java -Xmx8000000000 -Xss4m -jar ./plugins/org.eclipse.equinox.launcher_1.3.100.v20150511-1540.jar -data @noDefault -ultimatedata ./data -tc ../../../trunk/examples/toolchains/AutomizerC.xml -s ../../../trunk/examples/settings/default/automizer/svcomp-Reach-32bit-Automizer_Default.epf --traceabstraction.trace.refinement.strategy SIFA_TAIPAN --sifa.abstract.domain CompoundDomain --rcfgbuilder.size.of.a.code.block LoopFreeBlock --sifa.call.summarizer TopInputCallSummarizer --sifa.fluid SizeLimitFluid --sifa.simplification.technique SIMPLIFY_QUICK -i ../../../trunk/examples/svcomp/array-tiling/rew.c -------------------------------------------------------------------------------- This is Ultimate 0.1.24-36ac518-m [2019-10-07 00:48:49,097 INFO L177 SettingsManager]: Resetting all preferences to default values... [2019-10-07 00:48:49,100 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2019-10-07 00:48:49,112 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2019-10-07 00:48:49,112 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2019-10-07 00:48:49,113 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2019-10-07 00:48:49,115 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2019-10-07 00:48:49,117 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2019-10-07 00:48:49,118 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2019-10-07 00:48:49,121 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2019-10-07 00:48:49,123 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2019-10-07 00:48:49,124 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2019-10-07 00:48:49,124 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2019-10-07 00:48:49,125 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2019-10-07 00:48:49,126 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2019-10-07 00:48:49,127 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2019-10-07 00:48:49,128 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2019-10-07 00:48:49,129 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2019-10-07 00:48:49,131 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2019-10-07 00:48:49,133 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2019-10-07 00:48:49,135 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2019-10-07 00:48:49,136 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2019-10-07 00:48:49,137 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2019-10-07 00:48:49,138 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2019-10-07 00:48:49,141 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2019-10-07 00:48:49,141 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2019-10-07 00:48:49,141 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2019-10-07 00:48:49,142 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2019-10-07 00:48:49,143 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2019-10-07 00:48:49,144 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2019-10-07 00:48:49,144 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2019-10-07 00:48:49,145 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2019-10-07 00:48:49,146 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2019-10-07 00:48:49,147 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2019-10-07 00:48:49,148 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2019-10-07 00:48:49,148 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2019-10-07 00:48:49,149 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2019-10-07 00:48:49,149 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2019-10-07 00:48:49,149 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2019-10-07 00:48:49,150 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2019-10-07 00:48:49,151 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2019-10-07 00:48:49,152 INFO L101 SettingsManager]: Beginning loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../../../trunk/examples/settings/default/automizer/svcomp-Reach-32bit-Automizer_Default.epf [2019-10-07 00:48:49,166 INFO L113 SettingsManager]: Loading preferences was successful [2019-10-07 00:48:49,167 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2019-10-07 00:48:49,168 INFO L136 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2019-10-07 00:48:49,168 INFO L138 SettingsManager]: * Create parallel compositions if possible=false [2019-10-07 00:48:49,169 INFO L138 SettingsManager]: * Use SBE=true [2019-10-07 00:48:49,169 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2019-10-07 00:48:49,169 INFO L138 SettingsManager]: * sizeof long=4 [2019-10-07 00:48:49,169 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2019-10-07 00:48:49,169 INFO L138 SettingsManager]: * sizeof POINTER=4 [2019-10-07 00:48:49,170 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2019-10-07 00:48:49,170 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2019-10-07 00:48:49,170 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2019-10-07 00:48:49,170 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2019-10-07 00:48:49,170 INFO L138 SettingsManager]: * sizeof long double=12 [2019-10-07 00:48:49,171 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2019-10-07 00:48:49,171 INFO L138 SettingsManager]: * Use constant arrays=true [2019-10-07 00:48:49,171 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2019-10-07 00:48:49,171 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2019-10-07 00:48:49,171 INFO L138 SettingsManager]: * Size of a code block=SequenceOfStatements [2019-10-07 00:48:49,172 INFO L138 SettingsManager]: * To the following directory=./dump/ [2019-10-07 00:48:49,172 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2019-10-07 00:48:49,172 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2019-10-07 00:48:49,172 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2019-10-07 00:48:49,172 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2019-10-07 00:48:49,173 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2019-10-07 00:48:49,173 INFO L138 SettingsManager]: * Trace refinement strategy=CAMEL [2019-10-07 00:48:49,173 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2019-10-07 00:48:49,173 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2019-10-07 00:48:49,173 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: Trace refinement strategy -> SIFA_TAIPAN Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.sifa: Abstract Domain -> CompoundDomain Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder: Size of a code block -> LoopFreeBlock Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.sifa: Call Summarizer -> TopInputCallSummarizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.sifa: Fluid -> SizeLimitFluid Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.sifa: Simplification Technique -> SIMPLIFY_QUICK [2019-10-07 00:48:49,470 INFO L81 nceAwareModelManager]: Repository-Root is: /tmp [2019-10-07 00:48:49,488 INFO L258 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2019-10-07 00:48:49,492 INFO L214 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2019-10-07 00:48:49,493 INFO L271 PluginConnector]: Initializing CDTParser... [2019-10-07 00:48:49,493 INFO L275 PluginConnector]: CDTParser initialized [2019-10-07 00:48:49,494 INFO L428 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../../../trunk/examples/svcomp/array-tiling/rew.c [2019-10-07 00:48:49,568 INFO L220 CDTParser]: Created temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/2423cad37/da3c0bd9a8eb467a8d3e3dc65abe3464/FLAG57c7c7b64 [2019-10-07 00:48:49,978 INFO L306 CDTParser]: Found 1 translation units. [2019-10-07 00:48:49,978 INFO L160 CDTParser]: Scanning /storage/repos/ultimate/trunk/examples/svcomp/array-tiling/rew.c [2019-10-07 00:48:49,985 INFO L349 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/2423cad37/da3c0bd9a8eb467a8d3e3dc65abe3464/FLAG57c7c7b64 [2019-10-07 00:48:50,378 INFO L357 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/2423cad37/da3c0bd9a8eb467a8d3e3dc65abe3464 [2019-10-07 00:48:50,388 INFO L296 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2019-10-07 00:48:50,390 INFO L131 ToolchainWalker]: Walking toolchain with 4 elements. [2019-10-07 00:48:50,391 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2019-10-07 00:48:50,391 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2019-10-07 00:48:50,395 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2019-10-07 00:48:50,396 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 07.10 12:48:50" (1/1) ... [2019-10-07 00:48:50,399 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@3bfb33bd and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 07.10 12:48:50, skipping insertion in model container [2019-10-07 00:48:50,399 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 07.10 12:48:50" (1/1) ... [2019-10-07 00:48:50,406 INFO L142 MainTranslator]: Starting translation in SV-COMP mode [2019-10-07 00:48:50,423 INFO L173 MainTranslator]: Built tables and reachable declarations [2019-10-07 00:48:50,601 INFO L206 PostProcessor]: Analyzing one entry point: main [2019-10-07 00:48:50,612 INFO L188 MainTranslator]: Completed pre-run [2019-10-07 00:48:50,628 INFO L206 PostProcessor]: Analyzing one entry point: main [2019-10-07 00:48:50,641 INFO L192 MainTranslator]: Completed translation [2019-10-07 00:48:50,642 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 07.10 12:48:50 WrapperNode [2019-10-07 00:48:50,642 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2019-10-07 00:48:50,642 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2019-10-07 00:48:50,643 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2019-10-07 00:48:50,643 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2019-10-07 00:48:50,737 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 07.10 12:48:50" (1/1) ... [2019-10-07 00:48:50,737 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 07.10 12:48:50" (1/1) ... [2019-10-07 00:48:50,746 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 07.10 12:48:50" (1/1) ... [2019-10-07 00:48:50,748 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 07.10 12:48:50" (1/1) ... [2019-10-07 00:48:50,759 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 07.10 12:48:50" (1/1) ... [2019-10-07 00:48:50,769 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 07.10 12:48:50" (1/1) ... [2019-10-07 00:48:50,770 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 07.10 12:48:50" (1/1) ... [2019-10-07 00:48:50,772 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2019-10-07 00:48:50,773 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2019-10-07 00:48:50,773 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2019-10-07 00:48:50,773 INFO L275 PluginConnector]: RCFGBuilder initialized [2019-10-07 00:48:50,774 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 07.10 12:48:50" (1/1) ... No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 1 with z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 1 with z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2019-10-07 00:48:50,842 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.init [2019-10-07 00:48:50,842 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2019-10-07 00:48:50,842 INFO L138 BoogieDeclarations]: Found implementation of procedure __VERIFIER_assert [2019-10-07 00:48:50,842 INFO L138 BoogieDeclarations]: Found implementation of procedure main [2019-10-07 00:48:50,842 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_error [2019-10-07 00:48:50,842 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_assume [2019-10-07 00:48:50,843 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_assert [2019-10-07 00:48:50,843 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_nondet_int [2019-10-07 00:48:50,843 INFO L130 BoogieDeclarations]: Found specification of procedure malloc [2019-10-07 00:48:50,843 INFO L130 BoogieDeclarations]: Found specification of procedure main [2019-10-07 00:48:50,843 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocOnHeap [2019-10-07 00:48:50,843 INFO L130 BoogieDeclarations]: Found specification of procedure write~int [2019-10-07 00:48:50,844 INFO L130 BoogieDeclarations]: Found specification of procedure read~int [2019-10-07 00:48:50,844 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.init [2019-10-07 00:48:50,844 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2019-10-07 00:48:50,844 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.dealloc [2019-10-07 00:48:51,204 INFO L279 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2019-10-07 00:48:51,205 INFO L284 CfgBuilder]: Removed 2 assume(true) statements. [2019-10-07 00:48:51,206 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 07.10 12:48:51 BoogieIcfgContainer [2019-10-07 00:48:51,206 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2019-10-07 00:48:51,208 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2019-10-07 00:48:51,208 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2019-10-07 00:48:51,211 INFO L275 PluginConnector]: TraceAbstraction initialized [2019-10-07 00:48:51,211 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 07.10 12:48:50" (1/3) ... [2019-10-07 00:48:51,212 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7a76b3f8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 07.10 12:48:51, skipping insertion in model container [2019-10-07 00:48:51,212 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 07.10 12:48:50" (2/3) ... [2019-10-07 00:48:51,213 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7a76b3f8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 07.10 12:48:51, skipping insertion in model container [2019-10-07 00:48:51,213 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 07.10 12:48:51" (3/3) ... [2019-10-07 00:48:51,214 INFO L109 eAbstractionObserver]: Analyzing ICFG rew.c [2019-10-07 00:48:51,222 INFO L152 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2019-10-07 00:48:51,229 INFO L164 ceAbstractionStarter]: Appying trace abstraction to program that has 1 error locations. [2019-10-07 00:48:51,238 INFO L249 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2019-10-07 00:48:51,261 INFO L373 AbstractCegarLoop]: Interprodecural is true [2019-10-07 00:48:51,261 INFO L374 AbstractCegarLoop]: Hoare is true [2019-10-07 00:48:51,261 INFO L375 AbstractCegarLoop]: Compute interpolants for FPandBP [2019-10-07 00:48:51,261 INFO L376 AbstractCegarLoop]: Backedges is STRAIGHT_LINE [2019-10-07 00:48:51,261 INFO L377 AbstractCegarLoop]: Determinization is PREDICATE_ABSTRACTION [2019-10-07 00:48:51,262 INFO L378 AbstractCegarLoop]: Difference is false [2019-10-07 00:48:51,262 INFO L379 AbstractCegarLoop]: Minimize is MINIMIZE_SEVPA [2019-10-07 00:48:51,262 INFO L383 AbstractCegarLoop]: ======== Iteration 0==of CEGAR loop == AllErrorsAtOnce======== [2019-10-07 00:48:51,276 INFO L276 IsEmpty]: Start isEmpty. Operand 20 states. [2019-10-07 00:48:51,280 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 13 [2019-10-07 00:48:51,281 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:48:51,281 INFO L385 BasicCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:48:51,283 INFO L410 AbstractCegarLoop]: === Iteration 1 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:48:51,287 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:48:51,288 INFO L82 PathProgramCache]: Analyzing trace with hash -1799181545, now seen corresponding path program 1 times [2019-10-07 00:48:51,294 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:48:51,294 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:48:51,295 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:48:51,295 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:48:51,295 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:48:51,411 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:48:51,501 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:48:51,502 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:48:51,503 INFO L211 tionRefinementEngine]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2019-10-07 00:48:51,503 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2019-10-07 00:48:51,508 INFO L442 AbstractCegarLoop]: Interpolant automaton has 3 states [2019-10-07 00:48:51,523 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2019-10-07 00:48:51,525 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2019-10-07 00:48:51,528 INFO L87 Difference]: Start difference. First operand 20 states. Second operand 3 states. [2019-10-07 00:48:51,591 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:48:51,592 INFO L93 Difference]: Finished difference Result 34 states and 40 transitions. [2019-10-07 00:48:51,593 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2019-10-07 00:48:51,595 INFO L78 Accepts]: Start accepts. Automaton has 3 states. Word has length 12 [2019-10-07 00:48:51,595 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:48:51,604 INFO L225 Difference]: With dead ends: 34 [2019-10-07 00:48:51,604 INFO L226 Difference]: Without dead ends: 17 [2019-10-07 00:48:51,608 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2019-10-07 00:48:51,627 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 17 states. [2019-10-07 00:48:51,645 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 17 to 17. [2019-10-07 00:48:51,647 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 17 states. [2019-10-07 00:48:51,648 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 17 states to 17 states and 18 transitions. [2019-10-07 00:48:51,650 INFO L78 Accepts]: Start accepts. Automaton has 17 states and 18 transitions. Word has length 12 [2019-10-07 00:48:51,650 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:48:51,651 INFO L462 AbstractCegarLoop]: Abstraction has 17 states and 18 transitions. [2019-10-07 00:48:51,651 INFO L463 AbstractCegarLoop]: Interpolant automaton has 3 states. [2019-10-07 00:48:51,651 INFO L276 IsEmpty]: Start isEmpty. Operand 17 states and 18 transitions. [2019-10-07 00:48:51,652 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 14 [2019-10-07 00:48:51,652 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:48:51,652 INFO L385 BasicCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:48:51,653 INFO L410 AbstractCegarLoop]: === Iteration 2 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:48:51,653 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:48:51,653 INFO L82 PathProgramCache]: Analyzing trace with hash -623938133, now seen corresponding path program 1 times [2019-10-07 00:48:51,654 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:48:51,654 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:48:51,654 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:48:51,654 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:48:51,655 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:48:51,680 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:48:51,757 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:48:51,759 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:48:51,760 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:48:51,760 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 2 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 2 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:48:51,837 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:48:51,840 INFO L256 TraceCheckSpWp]: Trace formula consists of 88 conjuncts, 4 conjunts are in the unsatisfiable core [2019-10-07 00:48:51,846 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:48:51,912 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:48:51,913 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:48:51,949 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:48:51,950 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2019-10-07 00:48:51,984 INFO L162 IcfgInterpreter]: Started Sifa with 13 locations of interest [2019-10-07 00:48:51,985 INFO L169 IcfgInterpreter]: Building call graph [2019-10-07 00:48:52,012 INFO L174 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2019-10-07 00:48:52,020 INFO L179 IcfgInterpreter]: Starting interpretation [2019-10-07 00:48:52,021 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2019-10-07 00:48:52,255 INFO L199 IcfgInterpreter]: Interpreting procedure main with input of size 30 for LOIs [2019-10-07 00:48:52,963 INFO L199 IcfgInterpreter]: Interpreting procedure __VERIFIER_assert with input of size 36 for LOIs [2019-10-07 00:48:52,989 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.init with input of size 16 for LOIs [2019-10-07 00:48:53,003 INFO L183 IcfgInterpreter]: Interpretation finished [2019-10-07 00:48:53,003 INFO L191 IcfgInterpreter]: Final predicates for locations of interest are: [2019-10-07 00:48:53,005 INFO L193 IcfgInterpreter]: Reachable states at location L3-1 satisfy 102#(and (<= __VERIFIER_assert_~cond 0) (exists ((v_main_~a~0.base_BEFORE_CALL_1 Int) (v_main_~a~0.offset_BEFORE_CALL_1 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_1) v_main_~a~0.offset_BEFORE_CALL_1))) (<= v_main_~a~0.offset_BEFORE_CALL_1 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= v_main_~a~0.offset_BEFORE_CALL_1 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_1) v_main_~a~0.offset_BEFORE_CALL_1)) (<= 0 v_main_~a~0.offset_BEFORE_CALL_1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:48:53,006 INFO L193 IcfgInterpreter]: Reachable states at location L33 satisfy 87#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (< main_~i~0 ~SIZE~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (= |main_#t~mem5| (select (select |#memory_int| main_~a~0.base) (+ (* 4 main_~i~0) main_~a~0.offset))) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= main_~i~0 0) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) [2019-10-07 00:48:53,006 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initENTRY satisfy 111#(and (= |old(#NULL.base)| |#NULL.base|) (= |#valid| |old(#valid)|) (= ~MAX~0 |old(~MAX~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= |old(~SIZE~0)| ~SIZE~0)) [2019-10-07 00:48:53,006 INFO L193 IcfgInterpreter]: Reachable states at location L14 satisfy 38#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (= 0 (select |old(#valid)| 0)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 |old(~SIZE~0)|) (= |#valid| |old(#valid)|) (<= ~SIZE~0 2147483647) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= 100000 ~MAX~0)) [2019-10-07 00:48:53,007 INFO L193 IcfgInterpreter]: Reachable states at location L3 satisfy 97#(and (exists ((v_main_~a~0.base_BEFORE_CALL_1 Int) (v_main_~a~0.offset_BEFORE_CALL_1 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_1) v_main_~a~0.offset_BEFORE_CALL_1))) (<= v_main_~a~0.offset_BEFORE_CALL_1 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= v_main_~a~0.offset_BEFORE_CALL_1 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_1) v_main_~a~0.offset_BEFORE_CALL_1)) (<= 0 v_main_~a~0.offset_BEFORE_CALL_1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:48:53,008 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION satisfy 107#(and (<= __VERIFIER_assert_~cond 0) (exists ((v_main_~a~0.base_BEFORE_CALL_1 Int) (v_main_~a~0.offset_BEFORE_CALL_1 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_1) v_main_~a~0.offset_BEFORE_CALL_1))) (<= v_main_~a~0.offset_BEFORE_CALL_1 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= v_main_~a~0.offset_BEFORE_CALL_1 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_1) v_main_~a~0.offset_BEFORE_CALL_1)) (<= 0 v_main_~a~0.offset_BEFORE_CALL_1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:48:53,008 INFO L193 IcfgInterpreter]: Reachable states at location L-1 satisfy 23#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |#valid| 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:48:53,009 INFO L193 IcfgInterpreter]: Reachable states at location mainENTRY satisfy 33#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (= 0 (select |old(#valid)| 0)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 |old(~SIZE~0)|) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (<= 0 ~SIZE~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= ~SIZE~0 0) (= |old(~SIZE~0)| ~SIZE~0) (<= 100000 ~MAX~0)) [2019-10-07 00:48:53,010 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initEXIT satisfy 116#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| (store |old(#valid)| 0 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:48:53,011 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.startENTRY satisfy 6#true [2019-10-07 00:48:53,011 INFO L193 IcfgInterpreter]: Reachable states at location L31-3 satisfy 82#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= main_~i~0 0) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) [2019-10-07 00:48:53,012 INFO L193 IcfgInterpreter]: Reachable states at location L22-3 satisfy 77#(and (or (and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= 0 |#NULL.base|) (< ~SIZE~0 ~MAX~0) (< 1 ~SIZE~0) (= 0 |main_#t~malloc2.offset|) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= main_~val1~0 0) (= |#valid| (store |old(#valid)| |main_#t~malloc2.base| 1)) (= main_~a~0.offset |main_#t~malloc2.offset|) (<= ~SIZE~0 2147483647) (= main_~val1~0 0) (< |#StackHeapBarrier| |main_#t~malloc2.base|) (= (store |old(#length)| |main_#t~malloc2.base| (* 4 ~SIZE~0)) |#length|) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (not (= |main_#t~malloc2.base| 0)) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= main_~i~0 0) (= 0 (select |old(#valid)| 0)) (= (select |old(#valid)| |main_#t~malloc2.base|) 0) (= |main_#t~malloc2.base| main_~a~0.base) (= main_~low~0 2) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) (and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (= main_~val1~0 0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3))) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) [2019-10-07 00:48:53,013 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertENTRY satisfy 92#(exists ((v_main_~a~0.base_BEFORE_CALL_1 Int) (v_main_~a~0.offset_BEFORE_CALL_1 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_1) v_main_~a~0.offset_BEFORE_CALL_1))) (<= v_main_~a~0.offset_BEFORE_CALL_1 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= v_main_~a~0.offset_BEFORE_CALL_1 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_1) v_main_~a~0.offset_BEFORE_CALL_1)) (<= 0 v_main_~a~0.offset_BEFORE_CALL_1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) [2019-10-07 00:48:53,610 WARN L191 SmtUtils]: Spent 164.00 ms on a formula simplification. DAG size of input: 85 DAG size of output: 34 [2019-10-07 00:48:53,746 WARN L191 SmtUtils]: Spent 106.00 ms on a formula simplification. DAG size of input: 48 DAG size of output: 31 [2019-10-07 00:48:53,906 WARN L191 SmtUtils]: Spent 125.00 ms on a formula simplification. DAG size of input: 58 DAG size of output: 40 [2019-10-07 00:48:53,982 INFO L211 tionRefinementEngine]: Constructing automaton from 0 perfect and 4 imperfect interpolant sequences. [2019-10-07 00:48:53,983 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4, 11] total 18 [2019-10-07 00:48:53,985 INFO L442 AbstractCegarLoop]: Interpolant automaton has 18 states [2019-10-07 00:48:53,985 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 18 interpolants. [2019-10-07 00:48:53,986 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=54, Invalid=252, Unknown=0, NotChecked=0, Total=306 [2019-10-07 00:48:53,986 INFO L87 Difference]: Start difference. First operand 17 states and 18 transitions. Second operand 18 states. [2019-10-07 00:48:54,656 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:48:54,657 INFO L93 Difference]: Finished difference Result 36 states and 38 transitions. [2019-10-07 00:48:54,657 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 16 states. [2019-10-07 00:48:54,658 INFO L78 Accepts]: Start accepts. Automaton has 18 states. Word has length 13 [2019-10-07 00:48:54,658 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:48:54,659 INFO L225 Difference]: With dead ends: 36 [2019-10-07 00:48:54,659 INFO L226 Difference]: Without dead ends: 27 [2019-10-07 00:48:54,660 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 49 GetRequests, 25 SyntacticMatches, 1 SemanticMatches, 23 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 148 ImplicationChecksByTransitivity, 1.4s TimeCoverageRelationStatistics Valid=102, Invalid=498, Unknown=0, NotChecked=0, Total=600 [2019-10-07 00:48:54,661 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 27 states. [2019-10-07 00:48:54,666 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 27 to 18. [2019-10-07 00:48:54,666 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 18 states. [2019-10-07 00:48:54,667 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18 states to 18 states and 19 transitions. [2019-10-07 00:48:54,667 INFO L78 Accepts]: Start accepts. Automaton has 18 states and 19 transitions. Word has length 13 [2019-10-07 00:48:54,667 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:48:54,668 INFO L462 AbstractCegarLoop]: Abstraction has 18 states and 19 transitions. [2019-10-07 00:48:54,668 INFO L463 AbstractCegarLoop]: Interpolant automaton has 18 states. [2019-10-07 00:48:54,668 INFO L276 IsEmpty]: Start isEmpty. Operand 18 states and 19 transitions. [2019-10-07 00:48:54,668 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 15 [2019-10-07 00:48:54,669 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:48:54,669 INFO L385 BasicCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:48:54,879 WARN L499 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:48:54,879 INFO L410 AbstractCegarLoop]: === Iteration 3 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:48:54,880 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:48:54,880 INFO L82 PathProgramCache]: Analyzing trace with hash 1448869271, now seen corresponding path program 2 times [2019-10-07 00:48:54,880 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:48:54,880 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:48:54,881 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:48:54,881 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:48:54,881 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:48:54,946 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:48:55,124 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 3 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:48:55,125 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:48:55,125 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:48:55,125 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 3 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 3 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:48:55,183 INFO L249 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2019-10-07 00:48:55,183 INFO L250 tOrderPrioritization]: Conjunction of SSA is unsat [2019-10-07 00:48:55,184 INFO L256 TraceCheckSpWp]: Trace formula consists of 93 conjuncts, 23 conjunts are in the unsatisfiable core [2019-10-07 00:48:55,188 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:49:03,966 WARN L191 SmtUtils]: Spent 8.55 s on a formula simplification that was a NOOP. DAG size: 41 [2019-10-07 00:49:04,120 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 3 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:49:04,120 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:49:04,319 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 3 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:49:04,319 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2019-10-07 00:49:04,320 INFO L162 IcfgInterpreter]: Started Sifa with 13 locations of interest [2019-10-07 00:49:04,321 INFO L169 IcfgInterpreter]: Building call graph [2019-10-07 00:49:04,321 INFO L174 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2019-10-07 00:49:04,321 INFO L179 IcfgInterpreter]: Starting interpretation [2019-10-07 00:49:04,321 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2019-10-07 00:49:04,361 INFO L199 IcfgInterpreter]: Interpreting procedure main with input of size 30 for LOIs [2019-10-07 00:49:04,712 INFO L199 IcfgInterpreter]: Interpreting procedure __VERIFIER_assert with input of size 36 for LOIs [2019-10-07 00:49:04,729 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.init with input of size 16 for LOIs [2019-10-07 00:49:04,739 INFO L183 IcfgInterpreter]: Interpretation finished [2019-10-07 00:49:04,739 INFO L191 IcfgInterpreter]: Final predicates for locations of interest are: [2019-10-07 00:49:04,740 INFO L193 IcfgInterpreter]: Reachable states at location L3-1 satisfy 91#(and (exists ((v_main_~a~0.base_BEFORE_CALL_2 Int) (v_main_~a~0.offset_BEFORE_CALL_2 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_2) v_main_~a~0.offset_BEFORE_CALL_2))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_2 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_2 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_2) v_main_~a~0.offset_BEFORE_CALL_2)) (<= 100000 ~MAX~0)))) (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:49:04,740 INFO L193 IcfgInterpreter]: Reachable states at location L33 satisfy 76#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (< main_~i~0 ~SIZE~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (= |main_#t~mem5| (select (select |#memory_int| main_~a~0.base) (+ (* 4 main_~i~0) main_~a~0.offset))) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= main_~i~0 0) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) [2019-10-07 00:49:04,741 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initENTRY satisfy 100#(and (= |old(#NULL.base)| |#NULL.base|) (= |#valid| |old(#valid)|) (= ~MAX~0 |old(~MAX~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= |old(~SIZE~0)| ~SIZE~0)) [2019-10-07 00:49:04,741 INFO L193 IcfgInterpreter]: Reachable states at location L14 satisfy 38#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (<= ~SIZE~0 2147483647) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= 100000 ~MAX~0)) [2019-10-07 00:49:04,742 INFO L193 IcfgInterpreter]: Reachable states at location L3 satisfy 86#(and (exists ((v_main_~a~0.base_BEFORE_CALL_2 Int) (v_main_~a~0.offset_BEFORE_CALL_2 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_2) v_main_~a~0.offset_BEFORE_CALL_2))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_2 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_2 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_2) v_main_~a~0.offset_BEFORE_CALL_2)) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:49:04,742 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION satisfy 96#(and (exists ((v_main_~a~0.base_BEFORE_CALL_2 Int) (v_main_~a~0.offset_BEFORE_CALL_2 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_2) v_main_~a~0.offset_BEFORE_CALL_2))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_2 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_2 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_2) v_main_~a~0.offset_BEFORE_CALL_2)) (<= 100000 ~MAX~0)))) (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:49:04,742 INFO L193 IcfgInterpreter]: Reachable states at location L-1 satisfy 23#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |#valid| 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:49:04,747 INFO L193 IcfgInterpreter]: Reachable states at location mainENTRY satisfy 33#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (<= 0 ~SIZE~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= ~SIZE~0 0) (= |old(~SIZE~0)| ~SIZE~0) (<= 100000 ~MAX~0)) [2019-10-07 00:49:04,748 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initEXIT satisfy 105#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| (store |old(#valid)| 0 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:49:04,748 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.startENTRY satisfy 6#true [2019-10-07 00:49:04,748 INFO L193 IcfgInterpreter]: Reachable states at location L31-3 satisfy 71#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= main_~i~0 0) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) [2019-10-07 00:49:04,748 INFO L193 IcfgInterpreter]: Reachable states at location L22-3 satisfy 66#(and (or (and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= 0 |#NULL.base|) (< ~SIZE~0 ~MAX~0) (< 1 ~SIZE~0) (= 0 |main_#t~malloc2.offset|) (= ~MAX~0 100000) (= |#valid| (store |old(#valid)| |main_#t~malloc2.base| 1)) (= main_~a~0.offset |main_#t~malloc2.offset|) (<= ~SIZE~0 2147483647) (= main_~val1~0 0) (< |#StackHeapBarrier| |main_#t~malloc2.base|) (= (store |old(#length)| |main_#t~malloc2.base| (* 4 ~SIZE~0)) |#length|) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (not (= |main_#t~malloc2.base| 0)) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~i~0 0) (= 0 (select |old(#valid)| 0)) (= (select |old(#valid)| |main_#t~malloc2.base|) 0) (= |main_#t~malloc2.base| main_~a~0.base) (= main_~low~0 2) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) (and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3))) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) [2019-10-07 00:49:04,749 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertENTRY satisfy 81#(exists ((v_main_~a~0.base_BEFORE_CALL_2 Int) (v_main_~a~0.offset_BEFORE_CALL_2 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_2) v_main_~a~0.offset_BEFORE_CALL_2))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_2 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_2 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_2) v_main_~a~0.offset_BEFORE_CALL_2)) (<= 100000 ~MAX~0)))) [2019-10-07 00:49:05,354 WARN L191 SmtUtils]: Spent 113.00 ms on a formula simplification. DAG size of input: 85 DAG size of output: 31 [2019-10-07 00:49:05,516 WARN L191 SmtUtils]: Spent 107.00 ms on a formula simplification. DAG size of input: 48 DAG size of output: 31 [2019-10-07 00:49:05,686 WARN L191 SmtUtils]: Spent 114.00 ms on a formula simplification. DAG size of input: 58 DAG size of output: 40 [2019-10-07 00:49:05,844 INFO L211 tionRefinementEngine]: Constructing automaton from 0 perfect and 4 imperfect interpolant sequences. [2019-10-07 00:49:05,844 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 9, 9, 11] total 32 [2019-10-07 00:49:05,846 INFO L442 AbstractCegarLoop]: Interpolant automaton has 32 states [2019-10-07 00:49:05,846 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 32 interpolants. [2019-10-07 00:49:05,847 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=112, Invalid=880, Unknown=0, NotChecked=0, Total=992 [2019-10-07 00:49:05,847 INFO L87 Difference]: Start difference. First operand 18 states and 19 transitions. Second operand 32 states. [2019-10-07 00:49:16,779 WARN L191 SmtUtils]: Spent 10.57 s on a formula simplification. DAG size of input: 66 DAG size of output: 60 [2019-10-07 00:49:32,028 WARN L191 SmtUtils]: Spent 14.64 s on a formula simplification. DAG size of input: 69 DAG size of output: 60 [2019-10-07 00:49:34,429 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:49:34,430 INFO L93 Difference]: Finished difference Result 30 states and 32 transitions. [2019-10-07 00:49:34,430 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2019-10-07 00:49:34,430 INFO L78 Accepts]: Start accepts. Automaton has 32 states. Word has length 14 [2019-10-07 00:49:34,431 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:49:34,433 INFO L225 Difference]: With dead ends: 30 [2019-10-07 00:49:34,433 INFO L226 Difference]: Without dead ends: 28 [2019-10-07 00:49:34,435 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 61 GetRequests, 20 SyntacticMatches, 0 SemanticMatches, 41 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 452 ImplicationChecksByTransitivity, 36.0s TimeCoverageRelationStatistics Valid=227, Invalid=1579, Unknown=0, NotChecked=0, Total=1806 [2019-10-07 00:49:34,435 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 28 states. [2019-10-07 00:49:34,453 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 28 to 24. [2019-10-07 00:49:34,453 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 24 states. [2019-10-07 00:49:34,455 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 24 states to 24 states and 25 transitions. [2019-10-07 00:49:34,455 INFO L78 Accepts]: Start accepts. Automaton has 24 states and 25 transitions. Word has length 14 [2019-10-07 00:49:34,455 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:49:34,455 INFO L462 AbstractCegarLoop]: Abstraction has 24 states and 25 transitions. [2019-10-07 00:49:34,456 INFO L463 AbstractCegarLoop]: Interpolant automaton has 32 states. [2019-10-07 00:49:34,456 INFO L276 IsEmpty]: Start isEmpty. Operand 24 states and 25 transitions. [2019-10-07 00:49:34,458 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2019-10-07 00:49:34,459 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:49:34,459 INFO L385 BasicCegarLoop]: trace histogram [2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:49:34,659 WARN L499 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:49:34,660 INFO L410 AbstractCegarLoop]: === Iteration 4 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:49:34,661 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:49:34,661 INFO L82 PathProgramCache]: Analyzing trace with hash -1296602369, now seen corresponding path program 1 times [2019-10-07 00:49:34,661 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:49:34,662 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:49:34,662 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:49:34,662 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:49:34,663 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:49:34,699 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:49:34,833 INFO L134 CoverageAnalysis]: Checked inductivity of 7 backedges. 2 proven. 5 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:49:34,834 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:49:34,834 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:49:34,834 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 4 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 4 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:49:34,907 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:49:34,908 INFO L256 TraceCheckSpWp]: Trace formula consists of 107 conjuncts, 23 conjunts are in the unsatisfiable core [2019-10-07 00:49:34,912 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:49:37,186 INFO L134 CoverageAnalysis]: Checked inductivity of 7 backedges. 0 proven. 7 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:49:37,187 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:49:38,246 INFO L134 CoverageAnalysis]: Checked inductivity of 7 backedges. 2 proven. 5 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:49:38,247 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2019-10-07 00:49:38,248 INFO L162 IcfgInterpreter]: Started Sifa with 16 locations of interest [2019-10-07 00:49:38,248 INFO L169 IcfgInterpreter]: Building call graph [2019-10-07 00:49:38,249 INFO L174 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2019-10-07 00:49:38,249 INFO L179 IcfgInterpreter]: Starting interpretation [2019-10-07 00:49:38,249 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2019-10-07 00:49:38,279 INFO L199 IcfgInterpreter]: Interpreting procedure main with input of size 30 for LOIs [2019-10-07 00:49:40,158 INFO L199 IcfgInterpreter]: Interpreting procedure __VERIFIER_assert with input of size 77 for LOIs [2019-10-07 00:49:40,170 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.init with input of size 16 for LOIs [2019-10-07 00:49:40,175 INFO L183 IcfgInterpreter]: Interpretation finished [2019-10-07 00:49:40,175 INFO L191 IcfgInterpreter]: Final predicates for locations of interest are: [2019-10-07 00:49:40,178 INFO L193 IcfgInterpreter]: Reachable states at location L3-1 satisfy 485#(and (<= __VERIFIER_assert_~cond 0) (exists ((v_prenex_16 Int) (v_prenex_15 Int) (v_prenex_17 Int) (v_prenex_12 Int) (v_main_~a~0.offset_BEFORE_CALL_13 Int) (v_prenex_11 Int) (v_main_~a~0.base_BEFORE_CALL_13 Int) (v_prenex_14 Int) (v_prenex_13 Int) (v_main_~i~0_BEFORE_CALL_13 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (< v_prenex_17 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_15) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_15 0) (<= 2 (select (select |#memory_int| v_prenex_16) (+ v_prenex_15 (* 4 v_prenex_17)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_17) (<= 0 v_prenex_17) (<= v_prenex_17 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_11) (<= 0 |#NULL.base|) (<= v_prenex_11 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_12) v_prenex_11) 2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_13) (+ v_main_~a~0.offset_BEFORE_CALL_13 (* 4 v_main_~i~0_BEFORE_CALL_13))) 2) (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (< v_main_~i~0_BEFORE_CALL_13 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_main_~i~0_BEFORE_CALL_13) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_main_~a~0.offset_BEFORE_CALL_13 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_13) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_13) (<= v_main_~i~0_BEFORE_CALL_13 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (< v_prenex_17 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_15) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_15 0) (<= 2 (select (select |#memory_int| v_prenex_16) (+ v_prenex_15 (* 4 v_prenex_17)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_17 100000) (<= 1 v_prenex_17) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_13) (+ v_main_~a~0.offset_BEFORE_CALL_13 (* 4 v_main_~i~0_BEFORE_CALL_13))) 2) (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (< v_main_~i~0_BEFORE_CALL_13 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_main_~a~0.offset_BEFORE_CALL_13 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_13) (<= v_main_~i~0_BEFORE_CALL_13 100000) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_13) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 2 (select (select |#memory_int| v_prenex_14) v_prenex_13)) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_13) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_13 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:49:40,178 INFO L193 IcfgInterpreter]: Reachable states at location L33 satisfy 306#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~i~0 100000) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:49:40,179 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initENTRY satisfy 494#(and (= |old(#NULL.base)| |#NULL.base|) (= |#valid| |old(#valid)|) (= ~MAX~0 |old(~MAX~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= |old(~SIZE~0)| ~SIZE~0)) [2019-10-07 00:49:40,179 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertEXIT satisfy 480#(and (exists ((v_prenex_16 Int) (v_prenex_15 Int) (v_prenex_17 Int) (v_prenex_12 Int) (v_main_~a~0.offset_BEFORE_CALL_13 Int) (v_prenex_11 Int) (v_main_~a~0.base_BEFORE_CALL_13 Int) (v_prenex_14 Int) (v_prenex_13 Int) (v_main_~i~0_BEFORE_CALL_13 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (< v_prenex_17 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_15) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_15 0) (<= 2 (select (select |#memory_int| v_prenex_16) (+ v_prenex_15 (* 4 v_prenex_17)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_17) (<= 0 v_prenex_17) (<= v_prenex_17 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_11) (<= 0 |#NULL.base|) (<= v_prenex_11 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_12) v_prenex_11) 2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_13) (+ v_main_~a~0.offset_BEFORE_CALL_13 (* 4 v_main_~i~0_BEFORE_CALL_13))) 2) (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (< v_main_~i~0_BEFORE_CALL_13 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_main_~i~0_BEFORE_CALL_13) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_main_~a~0.offset_BEFORE_CALL_13 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_13) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_13) (<= v_main_~i~0_BEFORE_CALL_13 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (< v_prenex_17 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_15) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_15 0) (<= 2 (select (select |#memory_int| v_prenex_16) (+ v_prenex_15 (* 4 v_prenex_17)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_17 100000) (<= 1 v_prenex_17) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_13) (+ v_main_~a~0.offset_BEFORE_CALL_13 (* 4 v_main_~i~0_BEFORE_CALL_13))) 2) (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (< v_main_~i~0_BEFORE_CALL_13 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_main_~a~0.offset_BEFORE_CALL_13 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_13) (<= v_main_~i~0_BEFORE_CALL_13 100000) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_13) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 2 (select (select |#memory_int| v_prenex_14) v_prenex_13)) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_13) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_13 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (not (= 0 __VERIFIER_assert_~cond)) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:49:40,179 INFO L193 IcfgInterpreter]: Reachable states at location L3-3 satisfy 475#(and (exists ((v_prenex_16 Int) (v_prenex_15 Int) (v_prenex_17 Int) (v_prenex_12 Int) (v_main_~a~0.offset_BEFORE_CALL_13 Int) (v_prenex_11 Int) (v_main_~a~0.base_BEFORE_CALL_13 Int) (v_prenex_14 Int) (v_prenex_13 Int) (v_main_~i~0_BEFORE_CALL_13 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (< v_prenex_17 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_15) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_15 0) (<= 2 (select (select |#memory_int| v_prenex_16) (+ v_prenex_15 (* 4 v_prenex_17)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_17) (<= 0 v_prenex_17) (<= v_prenex_17 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_11) (<= 0 |#NULL.base|) (<= v_prenex_11 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_12) v_prenex_11) 2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_13) (+ v_main_~a~0.offset_BEFORE_CALL_13 (* 4 v_main_~i~0_BEFORE_CALL_13))) 2) (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (< v_main_~i~0_BEFORE_CALL_13 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_main_~i~0_BEFORE_CALL_13) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_main_~a~0.offset_BEFORE_CALL_13 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_13) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_13) (<= v_main_~i~0_BEFORE_CALL_13 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (< v_prenex_17 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_15) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_15 0) (<= 2 (select (select |#memory_int| v_prenex_16) (+ v_prenex_15 (* 4 v_prenex_17)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_17 100000) (<= 1 v_prenex_17) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_13) (+ v_main_~a~0.offset_BEFORE_CALL_13 (* 4 v_main_~i~0_BEFORE_CALL_13))) 2) (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (< v_main_~i~0_BEFORE_CALL_13 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_main_~a~0.offset_BEFORE_CALL_13 