]: 122: Hoare triple {82089#true} call write~int(~status~3, ~Irp.base, 24 + ~Irp.offset, 4);~myStatus~0 := ~status~3;call write~int(0, ~Irp.base, 28 + ~Irp.offset, 4); {82089#true} is VALID [2022-04-27 15:21:47,987 INFO L272 TraceCheckUtils]: 123: Hoare triple {82089#true} call IofCompleteRequest(~Irp.base, ~Irp.offset, 0); {82304#(= ~s~0 |old(~s~0)|)} is VALID [2022-04-27 15:21:47,987 INFO L290 TraceCheckUtils]: 124: Hoare triple {82304#(= ~s~0 |old(~s~0)|)} ~Irp.base, ~Irp.offset := #in~Irp.base, #in~Irp.offset;~PriorityBoost := #in~PriorityBoost; {82089#true} is VALID [2022-04-27 15:21:47,987 INFO L290 TraceCheckUtils]: 125: Hoare triple {82089#true} assume ~s~0 == ~NP~0;~s~0 := ~DC~0; {82089#true} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 126: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,988 INFO L284 TraceCheckUtils]: 127: Hoare quadruple {82089#true} {82089#true} #1196#return; {82089#true} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 128: Hoare triple {82089#true} #res := ~status~3;call ULTIMATE.dealloc(~#event~1.base, ~#event~1.offset);havoc ~#event~1.base, ~#event~1.offset; {82089#true} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 129: Hoare triple {82089#true} assume true; {82089#true} is VALID [2022-04-27 15:21:47,988 INFO L284 TraceCheckUtils]: 130: Hoare quadruple {82089#true} {82090#false} #1230#return; {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 131: Hoare triple {82090#false} assume -2147483648 <= #t~ret174 && #t~ret174 <= 2147483647;~status~5 := #t~ret174;havoc #t~ret174; {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 132: Hoare triple {82090#false} assume 0 != ~we_should_unload~0; {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 133: Hoare triple {82090#false} assume !(1 == ~pended~0); {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 134: Hoare triple {82090#false} assume !(1 == ~pended~0); {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 135: Hoare triple {82090#false} assume !(~s~0 == ~UNLOADED~0); {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 136: Hoare triple {82090#false} assume !(-1 == ~status~5); {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 137: Hoare triple {82090#false} assume ~s~0 != ~SKIP2~0; {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 138: Hoare triple {82090#false} assume ~s~0 != ~IPC~0; {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 139: Hoare triple {82090#false} assume !(~s~0 != ~DC~0); {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 140: Hoare triple {82090#false} assume !(1 == ~pended~0); {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 141: Hoare triple {82090#false} assume ~s~0 == ~DC~0; {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 142: Hoare triple {82090#false} assume 259 == ~status~5; {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L272 TraceCheckUtils]: 143: Hoare triple {82090#false} call errorFn(); {82090#false} is VALID [2022-04-27 15:21:47,988 INFO L290 TraceCheckUtils]: 144: Hoare triple {82090#false} assume !false; {82090#false} is VALID [2022-04-27 15:21:47,989 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 0 proven. 15 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2022-04-27 15:21:47,989 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-04-27 15:21:47,989 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1204384503] [2022-04-27 15:21:47,989 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1204384503] provided 0 perfect and 1 imperfect interpolant sequences [2022-04-27 15:21:47,989 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [544800512] [2022-04-27 15:21:47,989 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2022-04-27 15:21:47,989 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-04-27 15:21:47,989 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2022-04-27 15:21:47,990 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-04-27 15:21:47,991 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process