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_13) (<= v_main_~i~0_BEFORE_CALL_13 100000) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_13) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 2 (select (select |#memory_int| v_prenex_14) v_prenex_13)) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_13) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_13 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (not (= 0 __VERIFIER_assert_~cond)) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:49:40,180 INFO L193 IcfgInterpreter]: Reachable states at location L14 satisfy 38#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (= 0 (select |old(#valid)| 0)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 |old(~SIZE~0)|) (<= ~SIZE~0 2147483647) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= 100000 ~MAX~0)) [2019-10-07 00:49:40,180 INFO L193 IcfgInterpreter]: Reachable states at location L3 satisfy 470#(and (exists ((v_prenex_16 Int) (v_prenex_15 Int) (v_prenex_17 Int) (v_prenex_12 Int) (v_main_~a~0.offset_BEFORE_CALL_13 Int) (v_prenex_11 Int) (v_main_~a~0.base_BEFORE_CALL_13 Int) (v_prenex_14 Int) (v_prenex_13 Int) (v_main_~i~0_BEFORE_CALL_13 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (< v_prenex_17 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_15) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_15 0) (<= 2 (select (select |#memory_int| v_prenex_16) (+ v_prenex_15 (* 4 v_prenex_17)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_17) (<= 0 v_prenex_17) (<= v_prenex_17 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_11) (<= 0 |#NULL.base|) (<= v_prenex_11 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_12) v_prenex_11) 2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_13) (+ v_main_~a~0.offset_BEFORE_CALL_13 (* 4 v_main_~i~0_BEFORE_CALL_13))) 2) (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (< v_main_~i~0_BEFORE_CALL_13 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_main_~i~0_BEFORE_CALL_13) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_main_~a~0.offset_BEFORE_CALL_13 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_13) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_13) (<= v_main_~i~0_BEFORE_CALL_13 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (< v_prenex_17 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_15) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_15 0) (<= 2 (select (select |#memory_int| v_prenex_16) (+ v_prenex_15 (* 4 v_prenex_17)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_17 100000) (<= 1 v_prenex_17) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_13) (+ v_main_~a~0.offset_BEFORE_CALL_13 (* 4 v_main_~i~0_BEFORE_CALL_13))) 2) (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (< v_main_~i~0_BEFORE_CALL_13 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_main_~a~0.offset_BEFORE_CALL_13 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_13) (<= v_main_~i~0_BEFORE_CALL_13 100000) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_13) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 2 (select (select |#memory_int| v_prenex_14) v_prenex_13)) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_13) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_13 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:49:40,180 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION satisfy 490#(and (<= __VERIFIER_assert_~cond 0) (exists ((v_prenex_16 Int) (v_prenex_15 Int) (v_prenex_17 Int) (v_prenex_12 Int) (v_main_~a~0.offset_BEFORE_CALL_13 Int) (v_prenex_11 Int) (v_main_~a~0.base_BEFORE_CALL_13 Int) (v_prenex_14 Int) (v_prenex_13 Int) (v_main_~i~0_BEFORE_CALL_13 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (< v_prenex_17 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_15) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_15 0) (<= 2 (select (select |#memory_int| v_prenex_16) (+ v_prenex_15 (* 4 v_prenex_17)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_17) (<= 0 v_prenex_17) (<= v_prenex_17 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_11) (<= 0 |#NULL.base|) (<= v_prenex_11 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_12) v_prenex_11) 2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_13) (+ v_main_~a~0.offset_BEFORE_CALL_13 (* 4 v_main_~i~0_BEFORE_CALL_13))) 2) (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (< v_main_~i~0_BEFORE_CALL_13 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_main_~i~0_BEFORE_CALL_13) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_main_~a~0.offset_BEFORE_CALL_13 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_13) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_13) (<= v_main_~i~0_BEFORE_CALL_13 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (< v_prenex_17 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_15) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_15 0) (<= 2 (select (select |#memory_int| v_prenex_16) (+ v_prenex_15 (* 4 v_prenex_17)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_17 100000) (<= 1 v_prenex_17) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_13) (+ v_main_~a~0.offset_BEFORE_CALL_13 (* 4 v_main_~i~0_BEFORE_CALL_13))) 2) (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (< v_main_~i~0_BEFORE_CALL_13 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_main_~a~0.offset_BEFORE_CALL_13 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_13) (<= v_main_~i~0_BEFORE_CALL_13 100000) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_13) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 2 (select (select |#memory_int| v_prenex_14) v_prenex_13)) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_13) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_13 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:49:40,180 INFO L193 IcfgInterpreter]: Reachable states at location L-1 satisfy 23#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |#valid| 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:49:40,181 INFO L193 IcfgInterpreter]: Reachable states at location mainENTRY satisfy 33#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (= 0 (select |old(#valid)| 0)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 |old(~SIZE~0)|) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (<= 0 ~SIZE~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= ~SIZE~0 0) (= |old(~SIZE~0)| ~SIZE~0) (<= 100000 ~MAX~0)) [2019-10-07 00:49:40,181 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initEXIT satisfy 499#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| (store |old(#valid)| 0 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:49:40,190 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.startENTRY satisfy 6#true [2019-10-07 00:49:40,191 INFO L193 IcfgInterpreter]: Reachable states at location L31-3 satisfy 384#(and (and (= |old(~SIZE~0)| 0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3)) (or (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= 0 main_~i~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 main_~i~0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)))) [2019-10-07 00:49:40,191 INFO L193 IcfgInterpreter]: Reachable states at location L22-3 satisfy 77#(and (or (and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= 0 |#NULL.base|) (< ~SIZE~0 ~MAX~0) (< 1 ~SIZE~0) (= 0 |main_#t~malloc2.offset|) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= main_~val1~0 0) (= |#valid| (store |old(#valid)| |main_#t~malloc2.base| 1)) (= main_~a~0.offset |main_#t~malloc2.offset|) (<= ~SIZE~0 2147483647) (= main_~val1~0 0) (< |#StackHeapBarrier| |main_#t~malloc2.base|) (= (store |old(#length)| |main_#t~malloc2.base| (* 4 ~SIZE~0)) |#length|) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (not (= |main_#t~malloc2.base| 0)) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= main_~i~0 0) (= 0 (select |old(#valid)| 0)) (= (select |old(#valid)| |main_#t~malloc2.base|) 0) (= |main_#t~malloc2.base| main_~a~0.base) (= main_~low~0 2) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) (and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (= main_~val1~0 0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3))) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) [2019-10-07 00:49:40,192 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertENTRY satisfy 465#(exists ((v_prenex_16 Int) (v_prenex_15 Int) (v_prenex_17 Int) (v_prenex_12 Int) (v_main_~a~0.offset_BEFORE_CALL_13 Int) (v_prenex_11 Int) (v_main_~a~0.base_BEFORE_CALL_13 Int) (v_prenex_14 Int) (v_prenex_13 Int) (v_main_~i~0_BEFORE_CALL_13 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (< v_prenex_17 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_15) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_15 0) (<= 2 (select (select |#memory_int| v_prenex_16) (+ v_prenex_15 (* 4 v_prenex_17)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_17) (<= 0 v_prenex_17) (<= v_prenex_17 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_11) (<= 0 |#NULL.base|) (<= v_prenex_11 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_12) v_prenex_11) 2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_13) (+ v_main_~a~0.offset_BEFORE_CALL_13 (* 4 v_main_~i~0_BEFORE_CALL_13))) 2) (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (< v_main_~i~0_BEFORE_CALL_13 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_main_~i~0_BEFORE_CALL_13) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_main_~a~0.offset_BEFORE_CALL_13 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_13) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_13) (<= v_main_~i~0_BEFORE_CALL_13 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (< v_prenex_17 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_15) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_15 0) (<= 2 (select (select |#memory_int| v_prenex_16) (+ v_prenex_15 (* 4 v_prenex_17)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_17 100000) (<= 1 v_prenex_17) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_13) (+ v_main_~a~0.offset_BEFORE_CALL_13 (* 4 v_main_~i~0_BEFORE_CALL_13))) 2) (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (< v_main_~i~0_BEFORE_CALL_13 ~SIZE~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_main_~a~0.offset_BEFORE_CALL_13 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_13) (<= v_main_~i~0_BEFORE_CALL_13 100000) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_13) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 2 (select (select |#memory_int| v_prenex_14) v_prenex_13)) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_13) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_13 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) [2019-10-07 00:49:40,192 INFO L193 IcfgInterpreter]: Reachable states at location L33-1 satisfy 461#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 2 |main_#t~mem5|) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:49:42,897 WARN L191 SmtUtils]: Spent 142.00 ms on a formula simplification. DAG size of input: 85 DAG size of output: 34 [2019-10-07 00:49:43,758 INFO L211 tionRefinementEngine]: Constructing automaton from 0 perfect and 4 imperfect interpolant sequences. [2019-10-07 00:49:43,759 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 13, 10, 12] total 39 [2019-10-07 00:49:43,760 INFO L442 AbstractCegarLoop]: Interpolant automaton has 39 states [2019-10-07 00:49:43,761 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 39 interpolants. [2019-10-07 00:49:43,762 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=125, Invalid=1355, Unknown=2, NotChecked=0, Total=1482 [2019-10-07 00:49:43,762 INFO L87 Difference]: Start difference. First operand 24 states and 25 transitions. Second operand 39 states. [2019-10-07 00:49:54,168 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:49:54,168 INFO L93 Difference]: Finished difference Result 65 states and 73 transitions. [2019-10-07 00:49:54,169 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 37 states. [2019-10-07 00:49:54,169 INFO L78 Accepts]: Start accepts. Automaton has 39 states. Word has length 21 [2019-10-07 00:49:54,169 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:49:54,170 INFO L225 Difference]: With dead ends: 65 [2019-10-07 00:49:54,170 INFO L226 Difference]: Without dead ends: 63 [2019-10-07 00:49:54,173 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 102 GetRequests, 33 SyntacticMatches, 3 SemanticMatches, 66 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1217 ImplicationChecksByTransitivity, 9.9s TimeCoverageRelationStatistics Valid=471, Invalid=4083, Unknown=2, NotChecked=0, Total=4556 [2019-10-07 00:49:54,173 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 63 states. [2019-10-07 00:49:54,188 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 63 to 46. [2019-10-07 00:49:54,189 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 46 states. [2019-10-07 00:49:54,190 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 46 states to 46 states and 52 transitions. [2019-10-07 00:49:54,190 INFO L78 Accepts]: Start accepts. Automaton has 46 states and 52 transitions. Word has length 21 [2019-10-07 00:49:54,190 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:49:54,191 INFO L462 AbstractCegarLoop]: Abstraction has 46 states and 52 transitions. [2019-10-07 00:49:54,191 INFO L463 AbstractCegarLoop]: Interpolant automaton has 39 states. [2019-10-07 00:49:54,191 INFO L276 IsEmpty]: Start isEmpty. Operand 46 states and 52 transitions. [2019-10-07 00:49:54,193 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 23 [2019-10-07 00:49:54,193 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:49:54,193 INFO L385 BasicCegarLoop]: trace histogram [3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:49:54,396 WARN L499 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:49:54,397 INFO L410 AbstractCegarLoop]: === Iteration 5 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:49:54,398 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:49:54,398 INFO L82 PathProgramCache]: Analyzing trace with hash -1478277397, now seen corresponding path program 2 times [2019-10-07 00:49:54,398 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:49:54,398 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:49:54,399 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:49:54,399 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:49:54,399 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:49:54,448 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:49:54,582 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 2 proven. 8 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:49:54,583 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:49:54,583 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:49:54,583 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 5 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 5 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:49:54,659 INFO L249 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 3 check-sat command(s) [2019-10-07 00:49:54,659 INFO L250 tOrderPrioritization]: Conjunction of SSA is unsat [2019-10-07 00:49:54,660 INFO L256 TraceCheckSpWp]: Trace formula consists of 112 conjuncts, 32 conjunts are in the unsatisfiable core [2019-10-07 00:49:54,662 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:49:59,826 WARN L191 SmtUtils]: Spent 4.89 s on a formula simplification that was a NOOP. DAG size: 43 [2019-10-07 00:50:00,833 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 0 proven. 10 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:50:00,834 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:50:01,291 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 2 proven. 8 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:50:01,291 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2019-10-07 00:50:01,293 INFO L162 IcfgInterpreter]: Started Sifa with 16 locations of interest [2019-10-07 00:50:01,293 INFO L169 IcfgInterpreter]: Building call graph [2019-10-07 00:50:01,294 INFO L174 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2019-10-07 00:50:01,298 INFO L179 IcfgInterpreter]: Starting interpretation [2019-10-07 00:50:01,298 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2019-10-07 00:50:01,337 INFO L199 IcfgInterpreter]: Interpreting procedure main with input of size 32 for LOIs [2019-10-07 00:50:02,967 INFO L199 IcfgInterpreter]: Interpreting procedure __VERIFIER_assert with input of size 101 for LOIs [2019-10-07 00:50:02,979 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.init with input of size 16 for LOIs [2019-10-07 00:50:02,982 INFO L183 IcfgInterpreter]: Interpretation finished [2019-10-07 00:50:02,983 INFO L191 IcfgInterpreter]: Final predicates for locations of interest are: [2019-10-07 00:50:02,983 INFO L193 IcfgInterpreter]: Reachable states at location L3-1 satisfy 483#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (exists ((v_prenex_49 Int) (v_prenex_48 Int) (v_main_~a~0.base_BEFORE_CALL_42 Int) (v_prenex_56 Int) (v_prenex_45 Int) (v_main_~i~0_BEFORE_CALL_42 Int) (v_prenex_55 Int) (v_prenex_47 Int) (v_prenex_57 Int) (v_prenex_46 Int) (v_prenex_52 Int) (v_prenex_51 Int) (v_prenex_54 Int) (v_prenex_53 Int) (v_prenex_50 Int) (v_main_~a~0.offset_BEFORE_CALL_42 Int)) (or (and (<= ~MAX~0 100000) (<= 0 v_prenex_51) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= v_prenex_53 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< v_prenex_53 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_50) (+ (* 4 v_prenex_53) v_prenex_51)) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_53) (<= 0 v_prenex_53) (<= v_prenex_51 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_54) (<= v_prenex_54 0) (< 0 ~SIZE~0) (< (select (select |#memory_int| v_prenex_52) v_prenex_54) 2) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= v_prenex_49 0) (<= 0 v_prenex_49) (<= v_prenex_56 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< v_prenex_56 ~SIZE~0) (<= 1 v_prenex_56) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_48) (+ (* 4 v_prenex_56) v_prenex_49))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#NULL.offset| 0) (<= 0 v_prenex_56) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= v_prenex_57 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_57) (< 0 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_55) v_prenex_57)) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_47 0) (< v_prenex_46 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_45) (+ (* 4 v_prenex_46) v_prenex_47))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_46) (<= 0 v_prenex_47) (= |#NULL.offset| 0) (<= v_prenex_46 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= v_main_~i~0_BEFORE_CALL_42 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_42) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 1 v_main_~i~0_BEFORE_CALL_42) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_42) (+ (* 4 v_main_~i~0_BEFORE_CALL_42) v_main_~a~0.offset_BEFORE_CALL_42)) 2) (<= v_main_~a~0.offset_BEFORE_CALL_42 0) (= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_42 ~SIZE~0) (<= 100000 ~MAX~0)))) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:50:02,983 INFO L193 IcfgInterpreter]: Reachable states at location L33 satisfy 307#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~i~0 100000) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:50:02,983 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initENTRY satisfy 492#(and (= |old(#NULL.base)| |#NULL.base|) (= |#valid| |old(#valid)|) (= ~MAX~0 |old(~MAX~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= |old(~SIZE~0)| ~SIZE~0)) [2019-10-07 00:50:02,984 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertEXIT satisfy 478#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_prenex_49 Int) (v_prenex_48 Int) (v_main_~a~0.base_BEFORE_CALL_42 Int) (v_prenex_56 Int) (v_prenex_45 Int) (v_main_~i~0_BEFORE_CALL_42 Int) (v_prenex_55 Int) (v_prenex_47 Int) (v_prenex_57 Int) (v_prenex_46 Int) (v_prenex_52 Int) (v_prenex_51 Int) (v_prenex_54 Int) (v_prenex_53 Int) (v_prenex_50 Int) (v_main_~a~0.offset_BEFORE_CALL_42 Int)) (or (and (<= ~MAX~0 100000) (<= 0 v_prenex_51) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= v_prenex_53 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< v_prenex_53 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_50) (+ (* 4 v_prenex_53) v_prenex_51)) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_53) (<= 0 v_prenex_53) (<= v_prenex_51 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_54) (<= v_prenex_54 0) (< 0 ~SIZE~0) (< (select (select |#memory_int| v_prenex_52) v_prenex_54) 2) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= v_prenex_49 0) (<= 0 v_prenex_49) (<= v_prenex_56 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< v_prenex_56 ~SIZE~0) (<= 1 v_prenex_56) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_48) (+ (* 4 v_prenex_56) v_prenex_49))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#NULL.offset| 0) (<= 0 v_prenex_56) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= v_prenex_57 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_57) (< 0 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_55) v_prenex_57)) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_47 0) (< v_prenex_46 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_45) (+ (* 4 v_prenex_46) v_prenex_47))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_46) (<= 0 v_prenex_47) (= |#NULL.offset| 0) (<= v_prenex_46 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= v_main_~i~0_BEFORE_CALL_42 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_42) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 1 v_main_~i~0_BEFORE_CALL_42) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_42) (+ (* 4 v_main_~i~0_BEFORE_CALL_42) v_main_~a~0.offset_BEFORE_CALL_42)) 2) (<= v_main_~a~0.offset_BEFORE_CALL_42 0) (= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_42 ~SIZE~0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:50:02,984 INFO L193 IcfgInterpreter]: Reachable states at location L3-3 satisfy 473#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_prenex_49 Int) (v_prenex_48 Int) (v_main_~a~0.base_BEFORE_CALL_42 Int) (v_prenex_56 Int) (v_prenex_45 Int) (v_main_~i~0_BEFORE_CALL_42 Int) (v_prenex_55 Int) (v_prenex_47 Int) (v_prenex_57 Int) (v_prenex_46 Int) (v_prenex_52 Int) (v_prenex_51 Int) (v_prenex_54 Int) (v_prenex_53 Int) (v_prenex_50 Int) (v_main_~a~0.offset_BEFORE_CALL_42 Int)) (or (and (<= ~MAX~0 100000) (<= 0 v_prenex_51) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= v_prenex_53 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< v_prenex_53 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_50) (+ (* 4 v_prenex_53) v_prenex_51)) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_53) (<= 0 v_prenex_53) (<= v_prenex_51 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_54) (<= v_prenex_54 0) (< 0 ~SIZE~0) (< (select (select |#memory_int| v_prenex_52) v_prenex_54) 2) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= v_prenex_49 0) (<= 0 v_prenex_49) (<= v_prenex_56 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< v_prenex_56 ~SIZE~0) (<= 1 v_prenex_56) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_48) (+ (* 4 v_prenex_56) v_prenex_49))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#NULL.offset| 0) (<= 0 v_prenex_56) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= v_prenex_57 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_57) (< 0 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_55) v_prenex_57)) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_47 0) (< v_prenex_46 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_45) (+ (* 4 v_prenex_46) v_prenex_47))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_46) (<= 0 v_prenex_47) (= |#NULL.offset| 0) (<= v_prenex_46 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= v_main_~i~0_BEFORE_CALL_42 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_42) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 1 v_main_~i~0_BEFORE_CALL_42) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_42) (+ (* 4 v_main_~i~0_BEFORE_CALL_42) v_main_~a~0.offset_BEFORE_CALL_42)) 2) (<= v_main_~a~0.offset_BEFORE_CALL_42 0) (= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_42 ~SIZE~0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:50:02,984 INFO L193 IcfgInterpreter]: Reachable states at location L14 satisfy 38#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 |old(~SIZE~0)|) (= 0 (select |old(#valid)| 0)) (<= ~SIZE~0 2147483647) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= 100000 ~MAX~0)) [2019-10-07 00:50:02,985 INFO L193 IcfgInterpreter]: Reachable states at location L3 satisfy 468#(and (exists ((v_prenex_49 Int) (v_prenex_48 Int) (v_main_~a~0.base_BEFORE_CALL_42 Int) (v_prenex_56 Int) (v_prenex_45 Int) (v_main_~i~0_BEFORE_CALL_42 Int) (v_prenex_55 Int) (v_prenex_47 Int) (v_prenex_57 Int) (v_prenex_46 Int) (v_prenex_52 Int) (v_prenex_51 Int) (v_prenex_54 Int) (v_prenex_53 Int) (v_prenex_50 Int) (v_main_~a~0.offset_BEFORE_CALL_42 Int)) (or (and (<= ~MAX~0 100000) (<= 0 v_prenex_51) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= v_prenex_53 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< v_prenex_53 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_50) (+ (* 4 v_prenex_53) v_prenex_51)) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_53) (<= 0 v_prenex_53) (<= v_prenex_51 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_54) (<= v_prenex_54 0) (< 0 ~SIZE~0) (< (select (select |#memory_int| v_prenex_52) v_prenex_54) 2) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= v_prenex_49 0) (<= 0 v_prenex_49) (<= v_prenex_56 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< v_prenex_56 ~SIZE~0) (<= 1 v_prenex_56) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_48) (+ (* 4 v_prenex_56) v_prenex_49))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#NULL.offset| 0) (<= 0 v_prenex_56) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= v_prenex_57 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_57) (< 0 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_55) v_prenex_57)) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_47 0) (< v_prenex_46 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_45) (+ (* 4 v_prenex_46) v_prenex_47))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_46) (<= 0 v_prenex_47) (= |#NULL.offset| 0) (<= v_prenex_46 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= v_main_~i~0_BEFORE_CALL_42 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_42) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 1 v_main_~i~0_BEFORE_CALL_42) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_42) (+ (* 4 v_main_~i~0_BEFORE_CALL_42) v_main_~a~0.offset_BEFORE_CALL_42)) 2) (<= v_main_~a~0.offset_BEFORE_CALL_42 0) (= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_42 ~SIZE~0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:50:02,985 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION satisfy 488#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (exists ((v_prenex_49 Int) (v_prenex_48 Int) (v_main_~a~0.base_BEFORE_CALL_42 Int) (v_prenex_56 Int) (v_prenex_45 Int) (v_main_~i~0_BEFORE_CALL_42 Int) (v_prenex_55 Int) (v_prenex_47 Int) (v_prenex_57 Int) (v_prenex_46 Int) (v_prenex_52 Int) (v_prenex_51 Int) (v_prenex_54 Int) (v_prenex_53 Int) (v_prenex_50 Int) (v_main_~a~0.offset_BEFORE_CALL_42 Int)) (or (and (<= ~MAX~0 100000) (<= 0 v_prenex_51) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= v_prenex_53 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< v_prenex_53 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_50) (+ (* 4 v_prenex_53) v_prenex_51)) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_53) (<= 0 v_prenex_53) (<= v_prenex_51 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_54) (<= v_prenex_54 0) (< 0 ~SIZE~0) (< (select (select |#memory_int| v_prenex_52) v_prenex_54) 2) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= v_prenex_49 0) (<= 0 v_prenex_49) (<= v_prenex_56 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< v_prenex_56 ~SIZE~0) (<= 1 v_prenex_56) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_48) (+ (* 4 v_prenex_56) v_prenex_49))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#NULL.offset| 0) (<= 0 v_prenex_56) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= v_prenex_57 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_57) (< 0 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_55) v_prenex_57)) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_47 0) (< v_prenex_46 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_45) (+ (* 4 v_prenex_46) v_prenex_47))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_46) (<= 0 v_prenex_47) (= |#NULL.offset| 0) (<= v_prenex_46 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= v_main_~i~0_BEFORE_CALL_42 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_42) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 1 v_main_~i~0_BEFORE_CALL_42) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_42) (+ (* 4 v_main_~i~0_BEFORE_CALL_42) v_main_~a~0.offset_BEFORE_CALL_42)) 2) (<= v_main_~a~0.offset_BEFORE_CALL_42 0) (= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_42 ~SIZE~0) (<= 100000 ~MAX~0)))) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:50:02,985 INFO L193 IcfgInterpreter]: Reachable states at location L-1 satisfy 23#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |#valid| 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:50:02,985 INFO L193 IcfgInterpreter]: Reachable states at location mainENTRY satisfy 33#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 |old(~SIZE~0)|) (= 0 (select |old(#valid)| 0)) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (<= 0 ~SIZE~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= ~SIZE~0 0) (= |old(~SIZE~0)| ~SIZE~0) (<= 100000 ~MAX~0)) [2019-10-07 00:50:02,986 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initEXIT satisfy 497#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| (store |old(#valid)| 0 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:50:02,986 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.startENTRY satisfy 6#true [2019-10-07 00:50:02,986 INFO L193 IcfgInterpreter]: Reachable states at location L31-3 satisfy 389#(and (and (= |old(~SIZE~0)| 0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3)) (or (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= 0 main_~i~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 main_~i~0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)))) [2019-10-07 00:50:02,986 INFO L193 IcfgInterpreter]: Reachable states at location L22-3 satisfy 77#(and (or (and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (= main_~val1~0 0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3)) (and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= 0 |#NULL.base|) (< ~SIZE~0 ~MAX~0) (< 1 ~SIZE~0) (= 0 |main_#t~malloc2.offset|) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= main_~val1~0 0) (= |#valid| (store |old(#valid)| |main_#t~malloc2.base| 1)) (= main_~a~0.offset |main_#t~malloc2.offset|) (<= ~SIZE~0 2147483647) (= main_~val1~0 0) (< |#StackHeapBarrier| |main_#t~malloc2.base|) (= (store |old(#length)| |main_#t~malloc2.base| (* 4 ~SIZE~0)) |#length|) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (not (= |main_#t~malloc2.base| 0)) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= main_~i~0 0) (= 0 (select |old(#valid)| 0)) (= (select |old(#valid)| |main_#t~malloc2.base|) 0) (= |main_#t~malloc2.base| main_~a~0.base) (= main_~low~0 2) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0))) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) [2019-10-07 00:50:02,987 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertENTRY satisfy 463#(exists ((v_prenex_49 Int) (v_prenex_48 Int) (v_main_~a~0.base_BEFORE_CALL_42 Int) (v_prenex_56 Int) (v_prenex_45 Int) (v_main_~i~0_BEFORE_CALL_42 Int) (v_prenex_55 Int) (v_prenex_47 Int) (v_prenex_57 Int) (v_prenex_46 Int) (v_prenex_52 Int) (v_prenex_51 Int) (v_prenex_54 Int) (v_prenex_53 Int) (v_prenex_50 Int) (v_main_~a~0.offset_BEFORE_CALL_42 Int)) (or (and (<= ~MAX~0 100000) (<= 0 v_prenex_51) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= v_prenex_53 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< v_prenex_53 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_50) (+ (* 4 v_prenex_53) v_prenex_51)) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_53) (<= 0 v_prenex_53) (<= v_prenex_51 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_54) (<= v_prenex_54 0) (< 0 ~SIZE~0) (< (select (select |#memory_int| v_prenex_52) v_prenex_54) 2) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= v_prenex_49 0) (<= 0 v_prenex_49) (<= v_prenex_56 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< v_prenex_56 ~SIZE~0) (<= 1 v_prenex_56) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_48) (+ (* 4 v_prenex_56) v_prenex_49))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#NULL.offset| 0) (<= 0 v_prenex_56) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= v_prenex_57 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_57) (< 0 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_55) v_prenex_57)) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_47 0) (< v_prenex_46 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_45) (+ (* 4 v_prenex_46) v_prenex_47))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_46) (<= 0 v_prenex_47) (= |#NULL.offset| 0) (<= v_prenex_46 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= v_main_~i~0_BEFORE_CALL_42 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_42) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 1 v_main_~i~0_BEFORE_CALL_42) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_42) (+ (* 4 v_main_~i~0_BEFORE_CALL_42) v_main_~a~0.offset_BEFORE_CALL_42)) 2) (<= v_main_~a~0.offset_BEFORE_CALL_42 0) (= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_42 ~SIZE~0) (<= 100000 ~MAX~0)))) [2019-10-07 00:50:02,987 INFO L193 IcfgInterpreter]: Reachable states at location L33-1 satisfy 459#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 2 |main_#t~mem5|) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:50:05,735 WARN L191 SmtUtils]: Spent 143.00 ms on a formula simplification. DAG size of input: 85 DAG size of output: 34 [2019-10-07 00:50:06,615 WARN L191 SmtUtils]: Spent 117.00 ms on a formula simplification. DAG size of input: 48 DAG size of output: 33 [2019-10-07 00:50:06,683 INFO L211 tionRefinementEngine]: Constructing automaton from 0 perfect and 4 imperfect interpolant sequences. [2019-10-07 00:50:06,683 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 14, 11, 12] total 42 [2019-10-07 00:50:06,685 INFO L442 AbstractCegarLoop]: Interpolant automaton has 42 states [2019-10-07 00:50:06,685 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 42 interpolants. [2019-10-07 00:50:06,687 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=143, Invalid=1578, Unknown=1, NotChecked=0, Total=1722 [2019-10-07 00:50:06,687 INFO L87 Difference]: Start difference. First operand 46 states and 52 transitions. Second operand 42 states. [2019-10-07 00:50:14,014 WARN L191 SmtUtils]: Spent 1.38 s on a formula simplification. DAG size of input: 70 DAG size of output: 62 [2019-10-07 00:50:18,210 WARN L191 SmtUtils]: Spent 105.00 ms on a formula simplification. DAG size of input: 59 DAG size of output: 48 [2019-10-07 00:50:25,661 WARN L191 SmtUtils]: Spent 6.14 s on a formula simplification. DAG size of input: 73 DAG size of output: 64 [2019-10-07 00:50:31,017 WARN L191 SmtUtils]: Spent 3.08 s on a formula simplification. DAG size of input: 75 DAG size of output: 66 [2019-10-07 00:50:56,496 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:50:56,497 INFO L93 Difference]: Finished difference Result 93 states and 106 transitions. [2019-10-07 00:50:56,497 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 42 states. [2019-10-07 00:50:56,497 INFO L78 Accepts]: Start accepts. Automaton has 42 states. Word has length 22 [2019-10-07 00:50:56,498 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:50:56,500 INFO L225 Difference]: With dead ends: 93 [2019-10-07 00:50:56,500 INFO L226 Difference]: Without dead ends: 91 [2019-10-07 00:50:56,502 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 113 GetRequests, 35 SyntacticMatches, 3 SemanticMatches, 75 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1626 ImplicationChecksByTransitivity, 50.5s TimeCoverageRelationStatistics Valid=613, Invalid=5225, Unknown=14, NotChecked=0, Total=5852 [2019-10-07 00:50:56,503 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 91 states. [2019-10-07 00:50:56,520 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 91 to 56. [2019-10-07 00:50:56,520 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 56 states. [2019-10-07 00:50:56,522 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 56 states to 56 states and 63 transitions. [2019-10-07 00:50:56,522 INFO L78 Accepts]: Start accepts. Automaton has 56 states and 63 transitions. Word has length 22 [2019-10-07 00:50:56,522 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:50:56,522 INFO L462 AbstractCegarLoop]: Abstraction has 56 states and 63 transitions. [2019-10-07 00:50:56,522 INFO L463 AbstractCegarLoop]: Interpolant automaton has 42 states. [2019-10-07 00:50:56,522 INFO L276 IsEmpty]: Start isEmpty. Operand 56 states and 63 transitions. [2019-10-07 00:50:56,523 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 29 [2019-10-07 00:50:56,524 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:50:56,524 INFO L385 BasicCegarLoop]: trace histogram [3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:50:56,724 WARN L499 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 5 z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:50:56,725 INFO L410 AbstractCegarLoop]: === Iteration 6 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:50:56,725 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:50:56,725 INFO L82 PathProgramCache]: Analyzing trace with hash -577660777, now seen corresponding path program 3 times [2019-10-07 00:50:56,726 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:50:56,726 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:50:56,726 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:50:56,726 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:50:56,727 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:50:56,739 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:50:56,792 INFO L134 CoverageAnalysis]: Checked inductivity of 18 backedges. 7 proven. 7 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2019-10-07 00:50:56,793 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:50:56,793 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:50:56,794 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 6 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 6 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:50:56,910 INFO L249 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2019-10-07 00:50:56,910 INFO L250 tOrderPrioritization]: Conjunction of SSA is unsat [2019-10-07 00:50:56,911 INFO L256 TraceCheckSpWp]: Trace formula consists of 108 conjuncts, 8 conjunts are in the unsatisfiable core [2019-10-07 00:50:56,920 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:50:56,980 INFO L134 CoverageAnalysis]: Checked inductivity of 18 backedges. 11 proven. 3 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2019-10-07 00:50:56,981 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:50:57,017 INFO L134 CoverageAnalysis]: Checked inductivity of 18 backedges. 11 proven. 3 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2019-10-07 00:50:57,017 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2019-10-07 00:50:57,019 INFO L162 IcfgInterpreter]: Started Sifa with 16 locations of interest [2019-10-07 00:50:57,019 INFO L169 IcfgInterpreter]: Building call graph [2019-10-07 00:50:57,019 INFO L174 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2019-10-07 00:50:57,020 INFO L179 IcfgInterpreter]: Starting interpretation [2019-10-07 00:50:57,020 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2019-10-07 00:50:57,058 INFO L199 IcfgInterpreter]: Interpreting procedure main with input of size 30 for LOIs [2019-10-07 00:50:58,369 INFO L199 IcfgInterpreter]: Interpreting procedure __VERIFIER_assert with input of size 57 for LOIs [2019-10-07 00:50:58,377 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.init with input of size 16 for LOIs [2019-10-07 00:50:58,385 INFO L183 IcfgInterpreter]: Interpretation finished [2019-10-07 00:50:58,385 INFO L191 IcfgInterpreter]: Final predicates for locations of interest are: [2019-10-07 00:50:58,386 INFO L193 IcfgInterpreter]: Reachable states at location L3-1 satisfy 474#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (exists ((v_main_~i~0_BEFORE_CALL_73 Int) (v_main_~a~0.offset_BEFORE_CALL_69 Int) (v_prenex_88 Int) (v_main_~a~0.base_BEFORE_CALL_69 Int) (v_prenex_87 Int)) (or (and (= |#NULL.base| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69))) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_73 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= 0 v_main_~i~0_BEFORE_CALL_73) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69)))) (<= v_main_~i~0_BEFORE_CALL_73 100000) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_prenex_87) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_prenex_88) v_prenex_87))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_87 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_73 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= 0 v_main_~i~0_BEFORE_CALL_73) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_87) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_87 0) (<= 2 (select (select |#memory_int| v_prenex_88) v_prenex_87)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69))) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= v_main_~i~0_BEFORE_CALL_73 100000) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:50:58,386 INFO L193 IcfgInterpreter]: Reachable states at location L33 satisfy 295#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~i~0 100000) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:50:58,386 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initENTRY satisfy 483#(and (= |old(#NULL.base)| |#NULL.base|) (= |#valid| |old(#valid)|) (= ~MAX~0 |old(~MAX~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= |old(~SIZE~0)| ~SIZE~0)) [2019-10-07 00:50:58,386 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertEXIT satisfy 469#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_main_~i~0_BEFORE_CALL_73 Int) (v_main_~a~0.offset_BEFORE_CALL_69 Int) (v_prenex_88 Int) (v_main_~a~0.base_BEFORE_CALL_69 Int) (v_prenex_87 Int)) (or (and (= |#NULL.base| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69))) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_73 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= 0 v_main_~i~0_BEFORE_CALL_73) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69)))) (<= v_main_~i~0_BEFORE_CALL_73 100000) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_prenex_87) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_prenex_88) v_prenex_87))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_87 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_73 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= 0 v_main_~i~0_BEFORE_CALL_73) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_87) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_87 0) (<= 2 (select (select |#memory_int| v_prenex_88) v_prenex_87)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69))) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= v_main_~i~0_BEFORE_CALL_73 100000) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:50:58,387 INFO L193 IcfgInterpreter]: Reachable states at location L3-3 satisfy 464#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_main_~i~0_BEFORE_CALL_73 Int) (v_main_~a~0.offset_BEFORE_CALL_69 Int) (v_prenex_88 Int) (v_main_~a~0.base_BEFORE_CALL_69 Int) (v_prenex_87 Int)) (or (and (= |#NULL.base| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69))) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_73 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= 0 v_main_~i~0_BEFORE_CALL_73) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69)))) (<= v_main_~i~0_BEFORE_CALL_73 100000) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_prenex_87) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_prenex_88) v_prenex_87))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_87 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_73 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= 0 v_main_~i~0_BEFORE_CALL_73) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_87) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_87 0) (<= 2 (select (select |#memory_int| v_prenex_88) v_prenex_87)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69))) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= v_main_~i~0_BEFORE_CALL_73 100000) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:50:58,387 INFO L193 IcfgInterpreter]: Reachable states at location L14 satisfy 38#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (<= ~SIZE~0 2147483647) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= 100000 ~MAX~0)) [2019-10-07 00:50:58,387 INFO L193 IcfgInterpreter]: Reachable states at location L3 satisfy 459#(and (exists ((v_main_~i~0_BEFORE_CALL_73 Int) (v_main_~a~0.offset_BEFORE_CALL_69 Int) (v_prenex_88 Int) (v_main_~a~0.base_BEFORE_CALL_69 Int) (v_prenex_87 Int)) (or (and (= |#NULL.base| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69))) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_73 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= 0 v_main_~i~0_BEFORE_CALL_73) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69)))) (<= v_main_~i~0_BEFORE_CALL_73 100000) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_prenex_87) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_prenex_88) v_prenex_87))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_87 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_73 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= 0 v_main_~i~0_BEFORE_CALL_73) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_87) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_87 0) (<= 2 (select (select |#memory_int| v_prenex_88) v_prenex_87)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69))) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= v_main_~i~0_BEFORE_CALL_73 100000) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:50:58,387 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION satisfy 479#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (exists ((v_main_~i~0_BEFORE_CALL_73 Int) (v_main_~a~0.offset_BEFORE_CALL_69 Int) (v_prenex_88 Int) (v_main_~a~0.base_BEFORE_CALL_69 Int) (v_prenex_87 Int)) (or (and (= |#NULL.base| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69))) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_73 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= 0 v_main_~i~0_BEFORE_CALL_73) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69)))) (<= v_main_~i~0_BEFORE_CALL_73 100000) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_prenex_87) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_prenex_88) v_prenex_87))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_87 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_73 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= 0 v_main_~i~0_BEFORE_CALL_73) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_87) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_87 0) (<= 2 (select (select |#memory_int| v_prenex_88) v_prenex_87)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69))) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= v_main_~i~0_BEFORE_CALL_73 100000) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:50:58,388 INFO L193 IcfgInterpreter]: Reachable states at location L-1 satisfy 23#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |#valid| 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:50:58,388 INFO L193 IcfgInterpreter]: Reachable states at location mainENTRY satisfy 33#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (<= 0 ~SIZE~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= ~SIZE~0 0) (= |old(~SIZE~0)| ~SIZE~0) (<= 100000 ~MAX~0)) [2019-10-07 00:50:58,388 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initEXIT satisfy 488#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| (store |old(#valid)| 0 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:50:58,388 INFO L193 IcfgInterpreter]: Reachable states at location L31-3 satisfy 377#(and (and (= |old(~SIZE~0)| 0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3)) (or (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= 0 main_~i~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 main_~i~0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)))) [2019-10-07 00:50:58,388 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.startENTRY satisfy 6#true [2019-10-07 00:50:58,389 INFO L193 IcfgInterpreter]: Reachable states at location L22-3 satisfy 66#(and (or (and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= 0 |#NULL.base|) (< ~SIZE~0 ~MAX~0) (< 1 ~SIZE~0) (= 0 |main_#t~malloc2.offset|) (= ~MAX~0 100000) (= |#valid| (store |old(#valid)| |main_#t~malloc2.base| 1)) (= main_~a~0.offset |main_#t~malloc2.offset|) (<= ~SIZE~0 2147483647) (= main_~val1~0 0) (< |#StackHeapBarrier| |main_#t~malloc2.base|) (= (store |old(#length)| |main_#t~malloc2.base| (* 4 ~SIZE~0)) |#length|) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (not (= |main_#t~malloc2.base| 0)) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~i~0 0) (= 0 (select |old(#valid)| 0)) (= (select |old(#valid)| |main_#t~malloc2.base|) 0) (= |main_#t~malloc2.base| main_~a~0.base) (= main_~low~0 2) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) (and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3))) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) [2019-10-07 00:50:58,389 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertENTRY satisfy 454#(exists ((v_main_~i~0_BEFORE_CALL_73 Int) (v_main_~a~0.offset_BEFORE_CALL_69 Int) (v_prenex_88 Int) (v_main_~a~0.base_BEFORE_CALL_69 Int) (v_prenex_87 Int)) (or (and (= |#NULL.base| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69))) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_73 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= 0 v_main_~i~0_BEFORE_CALL_73) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69)))) (<= v_main_~i~0_BEFORE_CALL_73 100000) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_prenex_87) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_prenex_88) v_prenex_87))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_87 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_73 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= 0 v_main_~i~0_BEFORE_CALL_73) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_87) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_87 0) (<= 2 (select (select |#memory_int| v_prenex_88) v_prenex_87)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_69) (+ (* 4 v_main_~i~0_BEFORE_CALL_73) v_main_~a~0.offset_BEFORE_CALL_69))) (<= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_73) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_73 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~a~0.offset_BEFORE_CALL_69 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_69) (<= v_main_~i~0_BEFORE_CALL_73 100000) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) [2019-10-07 00:50:58,389 INFO L193 IcfgInterpreter]: Reachable states at location L33-1 satisfy 450#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 2 |main_#t~mem5|) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:50:58,912 WARN L191 SmtUtils]: Spent 114.00 ms on a formula simplification. DAG size of input: 85 DAG size of output: 31 [2019-10-07 00:50:59,451 INFO L211 tionRefinementEngine]: Constructing automaton from 0 perfect and 4 imperfect interpolant sequences. [2019-10-07 00:50:59,452 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8, 9, 8, 12] total 26 [2019-10-07 00:50:59,453 INFO L442 AbstractCegarLoop]: Interpolant automaton has 26 states [2019-10-07 00:50:59,453 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 26 interpolants. [2019-10-07 00:50:59,453 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=91, Invalid=559, Unknown=0, NotChecked=0, Total=650 [2019-10-07 00:50:59,453 INFO L87 Difference]: Start difference. First operand 56 states and 63 transitions. Second operand 26 states. [2019-10-07 00:51:01,363 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:51:01,363 INFO L93 Difference]: Finished difference Result 87 states and 95 transitions. [2019-10-07 00:51:01,368 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 28 states. [2019-10-07 00:51:01,369 INFO L78 Accepts]: Start accepts. Automaton has 26 states. Word has length 28 [2019-10-07 00:51:01,369 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:51:01,370 INFO L225 Difference]: With dead ends: 87 [2019-10-07 00:51:01,370 INFO L226 Difference]: Without dead ends: 63 [2019-10-07 00:51:01,371 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 111 GetRequests, 60 SyntacticMatches, 7 SemanticMatches, 44 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 651 ImplicationChecksByTransitivity, 2.5s TimeCoverageRelationStatistics Valid=293, Invalid=1777, Unknown=0, NotChecked=0, Total=2070 [2019-10-07 00:51:01,371 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 63 states. [2019-10-07 00:51:01,390 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 63 to 56. [2019-10-07 00:51:01,391 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 56 states. [2019-10-07 00:51:01,392 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 56 states to 56 states and 62 transitions. [2019-10-07 00:51:01,392 INFO L78 Accepts]: Start accepts. Automaton has 56 states and 62 transitions. Word has length 28 [2019-10-07 00:51:01,392 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:51:01,392 INFO L462 AbstractCegarLoop]: Abstraction has 56 states and 62 transitions. [2019-10-07 00:51:01,392 INFO L463 AbstractCegarLoop]: Interpolant automaton has 26 states. [2019-10-07 00:51:01,393 INFO L276 IsEmpty]: Start isEmpty. Operand 56 states and 62 transitions. [2019-10-07 00:51:01,393 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 30 [2019-10-07 00:51:01,394 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:51:01,394 INFO L385 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:51:01,594 WARN L499 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:51:01,595 INFO L410 AbstractCegarLoop]: === Iteration 7 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:51:01,595 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:51:01,595 INFO L82 PathProgramCache]: Analyzing trace with hash 922663723, now seen corresponding path program 4 times [2019-10-07 00:51:01,596 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:51:01,596 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:51:01,596 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:51:01,596 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:51:01,597 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:51:01,638 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:51:01,753 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 4 proven. 13 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2019-10-07 00:51:01,753 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:51:01,753 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:51:01,753 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 7 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 7 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:51:01,889 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:51:01,891 INFO L256 TraceCheckSpWp]: Trace formula consists of 126 conjuncts, 27 conjunts are in the unsatisfiable core [2019-10-07 00:51:01,894 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:51:03,622 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 0 proven. 20 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2019-10-07 00:51:03,622 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:51:05,865 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 4 proven. 13 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2019-10-07 00:51:05,866 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2019-10-07 00:51:05,867 INFO L162 IcfgInterpreter]: Started Sifa with 16 locations of interest [2019-10-07 00:51:05,867 INFO L169 IcfgInterpreter]: Building call graph [2019-10-07 00:51:05,868 INFO L174 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2019-10-07 00:51:05,868 INFO L179 IcfgInterpreter]: Starting interpretation [2019-10-07 00:51:05,868 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2019-10-07 00:51:05,888 INFO L199 IcfgInterpreter]: Interpreting procedure main with input of size 32 for LOIs [2019-10-07 00:51:07,135 INFO L199 IcfgInterpreter]: Interpreting procedure __VERIFIER_assert with input of size 101 for LOIs [2019-10-07 00:51:07,145 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.init with input of size 16 for LOIs [2019-10-07 00:51:07,149 INFO L183 IcfgInterpreter]: Interpretation finished [2019-10-07 00:51:07,149 INFO L191 IcfgInterpreter]: Final predicates for locations of interest are: [2019-10-07 00:51:07,149 INFO L193 IcfgInterpreter]: Reachable states at location L3-1 satisfy 464#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (exists ((v_main_~i~0_BEFORE_CALL_104 Int) (v_prenex_118 Int) (v_prenex_119 Int) (v_prenex_116 Int) (v_main_~a~0.offset_BEFORE_CALL_100 Int) (v_prenex_117 Int) (v_prenex_114 Int) (v_prenex_125 Int) (v_prenex_115 Int) (v_prenex_123 Int) (v_prenex_113 Int) (v_prenex_124 Int) (v_prenex_121 Int) (v_prenex_122 Int) (v_main_~a~0.base_BEFORE_CALL_100 Int) (v_prenex_120 Int)) (or (and (< v_prenex_117 ~SIZE~0) (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_117 100000) (<= 0 v_prenex_115) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_116) (+ v_prenex_115 (* 4 v_prenex_117)))) (<= v_prenex_115 0) (<= 1 v_prenex_117) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_104 ~SIZE~0) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_100) (<= v_main_~i~0_BEFORE_CALL_104 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_main_~i~0_BEFORE_CALL_104) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_104) (<= v_main_~a~0.offset_BEFORE_CALL_100 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_100) (+ v_main_~a~0.offset_BEFORE_CALL_100 (* 4 v_main_~i~0_BEFORE_CALL_104)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_prenex_113) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_114) v_prenex_113)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_113 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_118) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_119) v_prenex_118) 2) (<= v_prenex_118 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= 0 v_prenex_120) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_120 0) (<= 0 |#NULL.base|) (<= 0 v_prenex_122) (= ~MAX~0 100000) (<= v_prenex_122 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_prenex_122 ~SIZE~0) (<= 1 v_prenex_122) (= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_121) (+ v_prenex_120 (* 4 v_prenex_122))) 2) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_124 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_125) (+ v_prenex_124 (* 4 v_prenex_123))) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_124) (<= v_prenex_123 100000) (< v_prenex_123 ~SIZE~0) (<= 1 v_prenex_123) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:51:07,150 INFO L193 IcfgInterpreter]: Reachable states at location L33 satisfy 289#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~i~0 100000) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:51:07,150 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initENTRY satisfy 473#(and (= |old(#NULL.base)| |#NULL.base|) (= |#valid| |old(#valid)|) (= ~MAX~0 |old(~MAX~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= |old(~SIZE~0)| ~SIZE~0)) [2019-10-07 00:51:07,150 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertEXIT satisfy 459#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_main_~i~0_BEFORE_CALL_104 Int) (v_prenex_118 Int) (v_prenex_119 Int) (v_prenex_116 Int) (v_main_~a~0.offset_BEFORE_CALL_100 Int) (v_prenex_117 Int) (v_prenex_114 Int) (v_prenex_125 Int) (v_prenex_115 Int) (v_prenex_123 Int) (v_prenex_113 Int) (v_prenex_124 Int) (v_prenex_121 Int) (v_prenex_122 Int) (v_main_~a~0.base_BEFORE_CALL_100 Int) (v_prenex_120 Int)) (or (and (< v_prenex_117 ~SIZE~0) (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_117 100000) (<= 0 v_prenex_115) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_116) (+ v_prenex_115 (* 4 v_prenex_117)))) (<= v_prenex_115 0) (<= 1 v_prenex_117) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_104 ~SIZE~0) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_100) (<= v_main_~i~0_BEFORE_CALL_104 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_main_~i~0_BEFORE_CALL_104) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_104) (<= v_main_~a~0.offset_BEFORE_CALL_100 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_100) (+ v_main_~a~0.offset_BEFORE_CALL_100 (* 4 v_main_~i~0_BEFORE_CALL_104)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_prenex_113) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_114) v_prenex_113)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_113 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_118) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_119) v_prenex_118) 2) (<= v_prenex_118 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= 0 v_prenex_120) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_120 0) (<= 0 |#NULL.base|) (<= 0 v_prenex_122) (= ~MAX~0 100000) (<= v_prenex_122 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_prenex_122 ~SIZE~0) (<= 1 v_prenex_122) (= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_121) (+ v_prenex_120 (* 4 v_prenex_122))) 2) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_124 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_125) (+ v_prenex_124 (* 4 v_prenex_123))) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_124) (<= v_prenex_123 100000) (< v_prenex_123 ~SIZE~0) (<= 1 v_prenex_123) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:51:07,150 INFO L193 IcfgInterpreter]: Reachable states at location L3-3 satisfy 454#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_main_~i~0_BEFORE_CALL_104 Int) (v_prenex_118 Int) (v_prenex_119 Int) (v_prenex_116 Int) (v_main_~a~0.offset_BEFORE_CALL_100 Int) (v_prenex_117 Int) (v_prenex_114 Int) (v_prenex_125 Int) (v_prenex_115 Int) (v_prenex_123 Int) (v_prenex_113 Int) (v_prenex_124 Int) (v_prenex_121 Int) (v_prenex_122 Int) (v_main_~a~0.base_BEFORE_CALL_100 Int) (v_prenex_120 Int)) (or (and (< v_prenex_117 ~SIZE~0) (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_117 100000) (<= 0 v_prenex_115) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_116) (+ v_prenex_115 (* 4 v_prenex_117)))) (<= v_prenex_115 0) (<= 1 v_prenex_117) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_104 ~SIZE~0) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_100) (<= v_main_~i~0_BEFORE_CALL_104 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_main_~i~0_BEFORE_CALL_104) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_104) (<= v_main_~a~0.offset_BEFORE_CALL_100 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_100) (+ v_main_~a~0.offset_BEFORE_CALL_100 (* 4 v_main_~i~0_BEFORE_CALL_104)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_prenex_113) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_114) v_prenex_113)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_113 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_118) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_119) v_prenex_118) 2) (<= v_prenex_118 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= 0 v_prenex_120) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_120 0) (<= 0 |#NULL.base|) (<= 0 v_prenex_122) (= ~MAX~0 100000) (<= v_prenex_122 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_prenex_122 ~SIZE~0) (<= 1 v_prenex_122) (= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_121) (+ v_prenex_120 (* 4 v_prenex_122))) 2) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_124 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_125) (+ v_prenex_124 (* 4 v_prenex_123))) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_124) (<= v_prenex_123 100000) (< v_prenex_123 ~SIZE~0) (<= 1 v_prenex_123) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:51:07,150 INFO L193 IcfgInterpreter]: Reachable states at location L14 satisfy 38#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (<= ~SIZE~0 2147483647) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= 100000 ~MAX~0)) [2019-10-07 00:51:07,151 INFO L193 IcfgInterpreter]: Reachable states at location L3 satisfy 449#(and (exists ((v_main_~i~0_BEFORE_CALL_104 Int) (v_prenex_118 Int) (v_prenex_119 Int) (v_prenex_116 Int) (v_main_~a~0.offset_BEFORE_CALL_100 Int) (v_prenex_117 Int) (v_prenex_114 Int) (v_prenex_125 Int) (v_prenex_115 Int) (v_prenex_123 Int) (v_prenex_113 Int) (v_prenex_124 Int) (v_prenex_121 Int) (v_prenex_122 Int) (v_main_~a~0.base_BEFORE_CALL_100 Int) (v_prenex_120 Int)) (or (and (< v_prenex_117 ~SIZE~0) (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_117 100000) (<= 0 v_prenex_115) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_116) (+ v_prenex_115 (* 4 v_prenex_117)))) (<= v_prenex_115 0) (<= 1 v_prenex_117) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_104 ~SIZE~0) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_100) (<= v_main_~i~0_BEFORE_CALL_104 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_main_~i~0_BEFORE_CALL_104) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_104) (<= v_main_~a~0.offset_BEFORE_CALL_100 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_100) (+ v_main_~a~0.offset_BEFORE_CALL_100 (* 4 v_main_~i~0_BEFORE_CALL_104)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_prenex_113) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_114) v_prenex_113)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_113 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_118) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_119) v_prenex_118) 2) (<= v_prenex_118 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= 0 v_prenex_120) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_120 0) (<= 0 |#NULL.base|) (<= 0 v_prenex_122) (= ~MAX~0 100000) (<= v_prenex_122 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_prenex_122 ~SIZE~0) (<= 1 v_prenex_122) (= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_121) (+ v_prenex_120 (* 4 v_prenex_122))) 2) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_124 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_125) (+ v_prenex_124 (* 4 v_prenex_123))) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_124) (<= v_prenex_123 100000) (< v_prenex_123 ~SIZE~0) (<= 1 v_prenex_123) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:51:07,151 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION satisfy 469#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (exists ((v_main_~i~0_BEFORE_CALL_104 Int) (v_prenex_118 Int) (v_prenex_119 Int) (v_prenex_116 Int) (v_main_~a~0.offset_BEFORE_CALL_100 Int) (v_prenex_117 Int) (v_prenex_114 Int) (v_prenex_125 Int) (v_prenex_115 Int) (v_prenex_123 Int) (v_prenex_113 Int) (v_prenex_124 Int) (v_prenex_121 Int) (v_prenex_122 Int) (v_main_~a~0.base_BEFORE_CALL_100 Int) (v_prenex_120 Int)) (or (and (< v_prenex_117 ~SIZE~0) (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_117 100000) (<= 0 v_prenex_115) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_116) (+ v_prenex_115 (* 4 v_prenex_117)))) (<= v_prenex_115 0) (<= 1 v_prenex_117) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_104 ~SIZE~0) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_100) (<= v_main_~i~0_BEFORE_CALL_104 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_main_~i~0_BEFORE_CALL_104) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_104) (<= v_main_~a~0.offset_BEFORE_CALL_100 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_100) (+ v_main_~a~0.offset_BEFORE_CALL_100 (* 4 v_main_~i~0_BEFORE_CALL_104)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_prenex_113) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_114) v_prenex_113)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_113 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_118) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_119) v_prenex_118) 2) (<= v_prenex_118 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= 0 v_prenex_120) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_120 0) (<= 0 |#NULL.base|) (<= 0 v_prenex_122) (= ~MAX~0 100000) (<= v_prenex_122 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_prenex_122 ~SIZE~0) (<= 1 v_prenex_122) (= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_121) (+ v_prenex_120 (* 4 v_prenex_122))) 2) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_124 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_125) (+ v_prenex_124 (* 4 v_prenex_123))) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_124) (<= v_prenex_123 100000) (< v_prenex_123 ~SIZE~0) (<= 1 v_prenex_123) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:51:07,151 INFO L193 IcfgInterpreter]: Reachable states at location L-1 satisfy 23#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |#valid| 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:51:07,152 INFO L193 IcfgInterpreter]: Reachable states at location mainENTRY satisfy 33#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (<= 0 ~SIZE~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= ~SIZE~0 0) (= |old(~SIZE~0)| ~SIZE~0) (<= 100000 ~MAX~0)) [2019-10-07 00:51:07,152 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initEXIT satisfy 478#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| (store |old(#valid)| 0 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:51:07,152 INFO L193 IcfgInterpreter]: Reachable states at location L31-3 satisfy 367#(and (and (= |old(~SIZE~0)| 0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3)) (or (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= 0 main_~i~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 main_~i~0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)))) [2019-10-07 00:51:07,152 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.startENTRY satisfy 6#true [2019-10-07 00:51:07,152 INFO L193 IcfgInterpreter]: Reachable states at location L22-3 satisfy 66#(and (or (and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= 0 |#NULL.base|) (< ~SIZE~0 ~MAX~0) (< 1 ~SIZE~0) (= 0 |main_#t~malloc2.offset|) (= ~MAX~0 100000) (= |#valid| (store |old(#valid)| |main_#t~malloc2.base| 1)) (= main_~a~0.offset |main_#t~malloc2.offset|) (<= ~SIZE~0 2147483647) (= main_~val1~0 0) (< |#StackHeapBarrier| |main_#t~malloc2.base|) (= (store |old(#length)| |main_#t~malloc2.base| (* 4 ~SIZE~0)) |#length|) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (not (= |main_#t~malloc2.base| 0)) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~i~0 0) (= 0 (select |old(#valid)| 0)) (= (select |old(#valid)| |main_#t~malloc2.base|) 0) (= |main_#t~malloc2.base| main_~a~0.base) (= main_~low~0 2) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) (and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3))) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) [2019-10-07 00:51:07,153 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertENTRY satisfy 444#(exists ((v_main_~i~0_BEFORE_CALL_104 Int) (v_prenex_118 Int) (v_prenex_119 Int) (v_prenex_116 Int) (v_main_~a~0.offset_BEFORE_CALL_100 Int) (v_prenex_117 Int) (v_prenex_114 Int) (v_prenex_125 Int) (v_prenex_115 Int) (v_prenex_123 Int) (v_prenex_113 Int) (v_prenex_124 Int) (v_prenex_121 Int) (v_prenex_122 Int) (v_main_~a~0.base_BEFORE_CALL_100 Int) (v_prenex_120 Int)) (or (and (< v_prenex_117 ~SIZE~0) (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_117 100000) (<= 0 v_prenex_115) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_116) (+ v_prenex_115 (* 4 v_prenex_117)))) (<= v_prenex_115 0) (<= 1 v_prenex_117) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (< v_main_~i~0_BEFORE_CALL_104 ~SIZE~0) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_100) (<= v_main_~i~0_BEFORE_CALL_104 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_main_~i~0_BEFORE_CALL_104) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_104) (<= v_main_~a~0.offset_BEFORE_CALL_100 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_100) (+ v_main_~a~0.offset_BEFORE_CALL_100 (* 4 v_main_~i~0_BEFORE_CALL_104)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_prenex_113) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_114) v_prenex_113)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_113 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_118) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_119) v_prenex_118) 2) (<= v_prenex_118 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= 0 v_prenex_120) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_120 0) (<= 0 |#NULL.base|) (<= 0 v_prenex_122) (= ~MAX~0 100000) (<= v_prenex_122 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_prenex_122 ~SIZE~0) (<= 1 v_prenex_122) (= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_121) (+ v_prenex_120 (* 4 v_prenex_122))) 2) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_124 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_125) (+ v_prenex_124 (* 4 v_prenex_123))) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_124) (<= v_prenex_123 100000) (< v_prenex_123 ~SIZE~0) (<= 1 v_prenex_123) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) [2019-10-07 00:51:07,153 INFO L193 IcfgInterpreter]: Reachable states at location L33-1 satisfy 440#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 2 |main_#t~mem5|) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:51:09,924 WARN L191 SmtUtils]: Spent 113.00 ms on a formula simplification. DAG size of input: 85 DAG size of output: 31 [2019-10-07 00:51:10,886 INFO L211 tionRefinementEngine]: Constructing automaton from 0 perfect and 4 imperfect interpolant sequences. [2019-10-07 00:51:10,886 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 15, 12, 12] total 45 [2019-10-07 00:51:10,888 INFO L442 AbstractCegarLoop]: Interpolant automaton has 45 states [2019-10-07 00:51:10,888 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 45 interpolants. [2019-10-07 00:51:10,889 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=147, Invalid=1831, Unknown=2, NotChecked=0, Total=1980 [2019-10-07 00:51:10,889 INFO L87 Difference]: Start difference. First operand 56 states and 62 transitions. Second operand 45 states. [2019-10-07 00:51:22,906 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:51:22,906 INFO L93 Difference]: Finished difference Result 69 states and 75 transitions. [2019-10-07 00:51:22,906 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 35 states. [2019-10-07 00:51:22,906 INFO L78 Accepts]: Start accepts. Automaton has 45 states. Word has length 29 [2019-10-07 00:51:22,907 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:51:22,908 INFO L225 Difference]: With dead ends: 69 [2019-10-07 00:51:22,908 INFO L226 Difference]: Without dead ends: 67 [2019-10-07 00:51:22,909 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 126 GetRequests, 50 SyntacticMatches, 6 SemanticMatches, 70 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1358 ImplicationChecksByTransitivity, 10.5s TimeCoverageRelationStatistics Valid=464, Invalid=4646, Unknown=2, NotChecked=0, Total=5112 [2019-10-07 00:51:22,910 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 67 states. [2019-10-07 00:51:22,928 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 67 to 59. [2019-10-07 00:51:22,929 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 59 states. [2019-10-07 00:51:22,930 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 59 states to 59 states and 66 transitions. [2019-10-07 00:51:22,930 INFO L78 Accepts]: Start accepts. Automaton has 59 states and 66 transitions. Word has length 29 [2019-10-07 00:51:22,930 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:51:22,930 INFO L462 AbstractCegarLoop]: Abstraction has 59 states and 66 transitions. [2019-10-07 00:51:22,930 INFO L463 AbstractCegarLoop]: Interpolant automaton has 45 states. [2019-10-07 00:51:22,931 INFO L276 IsEmpty]: Start isEmpty. Operand 59 states and 66 transitions. [2019-10-07 00:51:22,932 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 31 [2019-10-07 00:51:22,932 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:51:22,932 INFO L385 BasicCegarLoop]: trace histogram [4, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:51:23,135 WARN L499 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 7 z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:51:23,136 INFO L410 AbstractCegarLoop]: === Iteration 8 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:51:23,136 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:51:23,136 INFO L82 PathProgramCache]: Analyzing trace with hash 188082967, now seen corresponding path program 5 times [2019-10-07 00:51:23,137 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:51:23,137 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:51:23,137 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:51:23,137 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:51:23,138 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:51:23,159 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:51:23,302 INFO L134 CoverageAnalysis]: Checked inductivity of 25 backedges. 4 proven. 17 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2019-10-07 00:51:23,302 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:51:23,302 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:51:23,302 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 8 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 8 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:51:23,466 INFO L249 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 3 check-sat command(s) [2019-10-07 00:51:23,467 INFO L250 tOrderPrioritization]: Conjunction of SSA is unsat [2019-10-07 00:51:23,468 INFO L256 TraceCheckSpWp]: Trace formula consists of 131 conjuncts, 36 conjunts are in the unsatisfiable core [2019-10-07 00:51:23,471 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:51:24,614 WARN L191 SmtUtils]: Spent 869.00 ms on a formula simplification that was a NOOP. DAG size: 44 [2019-10-07 00:51:25,186 INFO L134 CoverageAnalysis]: Checked inductivity of 25 backedges. 3 proven. 21 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2019-10-07 00:51:25,186 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:51:25,638 INFO L134 CoverageAnalysis]: Checked inductivity of 25 backedges. 4 proven. 17 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2019-10-07 00:51:25,639 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2019-10-07 00:51:25,640 INFO L162 IcfgInterpreter]: Started Sifa with 16 locations of interest [2019-10-07 00:51:25,640 INFO L169 IcfgInterpreter]: Building call graph [2019-10-07 00:51:25,641 INFO L174 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2019-10-07 00:51:25,641 INFO L179 IcfgInterpreter]: Starting interpretation [2019-10-07 00:51:25,641 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2019-10-07 00:51:25,663 INFO L199 IcfgInterpreter]: Interpreting procedure main with input of size 32 for LOIs [2019-10-07 00:51:27,120 INFO L199 IcfgInterpreter]: Interpreting procedure __VERIFIER_assert with input of size 101 for LOIs [2019-10-07 00:51:27,139 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.init with input of size 16 for LOIs [2019-10-07 00:51:27,146 INFO L183 IcfgInterpreter]: Interpretation finished [2019-10-07 00:51:27,146 INFO L191 IcfgInterpreter]: Final predicates for locations of interest are: [2019-10-07 00:51:27,146 INFO L193 IcfgInterpreter]: Reachable states at location L3-1 satisfy 467#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (exists ((v_main_~i~0_BEFORE_CALL_135 Int) (v_main_~a~0.offset_BEFORE_CALL_131 Int) (v_prenex_158 Int) (v_prenex_169 Int) (v_prenex_159 Int) (v_prenex_167 Int) (v_prenex_168 Int) (v_prenex_165 Int) (v_prenex_166 Int) (v_prenex_163 Int) (v_prenex_164 Int) (v_main_~a~0.base_BEFORE_CALL_131 Int) (v_prenex_161 Int) (v_prenex_162 Int) (v_prenex_170 Int) (v_prenex_160 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_131) (<= v_main_~i~0_BEFORE_CALL_135 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_131) (+ (* 4 v_main_~i~0_BEFORE_CALL_135) v_main_~a~0.offset_BEFORE_CALL_131))) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_135 ~SIZE~0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_135) (<= v_main_~a~0.offset_BEFORE_CALL_131 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_159 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_161 0) (<= 0 v_prenex_159) (<= 0 v_prenex_161) (<= 1 v_prenex_161) (= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_158) (+ (* 4 v_prenex_161) v_prenex_159))) (< v_prenex_161 ~SIZE~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= v_prenex_169 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_169) (< (select (select |#memory_int| v_prenex_170) (+ (* 4 v_prenex_168) v_prenex_169)) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_168) (<= v_prenex_168 100000) (< v_prenex_168 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_162 0) (<= 0 v_prenex_162) (<= 2 (select (select |#memory_int| v_prenex_160) v_prenex_162)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_164) (<= v_prenex_164 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_163) v_prenex_164) 2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= v_prenex_167 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_166) (<= 0 |#NULL.base|) (<= 0 v_prenex_167) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_165) (+ (* 4 v_prenex_166) v_prenex_167)) 2) (<= 1 v_prenex_166) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_166 0) (< v_prenex_166 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:51:27,147 INFO L193 IcfgInterpreter]: Reachable states at location L33 satisfy 292#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~i~0 100000) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:51:27,147 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initENTRY satisfy 476#(and (= |old(#NULL.base)| |#NULL.base|) (= |#valid| |old(#valid)|) (= ~MAX~0 |old(~MAX~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= |old(~SIZE~0)| ~SIZE~0)) [2019-10-07 00:51:27,147 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertEXIT satisfy 462#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_main_~i~0_BEFORE_CALL_135 Int) (v_main_~a~0.offset_BEFORE_CALL_131 Int) (v_prenex_158 Int) (v_prenex_169 Int) (v_prenex_159 Int) (v_prenex_167 Int) (v_prenex_168 Int) (v_prenex_165 Int) (v_prenex_166 Int) (v_prenex_163 Int) (v_prenex_164 Int) (v_main_~a~0.base_BEFORE_CALL_131 Int) (v_prenex_161 Int) (v_prenex_162 Int) (v_prenex_170 Int) (v_prenex_160 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_131) (<= v_main_~i~0_BEFORE_CALL_135 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_131) (+ (* 4 v_main_~i~0_BEFORE_CALL_135) v_main_~a~0.offset_BEFORE_CALL_131))) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_135 ~SIZE~0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_135) (<= v_main_~a~0.offset_BEFORE_CALL_131 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_159 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_161 0) (<= 0 v_prenex_159) (<= 0 v_prenex_161) (<= 1 v_prenex_161) (= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_158) (+ (* 4 v_prenex_161) v_prenex_159))) (< v_prenex_161 ~SIZE~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= v_prenex_169 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_169) (< (select (select |#memory_int| v_prenex_170) (+ (* 4 v_prenex_168) v_prenex_169)) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_168) (<= v_prenex_168 100000) (< v_prenex_168 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_162 0) (<= 0 v_prenex_162) (<= 2 (select (select |#memory_int| v_prenex_160) v_prenex_162)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_164) (<= v_prenex_164 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_163) v_prenex_164) 2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= v_prenex_167 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_166) (<= 0 |#NULL.base|) (<= 0 v_prenex_167) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_165) (+ (* 4 v_prenex_166) v_prenex_167)) 2) (<= 1 v_prenex_166) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_166 0) (< v_prenex_166 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:51:27,147 INFO L193 IcfgInterpreter]: Reachable states at location L3-3 satisfy 457#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_main_~i~0_BEFORE_CALL_135 Int) (v_main_~a~0.offset_BEFORE_CALL_131 Int) (v_prenex_158 Int) (v_prenex_169 Int) (v_prenex_159 Int) (v_prenex_167 Int) (v_prenex_168 Int) (v_prenex_165 Int) (v_prenex_166 Int) (v_prenex_163 Int) (v_prenex_164 Int) (v_main_~a~0.base_BEFORE_CALL_131 Int) (v_prenex_161 Int) (v_prenex_162 Int) (v_prenex_170 Int) (v_prenex_160 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_131) (<= v_main_~i~0_BEFORE_CALL_135 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_131) (+ (* 4 v_main_~i~0_BEFORE_CALL_135) v_main_~a~0.offset_BEFORE_CALL_131))) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_135 ~SIZE~0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_135) (<= v_main_~a~0.offset_BEFORE_CALL_131 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_159 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_161 0) (<= 0 v_prenex_159) (<= 0 v_prenex_161) (<= 1 v_prenex_161) (= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_158) (+ (* 4 v_prenex_161) v_prenex_159))) (< v_prenex_161 ~SIZE~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= v_prenex_169 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_169) (< (select (select |#memory_int| v_prenex_170) (+ (* 4 v_prenex_168) v_prenex_169)) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_168) (<= v_prenex_168 100000) (< v_prenex_168 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_162 0) (<= 0 v_prenex_162) (<= 2 (select (select |#memory_int| v_prenex_160) v_prenex_162)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_164) (<= v_prenex_164 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_163) v_prenex_164) 2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= v_prenex_167 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_166) (<= 0 |#NULL.base|) (<= 0 v_prenex_167) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_165) (+ (* 4 v_prenex_166) v_prenex_167)) 2) (<= 1 v_prenex_166) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_166 0) (< v_prenex_166 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:51:27,147 INFO L193 IcfgInterpreter]: Reachable states at location L14 satisfy 38#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |old(~SIZE~0)|) (= 0 (select |old(#valid)| 0)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= ~SIZE~0 2147483647) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= 100000 ~MAX~0)) [2019-10-07 00:51:27,148 INFO L193 IcfgInterpreter]: Reachable states at location L3 satisfy 452#(and (exists ((v_main_~i~0_BEFORE_CALL_135 Int) (v_main_~a~0.offset_BEFORE_CALL_131 Int) (v_prenex_158 Int) (v_prenex_169 Int) (v_prenex_159 Int) (v_prenex_167 Int) (v_prenex_168 Int) (v_prenex_165 Int) (v_prenex_166 Int) (v_prenex_163 Int) (v_prenex_164 Int) (v_main_~a~0.base_BEFORE_CALL_131 Int) (v_prenex_161 Int) (v_prenex_162 Int) (v_prenex_170 Int) (v_prenex_160 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_131) (<= v_main_~i~0_BEFORE_CALL_135 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_131) (+ (* 4 v_main_~i~0_BEFORE_CALL_135) v_main_~a~0.offset_BEFORE_CALL_131))) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_135 ~SIZE~0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_135) (<= v_main_~a~0.offset_BEFORE_CALL_131 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_159 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_161 0) (<= 0 v_prenex_159) (<= 0 v_prenex_161) (<= 1 v_prenex_161) (= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_158) (+ (* 4 v_prenex_161) v_prenex_159))) (< v_prenex_161 ~SIZE~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= v_prenex_169 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_169) (< (select (select |#memory_int| v_prenex_170) (+ (* 4 v_prenex_168) v_prenex_169)) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_168) (<= v_prenex_168 100000) (< v_prenex_168 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_162 0) (<= 0 v_prenex_162) (<= 2 (select (select |#memory_int| v_prenex_160) v_prenex_162)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_164) (<= v_prenex_164 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_163) v_prenex_164) 2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= v_prenex_167 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_166) (<= 0 |#NULL.base|) (<= 0 v_prenex_167) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_165) (+ (* 4 v_prenex_166) v_prenex_167)) 2) (<= 1 v_prenex_166) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_166 0) (< v_prenex_166 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:51:27,148 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION satisfy 472#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (exists ((v_main_~i~0_BEFORE_CALL_135 Int) (v_main_~a~0.offset_BEFORE_CALL_131 Int) (v_prenex_158 Int) (v_prenex_169 Int) (v_prenex_159 Int) (v_prenex_167 Int) (v_prenex_168 Int) (v_prenex_165 Int) (v_prenex_166 Int) (v_prenex_163 Int) (v_prenex_164 Int) (v_main_~a~0.base_BEFORE_CALL_131 Int) (v_prenex_161 Int) (v_prenex_162 Int) (v_prenex_170 Int) (v_prenex_160 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_131) (<= v_main_~i~0_BEFORE_CALL_135 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_131) (+ (* 4 v_main_~i~0_BEFORE_CALL_135) v_main_~a~0.offset_BEFORE_CALL_131))) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_135 ~SIZE~0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_135) (<= v_main_~a~0.offset_BEFORE_CALL_131 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_159 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_161 0) (<= 0 v_prenex_159) (<= 0 v_prenex_161) (<= 1 v_prenex_161) (= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_158) (+ (* 4 v_prenex_161) v_prenex_159))) (< v_prenex_161 ~SIZE~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= v_prenex_169 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_169) (< (select (select |#memory_int| v_prenex_170) (+ (* 4 v_prenex_168) v_prenex_169)) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_168) (<= v_prenex_168 100000) (< v_prenex_168 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_162 0) (<= 0 v_prenex_162) (<= 2 (select (select |#memory_int| v_prenex_160) v_prenex_162)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_164) (<= v_prenex_164 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_163) v_prenex_164) 2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= v_prenex_167 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_166) (<= 0 |#NULL.base|) (<= 0 v_prenex_167) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_165) (+ (* 4 v_prenex_166) v_prenex_167)) 2) (<= 1 v_prenex_166) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_166 0) (< v_prenex_166 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:51:27,148 INFO L193 IcfgInterpreter]: Reachable states at location L-1 satisfy 23#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |#valid| 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:51:27,149 INFO L193 IcfgInterpreter]: Reachable states at location mainENTRY satisfy 33#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |old(~SIZE~0)|) (= 0 (select |old(#valid)| 0)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (<= 0 ~SIZE~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= ~SIZE~0 0) (= |old(~SIZE~0)| ~SIZE~0) (<= 100000 ~MAX~0)) [2019-10-07 00:51:27,149 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initEXIT satisfy 481#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| (store |old(#valid)| 0 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:51:27,149 INFO L193 IcfgInterpreter]: Reachable states at location L31-3 satisfy 370#(and (and (= |old(~SIZE~0)| 0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3)) (or (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= 0 main_~i~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 main_~i~0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)))) [2019-10-07 00:51:27,149 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.startENTRY satisfy 6#true [2019-10-07 00:51:27,149 INFO L193 IcfgInterpreter]: Reachable states at location L22-3 satisfy 66#(and (or (and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= 0 |#NULL.base|) (< ~SIZE~0 ~MAX~0) (< 1 ~SIZE~0) (= 0 |main_#t~malloc2.offset|) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= main_~val1~0 0) (= |#valid| (store |old(#valid)| |main_#t~malloc2.base| 1)) (<= 0 |#NULL.offset|) (= main_~a~0.offset |main_#t~malloc2.offset|) (<= 2 main_~low~0) (<= ~SIZE~0 2147483647) (= main_~val1~0 0) (< |#StackHeapBarrier| |main_#t~malloc2.base|) (= (store |old(#length)| |main_#t~malloc2.base| (* 4 ~SIZE~0)) |#length|) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (not (= |main_#t~malloc2.base| 0)) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= main_~i~0 0) (<= 0 |old(~SIZE~0)|) (= 0 (select |old(#valid)| 0)) (<= |#NULL.offset| 0) (= (select |old(#valid)| |main_#t~malloc2.base|) 0) (<= main_~low~0 2) (= |main_#t~malloc2.base| main_~a~0.base) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) (and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3))) (<= 100000 ~MAX~0)) [2019-10-07 00:51:27,150 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertENTRY satisfy 447#(exists ((v_main_~i~0_BEFORE_CALL_135 Int) (v_main_~a~0.offset_BEFORE_CALL_131 Int) (v_prenex_158 Int) (v_prenex_169 Int) (v_prenex_159 Int) (v_prenex_167 Int) (v_prenex_168 Int) (v_prenex_165 Int) (v_prenex_166 Int) (v_prenex_163 Int) (v_prenex_164 Int) (v_main_~a~0.base_BEFORE_CALL_131 Int) (v_prenex_161 Int) (v_prenex_162 Int) (v_prenex_170 Int) (v_prenex_160 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= 0 v_main_~a~0.offset_BEFORE_CALL_131) (<= v_main_~i~0_BEFORE_CALL_135 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_131) (+ (* 4 v_main_~i~0_BEFORE_CALL_135) v_main_~a~0.offset_BEFORE_CALL_131))) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_135 ~SIZE~0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_main_~i~0_BEFORE_CALL_135) (<= v_main_~a~0.offset_BEFORE_CALL_131 0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_159 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_161 0) (<= 0 v_prenex_159) (<= 0 v_prenex_161) (<= 1 v_prenex_161) (= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_158) (+ (* 4 v_prenex_161) v_prenex_159))) (< v_prenex_161 ~SIZE~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= v_prenex_169 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_169) (< (select (select |#memory_int| v_prenex_170) (+ (* 4 v_prenex_168) v_prenex_169)) 2) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 v_prenex_168) (<= v_prenex_168 100000) (< v_prenex_168 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_162 0) (<= 0 v_prenex_162) (<= 2 (select (select |#memory_int| v_prenex_160) v_prenex_162)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_164) (<= v_prenex_164 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_163) v_prenex_164) 2) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= v_prenex_167 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_166) (<= 0 |#NULL.base|) (<= 0 v_prenex_167) (= ~MAX~0 100000) (< (select (select |#memory_int| v_prenex_165) (+ (* 4 v_prenex_166) v_prenex_167)) 2) (<= 1 v_prenex_166) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_166 0) (< v_prenex_166 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) [2019-10-07 00:51:27,150 INFO L193 IcfgInterpreter]: Reachable states at location L33-1 satisfy 443#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 2 |main_#t~mem5|) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:51:29,988 WARN L191 SmtUtils]: Spent 162.00 ms on a formula simplification. DAG size of input: 85 DAG size of output: 31 [2019-10-07 00:51:31,024 INFO L211 tionRefinementEngine]: Constructing automaton from 0 perfect and 4 imperfect interpolant sequences. [2019-10-07 00:51:31,024 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [13, 16, 13, 12] total 48 [2019-10-07 00:51:31,025 INFO L442 AbstractCegarLoop]: Interpolant automaton has 48 states [2019-10-07 00:51:31,025 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 48 interpolants. [2019-10-07 00:51:31,026 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=166, Invalid=2089, Unknown=1, NotChecked=0, Total=2256 [2019-10-07 00:51:31,026 INFO L87 Difference]: Start difference. First operand 59 states and 66 transitions. Second operand 48 states. [2019-10-07 00:51:43,976 WARN L191 SmtUtils]: Spent 4.20 s on a formula simplification. DAG size of input: 71 DAG size of output: 65 [2019-10-07 00:51:44,460 WARN L191 SmtUtils]: Spent 115.00 ms on a formula simplification. DAG size of input: 58 DAG size of output: 47 [2019-10-07 00:51:52,019 WARN L191 SmtUtils]: Spent 112.00 ms on a formula simplification. DAG size of input: 60 DAG size of output: 49 [2019-10-07 00:51:52,944 WARN L191 SmtUtils]: Spent 104.00 ms on a formula simplification. DAG size of input: 58 DAG size of output: 47 [2019-10-07 00:51:54,591 WARN L191 SmtUtils]: Spent 112.00 ms on a formula simplification. DAG size of input: 60 DAG size of output: 49 [2019-10-07 00:52:01,750 WARN L191 SmtUtils]: Spent 1.11 s on a formula simplification. DAG size of input: 74 DAG size of output: 65 [2019-10-07 00:52:05,631 WARN L191 SmtUtils]: Spent 2.39 s on a formula simplification. DAG size of input: 76 DAG size of output: 67 [2019-10-07 00:52:12,034 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:52:12,034 INFO L93 Difference]: Finished difference Result 76 states and 84 transitions. [2019-10-07 00:52:12,034 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 41 states. [2019-10-07 00:52:12,035 INFO L78 Accepts]: Start accepts. Automaton has 48 states. Word has length 30 [2019-10-07 00:52:12,035 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:52:12,036 INFO L225 Difference]: With dead ends: 76 [2019-10-07 00:52:12,036 INFO L226 Difference]: Without dead ends: 74 [2019-10-07 00:52:12,038 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 137 GetRequests, 51 SyntacticMatches, 6 SemanticMatches, 80 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1855 ImplicationChecksByTransitivity, 25.7s TimeCoverageRelationStatistics Valid=651, Invalid=5988, Unknown=3, NotChecked=0, Total=6642 [2019-10-07 00:52:12,038 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 74 states. [2019-10-07 00:52:12,061 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 74 to 61. [2019-10-07 00:52:12,062 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 61 states. [2019-10-07 00:52:12,063 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 61 states to 61 states and 66 transitions. [2019-10-07 00:52:12,063 INFO L78 Accepts]: Start accepts. Automaton has 61 states and 66 transitions. Word has length 30 [2019-10-07 00:52:12,063 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:52:12,063 INFO L462 AbstractCegarLoop]: Abstraction has 61 states and 66 transitions. [2019-10-07 00:52:12,063 INFO L463 AbstractCegarLoop]: Interpolant automaton has 48 states. [2019-10-07 00:52:12,063 INFO L276 IsEmpty]: Start isEmpty. Operand 61 states and 66 transitions. [2019-10-07 00:52:12,065 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 37 [2019-10-07 00:52:12,065 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:52:12,065 INFO L385 BasicCegarLoop]: trace histogram [4, 4, 4, 3, 3, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:52:12,269 WARN L499 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 8 z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:52:12,269 INFO L410 AbstractCegarLoop]: === Iteration 9 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:52:12,270 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:52:12,270 INFO L82 PathProgramCache]: Analyzing trace with hash -2078015765, now seen corresponding path program 6 times [2019-10-07 00:52:12,270 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:52:12,270 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:52:12,271 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:52:12,271 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:52:12,271 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:52:12,294 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:52:12,366 INFO L134 CoverageAnalysis]: Checked inductivity of 39 backedges. 14 proven. 13 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2019-10-07 00:52:12,366 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:52:12,366 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:52:12,367 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 9 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 9 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:52:12,545 INFO L249 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2019-10-07 00:52:12,545 INFO L250 tOrderPrioritization]: Conjunction of SSA is unsat [2019-10-07 00:52:12,546 INFO L256 TraceCheckSpWp]: Trace formula consists of 127 conjuncts, 10 conjunts are in the unsatisfiable core [2019-10-07 00:52:12,548 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:52:12,627 INFO L134 CoverageAnalysis]: Checked inductivity of 39 backedges. 21 proven. 6 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2019-10-07 00:52:12,627 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:52:12,685 INFO L134 CoverageAnalysis]: Checked inductivity of 39 backedges. 21 proven. 6 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2019-10-07 00:52:12,685 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2019-10-07 00:52:12,687 INFO L162 IcfgInterpreter]: Started Sifa with 16 locations of interest [2019-10-07 00:52:12,687 INFO L169 IcfgInterpreter]: Building call graph [2019-10-07 00:52:12,688 INFO L174 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2019-10-07 00:52:12,688 INFO L179 IcfgInterpreter]: Starting interpretation [2019-10-07 00:52:12,688 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2019-10-07 00:52:12,709 INFO L199 IcfgInterpreter]: Interpreting procedure main with input of size 32 for LOIs [2019-10-07 00:52:13,799 INFO L199 IcfgInterpreter]: Interpreting procedure __VERIFIER_assert with input of size 101 for LOIs [2019-10-07 00:52:13,809 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.init with input of size 16 for LOIs [2019-10-07 00:52:13,813 INFO L183 IcfgInterpreter]: Interpretation finished [2019-10-07 00:52:13,813 INFO L191 IcfgInterpreter]: Final predicates for locations of interest are: [2019-10-07 00:52:13,814 INFO L193 IcfgInterpreter]: Reachable states at location L3-1 satisfy 472#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (exists ((v_main_~a~0.base_BEFORE_CALL_158 Int) (v_prenex_208 Int) (v_prenex_219 Int) (v_prenex_209 Int) (v_main_~i~0_BEFORE_CALL_168 Int) (v_prenex_217 Int) (v_prenex_207 Int) (v_prenex_218 Int) (v_prenex_215 Int) (v_prenex_216 Int) (v_prenex_213 Int) (v_main_~a~0.offset_BEFORE_CALL_158 Int) (v_prenex_214 Int) (v_prenex_211 Int) (v_prenex_212 Int) (v_prenex_210 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_207) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_prenex_209 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_207 0) (<= 2 (select (select |#memory_int| v_prenex_208) (+ v_prenex_207 (* 4 v_prenex_209)))) (<= v_prenex_209 100000) (<= 1 v_prenex_209) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_211) (+ v_prenex_210 (* 4 v_prenex_219))) 2) (<= v_prenex_219 0) (<= 0 v_prenex_210) (<= v_prenex_210 0) (= |#NULL.offset| 0) (< v_prenex_219 ~SIZE~0) (<= 0 v_prenex_219) (<= 1 v_prenex_219) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_216) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_212 0) (< v_prenex_216 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_213) (+ v_prenex_212 (* 4 v_prenex_216)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_212) (<= 1 v_prenex_216) (= |#NULL.offset| 0) (<= v_prenex_216 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_158 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_158) (<= 1 v_main_~i~0_BEFORE_CALL_168) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_158) (+ v_main_~a~0.offset_BEFORE_CALL_158 (* 4 v_main_~i~0_BEFORE_CALL_168))) 2) (<= v_main_~i~0_BEFORE_CALL_168 100000) (= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_168 ~SIZE~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_215) v_prenex_214)) (<= 0 |#NULL.base|) (<= 0 v_prenex_214) (<= v_prenex_214 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_217) (<= v_prenex_217 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_218) v_prenex_217) 2) (<= 100000 ~MAX~0)))) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:52:13,814 INFO L193 IcfgInterpreter]: Reachable states at location L33 satisfy 297#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~i~0 100000) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:52:13,814 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initENTRY satisfy 481#(and (= |old(#NULL.base)| |#NULL.base|) (= |#valid| |old(#valid)|) (= ~MAX~0 |old(~MAX~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= |old(~SIZE~0)| ~SIZE~0)) [2019-10-07 00:52:13,815 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertEXIT satisfy 467#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_main_~a~0.base_BEFORE_CALL_158 Int) (v_prenex_208 Int) (v_prenex_219 Int) (v_prenex_209 Int) (v_main_~i~0_BEFORE_CALL_168 Int) (v_prenex_217 Int) (v_prenex_207 Int) (v_prenex_218 Int) (v_prenex_215 Int) (v_prenex_216 Int) (v_prenex_213 Int) (v_main_~a~0.offset_BEFORE_CALL_158 Int) (v_prenex_214 Int) (v_prenex_211 Int) (v_prenex_212 Int) (v_prenex_210 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_207) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_prenex_209 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_207 0) (<= 2 (select (select |#memory_int| v_prenex_208) (+ v_prenex_207 (* 4 v_prenex_209)))) (<= v_prenex_209 100000) (<= 1 v_prenex_209) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_211) (+ v_prenex_210 (* 4 v_prenex_219))) 2) (<= v_prenex_219 0) (<= 0 v_prenex_210) (<= v_prenex_210 0) (= |#NULL.offset| 0) (< v_prenex_219 ~SIZE~0) (<= 0 v_prenex_219) (<= 1 v_prenex_219) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_216) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_212 0) (< v_prenex_216 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_213) (+ v_prenex_212 (* 4 v_prenex_216)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_212) (<= 1 v_prenex_216) (= |#NULL.offset| 0) (<= v_prenex_216 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_158 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_158) (<= 1 v_main_~i~0_BEFORE_CALL_168) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_158) (+ v_main_~a~0.offset_BEFORE_CALL_158 (* 4 v_main_~i~0_BEFORE_CALL_168))) 2) (<= v_main_~i~0_BEFORE_CALL_168 100000) (= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_168 ~SIZE~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_215) v_prenex_214)) (<= 0 |#NULL.base|) (<= 0 v_prenex_214) (<= v_prenex_214 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_217) (<= v_prenex_217 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_218) v_prenex_217) 2) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:52:13,815 INFO L193 IcfgInterpreter]: Reachable states at location L3-3 satisfy 462#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_main_~a~0.base_BEFORE_CALL_158 Int) (v_prenex_208 Int) (v_prenex_219 Int) (v_prenex_209 Int) (v_main_~i~0_BEFORE_CALL_168 Int) (v_prenex_217 Int) (v_prenex_207 Int) (v_prenex_218 Int) (v_prenex_215 Int) (v_prenex_216 Int) (v_prenex_213 Int) (v_main_~a~0.offset_BEFORE_CALL_158 Int) (v_prenex_214 Int) (v_prenex_211 Int) (v_prenex_212 Int) (v_prenex_210 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_207) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_prenex_209 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_207 0) (<= 2 (select (select |#memory_int| v_prenex_208) (+ v_prenex_207 (* 4 v_prenex_209)))) (<= v_prenex_209 100000) (<= 1 v_prenex_209) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_211) (+ v_prenex_210 (* 4 v_prenex_219))) 2) (<= v_prenex_219 0) (<= 0 v_prenex_210) (<= v_prenex_210 0) (= |#NULL.offset| 0) (< v_prenex_219 ~SIZE~0) (<= 0 v_prenex_219) (<= 1 v_prenex_219) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_216) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_212 0) (< v_prenex_216 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_213) (+ v_prenex_212 (* 4 v_prenex_216)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_212) (<= 1 v_prenex_216) (= |#NULL.offset| 0) (<= v_prenex_216 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_158 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_158) (<= 1 v_main_~i~0_BEFORE_CALL_168) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_158) (+ v_main_~a~0.offset_BEFORE_CALL_158 (* 4 v_main_~i~0_BEFORE_CALL_168))) 2) (<= v_main_~i~0_BEFORE_CALL_168 100000) (= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_168 ~SIZE~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_215) v_prenex_214)) (<= 0 |#NULL.base|) (<= 0 v_prenex_214) (<= v_prenex_214 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_217) (<= v_prenex_217 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_218) v_prenex_217) 2) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:52:13,815 INFO L193 IcfgInterpreter]: Reachable states at location L14 satisfy 38#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (<= ~SIZE~0 2147483647) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= 100000 ~MAX~0)) [2019-10-07 00:52:13,815 INFO L193 IcfgInterpreter]: Reachable states at location L3 satisfy 457#(and (exists ((v_main_~a~0.base_BEFORE_CALL_158 Int) (v_prenex_208 Int) (v_prenex_219 Int) (v_prenex_209 Int) (v_main_~i~0_BEFORE_CALL_168 Int) (v_prenex_217 Int) (v_prenex_207 Int) (v_prenex_218 Int) (v_prenex_215 Int) (v_prenex_216 Int) (v_prenex_213 Int) (v_main_~a~0.offset_BEFORE_CALL_158 Int) (v_prenex_214 Int) (v_prenex_211 Int) (v_prenex_212 Int) (v_prenex_210 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_207) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_prenex_209 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_207 0) (<= 2 (select (select |#memory_int| v_prenex_208) (+ v_prenex_207 (* 4 v_prenex_209)))) (<= v_prenex_209 100000) (<= 1 v_prenex_209) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_211) (+ v_prenex_210 (* 4 v_prenex_219))) 2) (<= v_prenex_219 0) (<= 0 v_prenex_210) (<= v_prenex_210 0) (= |#NULL.offset| 0) (< v_prenex_219 ~SIZE~0) (<= 0 v_prenex_219) (<= 1 v_prenex_219) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_216) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_212 0) (< v_prenex_216 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_213) (+ v_prenex_212 (* 4 v_prenex_216)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_212) (<= 1 v_prenex_216) (= |#NULL.offset| 0) (<= v_prenex_216 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_158 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_158) (<= 1 v_main_~i~0_BEFORE_CALL_168) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_158) (+ v_main_~a~0.offset_BEFORE_CALL_158 (* 4 v_main_~i~0_BEFORE_CALL_168))) 2) (<= v_main_~i~0_BEFORE_CALL_168 100000) (= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_168 ~SIZE~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_215) v_prenex_214)) (<= 0 |#NULL.base|) (<= 0 v_prenex_214) (<= v_prenex_214 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_217) (<= v_prenex_217 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_218) v_prenex_217) 2) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:52:13,816 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION satisfy 477#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (exists ((v_main_~a~0.base_BEFORE_CALL_158 Int) (v_prenex_208 Int) (v_prenex_219 Int) (v_prenex_209 Int) (v_main_~i~0_BEFORE_CALL_168 Int) (v_prenex_217 Int) (v_prenex_207 Int) (v_prenex_218 Int) (v_prenex_215 Int) (v_prenex_216 Int) (v_prenex_213 Int) (v_main_~a~0.offset_BEFORE_CALL_158 Int) (v_prenex_214 Int) (v_prenex_211 Int) (v_prenex_212 Int) (v_prenex_210 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_207) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_prenex_209 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_207 0) (<= 2 (select (select |#memory_int| v_prenex_208) (+ v_prenex_207 (* 4 v_prenex_209)))) (<= v_prenex_209 100000) (<= 1 v_prenex_209) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_211) (+ v_prenex_210 (* 4 v_prenex_219))) 2) (<= v_prenex_219 0) (<= 0 v_prenex_210) (<= v_prenex_210 0) (= |#NULL.offset| 0) (< v_prenex_219 ~SIZE~0) (<= 0 v_prenex_219) (<= 1 v_prenex_219) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_216) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_212 0) (< v_prenex_216 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_213) (+ v_prenex_212 (* 4 v_prenex_216)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_212) (<= 1 v_prenex_216) (= |#NULL.offset| 0) (<= v_prenex_216 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_158 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_158) (<= 1 v_main_~i~0_BEFORE_CALL_168) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_158) (+ v_main_~a~0.offset_BEFORE_CALL_158 (* 4 v_main_~i~0_BEFORE_CALL_168))) 2) (<= v_main_~i~0_BEFORE_CALL_168 100000) (= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_168 ~SIZE~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_215) v_prenex_214)) (<= 0 |#NULL.base|) (<= 0 v_prenex_214) (<= v_prenex_214 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_217) (<= v_prenex_217 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_218) v_prenex_217) 2) (<= 100000 ~MAX~0)))) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:52:13,816 INFO L193 IcfgInterpreter]: Reachable states at location L-1 satisfy 23#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |#valid| 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:52:13,816 INFO L193 IcfgInterpreter]: Reachable states at location mainENTRY satisfy 33#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (<= 0 ~SIZE~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= ~SIZE~0 0) (= |old(~SIZE~0)| ~SIZE~0) (<= 100000 ~MAX~0)) [2019-10-07 00:52:13,817 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initEXIT satisfy 486#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| (store |old(#valid)| 0 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:52:13,817 INFO L193 IcfgInterpreter]: Reachable states at location L31-3 satisfy 375#(and (and (= |old(~SIZE~0)| 0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3)) (or (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= 0 main_~i~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 main_~i~0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)))) [2019-10-07 00:52:13,817 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.startENTRY satisfy 6#true [2019-10-07 00:52:13,817 INFO L193 IcfgInterpreter]: Reachable states at location L22-3 satisfy 66#(and (or (and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= 0 |#NULL.base|) (< ~SIZE~0 ~MAX~0) (< 1 ~SIZE~0) (= 0 |main_#t~malloc2.offset|) (= ~MAX~0 100000) (= |#valid| (store |old(#valid)| |main_#t~malloc2.base| 1)) (= main_~a~0.offset |main_#t~malloc2.offset|) (<= ~SIZE~0 2147483647) (= main_~val1~0 0) (< |#StackHeapBarrier| |main_#t~malloc2.base|) (= (store |old(#length)| |main_#t~malloc2.base| (* 4 ~SIZE~0)) |#length|) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (not (= |main_#t~malloc2.base| 0)) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~i~0 0) (= 0 (select |old(#valid)| 0)) (= (select |old(#valid)| |main_#t~malloc2.base|) 0) (= |main_#t~malloc2.base| main_~a~0.base) (= main_~low~0 2) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) (and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3))) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) [2019-10-07 00:52:13,817 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertENTRY satisfy 452#(exists ((v_main_~a~0.base_BEFORE_CALL_158 Int) (v_prenex_208 Int) (v_prenex_219 Int) (v_prenex_209 Int) (v_main_~i~0_BEFORE_CALL_168 Int) (v_prenex_217 Int) (v_prenex_207 Int) (v_prenex_218 Int) (v_prenex_215 Int) (v_prenex_216 Int) (v_prenex_213 Int) (v_main_~a~0.offset_BEFORE_CALL_158 Int) (v_prenex_214 Int) (v_prenex_211 Int) (v_prenex_212 Int) (v_prenex_210 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_207) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (< v_prenex_209 ~SIZE~0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_207 0) (<= 2 (select (select |#memory_int| v_prenex_208) (+ v_prenex_207 (* 4 v_prenex_209)))) (<= v_prenex_209 100000) (<= 1 v_prenex_209) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_211) (+ v_prenex_210 (* 4 v_prenex_219))) 2) (<= v_prenex_219 0) (<= 0 v_prenex_210) (<= v_prenex_210 0) (= |#NULL.offset| 0) (< v_prenex_219 ~SIZE~0) (<= 0 v_prenex_219) (<= 1 v_prenex_219) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_216) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_212 0) (< v_prenex_216 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_213) (+ v_prenex_212 (* 4 v_prenex_216)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_212) (<= 1 v_prenex_216) (= |#NULL.offset| 0) (<= v_prenex_216 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_158 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_158) (<= 1 v_main_~i~0_BEFORE_CALL_168) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_158) (+ v_main_~a~0.offset_BEFORE_CALL_158 (* 4 v_main_~i~0_BEFORE_CALL_168))) 2) (<= v_main_~i~0_BEFORE_CALL_168 100000) (= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_168 ~SIZE~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_215) v_prenex_214)) (<= 0 |#NULL.base|) (<= 0 v_prenex_214) (<= v_prenex_214 0) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_217) (<= v_prenex_217 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (< (select (select |#memory_int| v_prenex_218) v_prenex_217) 2) (<= 100000 ~MAX~0)))) [2019-10-07 00:52:13,818 INFO L193 IcfgInterpreter]: Reachable states at location L33-1 satisfy 448#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 2 |main_#t~mem5|) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:52:14,378 WARN L191 SmtUtils]: Spent 113.00 ms on a formula simplification. DAG size of input: 85 DAG size of output: 31 [2019-10-07 00:52:15,043 INFO L211 tionRefinementEngine]: Constructing automaton from 0 perfect and 4 imperfect interpolant sequences. [2019-10-07 00:52:15,043 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 11, 10, 12] total 29 [2019-10-07 00:52:15,045 INFO L442 AbstractCegarLoop]: Interpolant automaton has 29 states [2019-10-07 00:52:15,045 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 29 interpolants. [2019-10-07 00:52:15,046 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=113, Invalid=699, Unknown=0, NotChecked=0, Total=812 [2019-10-07 00:52:15,046 INFO L87 Difference]: Start difference. First operand 61 states and 66 transitions. Second operand 29 states. [2019-10-07 00:52:17,642 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:52:17,642 INFO L93 Difference]: Finished difference Result 72 states and 76 transitions. [2019-10-07 00:52:17,642 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 32 states. [2019-10-07 00:52:17,643 INFO L78 Accepts]: Start accepts. Automaton has 29 states. Word has length 36 [2019-10-07 00:52:17,643 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:52:17,643 INFO L225 Difference]: With dead ends: 72 [2019-10-07 00:52:17,644 INFO L226 Difference]: Without dead ends: 45 [2019-10-07 00:52:17,645 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 141 GetRequests, 80 SyntacticMatches, 10 SemanticMatches, 51 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 931 ImplicationChecksByTransitivity, 3.3s TimeCoverageRelationStatistics Valid=390, Invalid=2366, Unknown=0, NotChecked=0, Total=2756 [2019-10-07 00:52:17,645 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 45 states. [2019-10-07 00:52:17,661 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 45 to 40. [2019-10-07 00:52:17,662 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 40 states. [2019-10-07 00:52:17,662 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 40 states to 40 states and 41 transitions. [2019-10-07 00:52:17,663 INFO L78 Accepts]: Start accepts. Automaton has 40 states and 41 transitions. Word has length 36 [2019-10-07 00:52:17,663 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:52:17,663 INFO L462 AbstractCegarLoop]: Abstraction has 40 states and 41 transitions. [2019-10-07 00:52:17,663 INFO L463 AbstractCegarLoop]: Interpolant automaton has 29 states. [2019-10-07 00:52:17,663 INFO L276 IsEmpty]: Start isEmpty. Operand 40 states and 41 transitions. [2019-10-07 00:52:17,668 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 38 [2019-10-07 00:52:17,668 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:52:17,668 INFO L385 BasicCegarLoop]: trace histogram [4, 4, 4, 4, 3, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:52:17,881 WARN L499 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 9 z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:52:17,881 INFO L410 AbstractCegarLoop]: === Iteration 10 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:52:17,882 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:52:17,882 INFO L82 PathProgramCache]: Analyzing trace with hash -287355521, now seen corresponding path program 7 times [2019-10-07 00:52:17,882 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:52:17,882 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:52:17,882 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:52:17,882 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:52:17,882 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:52:17,931 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:52:18,115 INFO L134 CoverageAnalysis]: Checked inductivity of 43 backedges. 9 proven. 22 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2019-10-07 00:52:18,115 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:52:18,116 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:52:18,116 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 10 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 10 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:52:18,329 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:52:18,331 INFO L256 TraceCheckSpWp]: Trace formula consists of 145 conjuncts, 31 conjunts are in the unsatisfiable core [2019-10-07 00:52:18,333 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:52:18,823 INFO L134 CoverageAnalysis]: Checked inductivity of 43 backedges. 0 proven. 37 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2019-10-07 00:52:18,824 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:52:21,145 INFO L134 CoverageAnalysis]: Checked inductivity of 43 backedges. 6 proven. 25 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2019-10-07 00:52:21,145 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2019-10-07 00:52:21,146 INFO L162 IcfgInterpreter]: Started Sifa with 16 locations of interest [2019-10-07 00:52:21,146 INFO L169 IcfgInterpreter]: Building call graph [2019-10-07 00:52:21,147 INFO L174 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2019-10-07 00:52:21,147 INFO L179 IcfgInterpreter]: Starting interpretation [2019-10-07 00:52:21,147 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2019-10-07 00:52:21,167 INFO L199 IcfgInterpreter]: Interpreting procedure main with input of size 32 for LOIs [2019-10-07 00:52:22,684 INFO L199 IcfgInterpreter]: Interpreting procedure __VERIFIER_assert with input of size 70 for LOIs [2019-10-07 00:52:22,691 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.init with input of size 16 for LOIs [2019-10-07 00:52:22,695 INFO L183 IcfgInterpreter]: Interpretation finished [2019-10-07 00:52:22,695 INFO L191 IcfgInterpreter]: Final predicates for locations of interest are: [2019-10-07 00:52:22,695 INFO L193 IcfgInterpreter]: Reachable states at location L3-1 satisfy 464#(and (exists ((v_main_~a~0.base_BEFORE_CALL_191 Int) (v_prenex_255 Int) (v_prenex_256 Int) (v_prenex_253 Int) (v_prenex_254 Int) (v_main_~a~0.offset_BEFORE_CALL_191 Int) (v_prenex_252 Int) (v_main_~i~0_BEFORE_CALL_201 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_255) (< v_prenex_256 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_255 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_254) (+ v_prenex_255 (* 4 v_prenex_256)))) (= |#NULL.offset| 0) (<= 1 v_prenex_256) (<= v_prenex_256 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_191) v_main_~a~0.offset_BEFORE_CALL_191)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_191) (<= v_main_~a~0.offset_BEFORE_CALL_191 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_201 0) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_201 ~SIZE~0) (= ~MAX~0 100000) (<= v_prenex_253 0) (not (<= 2 (select (select |#memory_int| v_prenex_252) (+ v_prenex_253 (* 4 v_main_~i~0_BEFORE_CALL_201))))) (<= 1 v_main_~i~0_BEFORE_CALL_201) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_253) (<= 0 v_main_~i~0_BEFORE_CALL_201) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_191) v_main_~a~0.offset_BEFORE_CALL_191))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_191) (<= v_main_~a~0.offset_BEFORE_CALL_191 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_255) (< v_prenex_256 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_255 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (not (<= 2 (select (select |#memory_int| v_prenex_254) (+ v_prenex_255 (* 4 v_prenex_256))))) (= |#NULL.offset| 0) (<= 1 v_prenex_256) (<= v_prenex_256 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_201 0) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_201 ~SIZE~0) (= ~MAX~0 100000) (<= v_prenex_253 0) (<= 1 v_main_~i~0_BEFORE_CALL_201) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_253) (<= 0 v_main_~i~0_BEFORE_CALL_201) (<= 2 (select (select |#memory_int| v_prenex_252) (+ v_prenex_253 (* 4 v_main_~i~0_BEFORE_CALL_201)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:52:22,695 INFO L193 IcfgInterpreter]: Reachable states at location L33 satisfy 289#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~i~0 100000) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:52:22,696 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initENTRY satisfy 473#(and (= |old(#NULL.base)| |#NULL.base|) (= |#valid| |old(#valid)|) (= ~MAX~0 |old(~MAX~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= |old(~SIZE~0)| ~SIZE~0)) [2019-10-07 00:52:22,696 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertEXIT satisfy 459#(and (exists ((v_main_~a~0.base_BEFORE_CALL_191 Int) (v_prenex_255 Int) (v_prenex_256 Int) (v_prenex_253 Int) (v_prenex_254 Int) (v_main_~a~0.offset_BEFORE_CALL_191 Int) (v_prenex_252 Int) (v_main_~i~0_BEFORE_CALL_201 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_255) (< v_prenex_256 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_255 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_254) (+ v_prenex_255 (* 4 v_prenex_256)))) (= |#NULL.offset| 0) (<= 1 v_prenex_256) (<= v_prenex_256 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_191) v_main_~a~0.offset_BEFORE_CALL_191)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_191) (<= v_main_~a~0.offset_BEFORE_CALL_191 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_201 0) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_201 ~SIZE~0) (= ~MAX~0 100000) (<= v_prenex_253 0) (not (<= 2 (select (select |#memory_int| v_prenex_252) (+ v_prenex_253 (* 4 v_main_~i~0_BEFORE_CALL_201))))) (<= 1 v_main_~i~0_BEFORE_CALL_201) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_253) (<= 0 v_main_~i~0_BEFORE_CALL_201) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_191) v_main_~a~0.offset_BEFORE_CALL_191))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_191) (<= v_main_~a~0.offset_BEFORE_CALL_191 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_255) (< v_prenex_256 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_255 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (not (<= 2 (select (select |#memory_int| v_prenex_254) (+ v_prenex_255 (* 4 v_prenex_256))))) (= |#NULL.offset| 0) (<= 1 v_prenex_256) (<= v_prenex_256 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_201 0) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_201 ~SIZE~0) (= ~MAX~0 100000) (<= v_prenex_253 0) (<= 1 v_main_~i~0_BEFORE_CALL_201) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_253) (<= 0 v_main_~i~0_BEFORE_CALL_201) (<= 2 (select (select |#memory_int| v_prenex_252) (+ v_prenex_253 (* 4 v_main_~i~0_BEFORE_CALL_201)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (not (= 0 __VERIFIER_assert_~cond)) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:52:22,696 INFO L193 IcfgInterpreter]: Reachable states at location L3-3 satisfy 454#(and (exists ((v_main_~a~0.base_BEFORE_CALL_191 Int) (v_prenex_255 Int) (v_prenex_256 Int) (v_prenex_253 Int) (v_prenex_254 Int) (v_main_~a~0.offset_BEFORE_CALL_191 Int) (v_prenex_252 Int) (v_main_~i~0_BEFORE_CALL_201 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_255) (< v_prenex_256 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_255 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_254) (+ v_prenex_255 (* 4 v_prenex_256)))) (= |#NULL.offset| 0) (<= 1 v_prenex_256) (<= v_prenex_256 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_191) v_main_~a~0.offset_BEFORE_CALL_191)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_191) (<= v_main_~a~0.offset_BEFORE_CALL_191 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_201 0) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_201 ~SIZE~0) (= ~MAX~0 100000) (<= v_prenex_253 0) (not (<= 2 (select (select |#memory_int| v_prenex_252) (+ v_prenex_253 (* 4 v_main_~i~0_BEFORE_CALL_201))))) (<= 1 v_main_~i~0_BEFORE_CALL_201) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_253) (<= 0 v_main_~i~0_BEFORE_CALL_201) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_191) v_main_~a~0.offset_BEFORE_CALL_191))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_191) (<= v_main_~a~0.offset_BEFORE_CALL_191 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_255) (< v_prenex_256 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_255 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (not (<= 2 (select (select |#memory_int| v_prenex_254) (+ v_prenex_255 (* 4 v_prenex_256))))) (= |#NULL.offset| 0) (<= 1 v_prenex_256) (<= v_prenex_256 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_201 0) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_201 ~SIZE~0) (= ~MAX~0 100000) (<= v_prenex_253 0) (<= 1 v_main_~i~0_BEFORE_CALL_201) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_253) (<= 0 v_main_~i~0_BEFORE_CALL_201) (<= 2 (select (select |#memory_int| v_prenex_252) (+ v_prenex_253 (* 4 v_main_~i~0_BEFORE_CALL_201)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (not (= 0 __VERIFIER_assert_~cond)) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:52:22,697 INFO L193 IcfgInterpreter]: Reachable states at location L14 satisfy 38#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= ~SIZE~0 2147483647) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= 100000 ~MAX~0)) [2019-10-07 00:52:22,697 INFO L193 IcfgInterpreter]: Reachable states at location L3 satisfy 449#(and (exists ((v_main_~a~0.base_BEFORE_CALL_191 Int) (v_prenex_255 Int) (v_prenex_256 Int) (v_prenex_253 Int) (v_prenex_254 Int) (v_main_~a~0.offset_BEFORE_CALL_191 Int) (v_prenex_252 Int) (v_main_~i~0_BEFORE_CALL_201 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_255) (< v_prenex_256 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_255 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_254) (+ v_prenex_255 (* 4 v_prenex_256)))) (= |#NULL.offset| 0) (<= 1 v_prenex_256) (<= v_prenex_256 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_191) v_main_~a~0.offset_BEFORE_CALL_191)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_191) (<= v_main_~a~0.offset_BEFORE_CALL_191 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_201 0) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_201 ~SIZE~0) (= ~MAX~0 100000) (<= v_prenex_253 0) (not (<= 2 (select (select |#memory_int| v_prenex_252) (+ v_prenex_253 (* 4 v_main_~i~0_BEFORE_CALL_201))))) (<= 1 v_main_~i~0_BEFORE_CALL_201) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_253) (<= 0 v_main_~i~0_BEFORE_CALL_201) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_191) v_main_~a~0.offset_BEFORE_CALL_191))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_191) (<= v_main_~a~0.offset_BEFORE_CALL_191 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_255) (< v_prenex_256 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_255 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (not (<= 2 (select (select |#memory_int| v_prenex_254) (+ v_prenex_255 (* 4 v_prenex_256))))) (= |#NULL.offset| 0) (<= 1 v_prenex_256) (<= v_prenex_256 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_201 0) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_201 ~SIZE~0) (= ~MAX~0 100000) (<= v_prenex_253 0) (<= 1 v_main_~i~0_BEFORE_CALL_201) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_253) (<= 0 v_main_~i~0_BEFORE_CALL_201) (<= 2 (select (select |#memory_int| v_prenex_252) (+ v_prenex_253 (* 4 v_main_~i~0_BEFORE_CALL_201)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:52:22,697 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION satisfy 469#(and (exists ((v_main_~a~0.base_BEFORE_CALL_191 Int) (v_prenex_255 Int) (v_prenex_256 Int) (v_prenex_253 Int) (v_prenex_254 Int) (v_main_~a~0.offset_BEFORE_CALL_191 Int) (v_prenex_252 Int) (v_main_~i~0_BEFORE_CALL_201 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_255) (< v_prenex_256 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_255 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_254) (+ v_prenex_255 (* 4 v_prenex_256)))) (= |#NULL.offset| 0) (<= 1 v_prenex_256) (<= v_prenex_256 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_191) v_main_~a~0.offset_BEFORE_CALL_191)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_191) (<= v_main_~a~0.offset_BEFORE_CALL_191 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_201 0) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_201 ~SIZE~0) (= ~MAX~0 100000) (<= v_prenex_253 0) (not (<= 2 (select (select |#memory_int| v_prenex_252) (+ v_prenex_253 (* 4 v_main_~i~0_BEFORE_CALL_201))))) (<= 1 v_main_~i~0_BEFORE_CALL_201) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_253) (<= 0 v_main_~i~0_BEFORE_CALL_201) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_191) v_main_~a~0.offset_BEFORE_CALL_191))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_191) (<= v_main_~a~0.offset_BEFORE_CALL_191 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_255) (< v_prenex_256 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_255 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (not (<= 2 (select (select |#memory_int| v_prenex_254) (+ v_prenex_255 (* 4 v_prenex_256))))) (= |#NULL.offset| 0) (<= 1 v_prenex_256) (<= v_prenex_256 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_201 0) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_201 ~SIZE~0) (= ~MAX~0 100000) (<= v_prenex_253 0) (<= 1 v_main_~i~0_BEFORE_CALL_201) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_253) (<= 0 v_main_~i~0_BEFORE_CALL_201) (<= 2 (select (select |#memory_int| v_prenex_252) (+ v_prenex_253 (* 4 v_main_~i~0_BEFORE_CALL_201)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:52:22,697 INFO L193 IcfgInterpreter]: Reachable states at location L-1 satisfy 23#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |#valid| 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:52:22,698 INFO L193 IcfgInterpreter]: Reachable states at location mainENTRY satisfy 33#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (<= 0 ~SIZE~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= ~SIZE~0 0) (= |old(~SIZE~0)| ~SIZE~0) (<= 100000 ~MAX~0)) [2019-10-07 00:52:22,698 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initEXIT satisfy 478#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| (store |old(#valid)| 0 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:52:22,698 INFO L193 IcfgInterpreter]: Reachable states at location L31-3 satisfy 367#(and (and (= |old(~SIZE~0)| 0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3)) (or (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= 0 main_~i~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 main_~i~0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)))) [2019-10-07 00:52:22,698 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.startENTRY satisfy 6#true [2019-10-07 00:52:22,698 INFO L193 IcfgInterpreter]: Reachable states at location L22-3 satisfy 66#(and (or (and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= 0 |#NULL.base|) (< ~SIZE~0 ~MAX~0) (< 1 ~SIZE~0) (= 0 |main_#t~malloc2.offset|) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= main_~val1~0 0) (= |#valid| (store |old(#valid)| |main_#t~malloc2.base| 1)) (<= 0 |#NULL.offset|) (= main_~a~0.offset |main_#t~malloc2.offset|) (<= 2 main_~low~0) (<= ~SIZE~0 2147483647) (= main_~val1~0 0) (< |#StackHeapBarrier| |main_#t~malloc2.base|) (= (store |old(#length)| |main_#t~malloc2.base| (* 4 ~SIZE~0)) |#length|) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (not (= |main_#t~malloc2.base| 0)) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= main_~i~0 0) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (= (select |old(#valid)| |main_#t~malloc2.base|) 0) (<= main_~low~0 2) (= |main_#t~malloc2.base| main_~a~0.base) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) (and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3))) (<= 100000 ~MAX~0)) [2019-10-07 00:52:22,699 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertENTRY satisfy 444#(exists ((v_main_~a~0.base_BEFORE_CALL_191 Int) (v_prenex_255 Int) (v_prenex_256 Int) (v_prenex_253 Int) (v_prenex_254 Int) (v_main_~a~0.offset_BEFORE_CALL_191 Int) (v_prenex_252 Int) (v_main_~i~0_BEFORE_CALL_201 Int)) (or (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_255) (< v_prenex_256 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_255 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_254) (+ v_prenex_255 (* 4 v_prenex_256)))) (= |#NULL.offset| 0) (<= 1 v_prenex_256) (<= v_prenex_256 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_191) v_main_~a~0.offset_BEFORE_CALL_191)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_191) (<= v_main_~a~0.offset_BEFORE_CALL_191 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_201 0) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_201 ~SIZE~0) (= ~MAX~0 100000) (<= v_prenex_253 0) (not (<= 2 (select (select |#memory_int| v_prenex_252) (+ v_prenex_253 (* 4 v_main_~i~0_BEFORE_CALL_201))))) (<= 1 v_main_~i~0_BEFORE_CALL_201) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_253) (<= 0 v_main_~i~0_BEFORE_CALL_201) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_191) v_main_~a~0.offset_BEFORE_CALL_191))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_191) (<= v_main_~a~0.offset_BEFORE_CALL_191 0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_255) (< v_prenex_256 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= v_prenex_255 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (not (<= 2 (select (select |#memory_int| v_prenex_254) (+ v_prenex_255 (* 4 v_prenex_256))))) (= |#NULL.offset| 0) (<= 1 v_prenex_256) (<= v_prenex_256 100000) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (= |#NULL.base| 0) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_201 0) (<= 0 |#NULL.base|) (< v_main_~i~0_BEFORE_CALL_201 ~SIZE~0) (= ~MAX~0 100000) (<= v_prenex_253 0) (<= 1 v_main_~i~0_BEFORE_CALL_201) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 v_prenex_253) (<= 0 v_main_~i~0_BEFORE_CALL_201) (<= 2 (select (select |#memory_int| v_prenex_252) (+ v_prenex_253 (* 4 v_main_~i~0_BEFORE_CALL_201)))) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) [2019-10-07 00:52:22,699 INFO L193 IcfgInterpreter]: Reachable states at location L33-1 satisfy 440#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 2 |main_#t~mem5|) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:52:25,487 WARN L191 SmtUtils]: Spent 164.00 ms on a formula simplification. DAG size of input: 85 DAG size of output: 31 [2019-10-07 00:52:26,463 INFO L211 tionRefinementEngine]: Constructing automaton from 0 perfect and 4 imperfect interpolant sequences. [2019-10-07 00:52:26,464 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 17, 14, 12] total 51 [2019-10-07 00:52:26,465 INFO L442 AbstractCegarLoop]: Interpolant automaton has 51 states [2019-10-07 00:52:26,465 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 51 interpolants. [2019-10-07 00:52:26,466 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=188, Invalid=2360, Unknown=2, NotChecked=0, Total=2550 [2019-10-07 00:52:26,466 INFO L87 Difference]: Start difference. First operand 40 states and 41 transitions. Second operand 51 states. [2019-10-07 00:52:41,144 WARN L191 SmtUtils]: Spent 101.00 ms on a formula simplification. DAG size of input: 52 DAG size of output: 47 [2019-10-07 00:52:41,319 WARN L191 SmtUtils]: Spent 110.00 ms on a formula simplification. DAG size of input: 55 DAG size of output: 49 [2019-10-07 00:52:42,334 WARN L191 SmtUtils]: Spent 125.00 ms on a formula simplification. DAG size of input: 59 DAG size of output: 53 [2019-10-07 00:52:42,531 WARN L191 SmtUtils]: Spent 149.00 ms on a formula simplification. DAG size of input: 64 DAG size of output: 57 [2019-10-07 00:52:42,739 WARN L191 SmtUtils]: Spent 126.00 ms on a formula simplification. DAG size of input: 55 DAG size of output: 54 [2019-10-07 00:52:42,921 WARN L191 SmtUtils]: Spent 144.00 ms on a formula simplification. DAG size of input: 60 DAG size of output: 58 [2019-10-07 00:52:43,231 WARN L191 SmtUtils]: Spent 118.00 ms on a formula simplification. DAG size of input: 54 DAG size of output: 53 [2019-10-07 00:52:43,235 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:52:43,236 INFO L93 Difference]: Finished difference Result 83 states and 88 transitions. [2019-10-07 00:52:43,236 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 41 states. [2019-10-07 00:52:43,236 INFO L78 Accepts]: Start accepts. Automaton has 51 states. Word has length 37 [2019-10-07 00:52:43,237 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:52:43,237 INFO L225 Difference]: With dead ends: 83 [2019-10-07 00:52:43,238 INFO L226 Difference]: Without dead ends: 46 [2019-10-07 00:52:43,240 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 157 GetRequests, 66 SyntacticMatches, 9 SemanticMatches, 82 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2185 ImplicationChecksByTransitivity, 10.7s TimeCoverageRelationStatistics Valid=639, Invalid=6331, Unknown=2, NotChecked=0, Total=6972 [2019-10-07 00:52:43,240 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 46 states. [2019-10-07 00:52:43,254 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 46 to 41. [2019-10-07 00:52:43,254 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 41 states. [2019-10-07 00:52:43,254 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 41 states to 41 states and 42 transitions. [2019-10-07 00:52:43,254 INFO L78 Accepts]: Start accepts. Automaton has 41 states and 42 transitions. Word has length 37 [2019-10-07 00:52:43,254 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:52:43,255 INFO L462 AbstractCegarLoop]: Abstraction has 41 states and 42 transitions. [2019-10-07 00:52:43,255 INFO L463 AbstractCegarLoop]: Interpolant automaton has 51 states. [2019-10-07 00:52:43,255 INFO L276 IsEmpty]: Start isEmpty. Operand 41 states and 42 transitions. [2019-10-07 00:52:43,255 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 39 [2019-10-07 00:52:43,255 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:52:43,256 INFO L385 BasicCegarLoop]: trace histogram [5, 4, 4, 4, 3, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:52:43,458 WARN L499 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 10 z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:52:43,467 INFO L410 AbstractCegarLoop]: === Iteration 11 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:52:43,467 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:52:43,467 INFO L82 PathProgramCache]: Analyzing trace with hash -611462805, now seen corresponding path program 8 times [2019-10-07 00:52:43,467 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:52:43,467 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:52:43,467 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:52:43,467 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:52:43,468 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:52:43,486 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:52:43,673 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 6 proven. 30 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2019-10-07 00:52:43,674 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:52:43,674 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:52:43,674 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 11 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 11 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:52:43,934 INFO L249 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 4 check-sat command(s) [2019-10-07 00:52:43,934 INFO L250 tOrderPrioritization]: Conjunction of SSA is unsat [2019-10-07 00:52:43,935 INFO L256 TraceCheckSpWp]: Trace formula consists of 150 conjuncts, 31 conjunts are in the unsatisfiable core [2019-10-07 00:52:43,939 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:52:45,268 WARN L191 SmtUtils]: Spent 1.07 s on a formula simplification that was a NOOP. DAG size: 42 [2019-10-07 00:52:53,598 WARN L191 SmtUtils]: Spent 2.01 s on a formula simplification that was a NOOP. DAG size: 39 [2019-10-07 00:52:55,652 WARN L191 SmtUtils]: Spent 2.02 s on a formula simplification that was a NOOP. DAG size: 39 [2019-10-07 00:53:05,647 WARN L191 SmtUtils]: Spent 2.01 s on a formula simplification that was a NOOP. DAG size: 38 [2019-10-07 00:53:15,690 WARN L191 SmtUtils]: Spent 2.87 s on a formula simplification. DAG size of input: 33 DAG size of output: 18 [2019-10-07 00:53:17,749 WARN L191 SmtUtils]: Spent 2.01 s on a formula simplification that was a NOOP. DAG size: 38 [2019-10-07 00:53:17,928 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 12 proven. 36 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2019-10-07 00:53:17,928 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:53:18,418 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 6 proven. 30 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2019-10-07 00:53:18,418 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2019-10-07 00:53:18,421 INFO L162 IcfgInterpreter]: Started Sifa with 16 locations of interest [2019-10-07 00:53:18,421 INFO L169 IcfgInterpreter]: Building call graph [2019-10-07 00:53:18,422 INFO L174 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2019-10-07 00:53:18,422 INFO L179 IcfgInterpreter]: Starting interpretation [2019-10-07 00:53:18,422 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2019-10-07 00:53:18,443 INFO L199 IcfgInterpreter]: Interpreting procedure main with input of size 30 for LOIs [2019-10-07 00:53:19,682 INFO L199 IcfgInterpreter]: Interpreting procedure __VERIFIER_assert with input of size 57 for LOIs [2019-10-07 00:53:19,692 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.init with input of size 16 for LOIs [2019-10-07 00:53:19,696 INFO L183 IcfgInterpreter]: Interpretation finished [2019-10-07 00:53:19,696 INFO L191 IcfgInterpreter]: Final predicates for locations of interest are: [2019-10-07 00:53:19,696 INFO L193 IcfgInterpreter]: Reachable states at location L3-1 satisfy 476#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (exists ((v_main_~a~0.offset_BEFORE_CALL_224 Int) (v_main_~a~0.base_BEFORE_CALL_224 Int) (v_main_~i~0_BEFORE_CALL_234 Int) (v_prenex_305 Int) (v_prenex_306 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_305) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_306) v_prenex_305)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_305 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234))))) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_234 0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_234) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_234 0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_234) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_prenex_305) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (not (<= 2 (select (select |#memory_int| v_prenex_306) v_prenex_305))) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_305 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234))))) (<= v_main_~i~0_BEFORE_CALL_234 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= v_main_~i~0_BEFORE_CALL_234 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234)))) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:53:19,696 INFO L193 IcfgInterpreter]: Reachable states at location L33 satisfy 303#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~i~0 100000) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:53:19,697 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initENTRY satisfy 485#(and (= |old(#NULL.base)| |#NULL.base|) (= |#valid| |old(#valid)|) (= ~MAX~0 |old(~MAX~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= |old(~SIZE~0)| ~SIZE~0)) [2019-10-07 00:53:19,697 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertEXIT satisfy 471#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_main_~a~0.offset_BEFORE_CALL_224 Int) (v_main_~a~0.base_BEFORE_CALL_224 Int) (v_main_~i~0_BEFORE_CALL_234 Int) (v_prenex_305 Int) (v_prenex_306 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_305) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_306) v_prenex_305)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_305 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234))))) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_234 0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_234) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_234 0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_234) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_prenex_305) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (not (<= 2 (select (select |#memory_int| v_prenex_306) v_prenex_305))) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_305 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234))))) (<= v_main_~i~0_BEFORE_CALL_234 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= v_main_~i~0_BEFORE_CALL_234 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234)))) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:53:19,697 INFO L193 IcfgInterpreter]: Reachable states at location L3-3 satisfy 466#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_main_~a~0.offset_BEFORE_CALL_224 Int) (v_main_~a~0.base_BEFORE_CALL_224 Int) (v_main_~i~0_BEFORE_CALL_234 Int) (v_prenex_305 Int) (v_prenex_306 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_305) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_306) v_prenex_305)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_305 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234))))) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_234 0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_234) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_234 0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_234) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_prenex_305) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (not (<= 2 (select (select |#memory_int| v_prenex_306) v_prenex_305))) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_305 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234))))) (<= v_main_~i~0_BEFORE_CALL_234 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= v_main_~i~0_BEFORE_CALL_234 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234)))) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:53:19,697 INFO L193 IcfgInterpreter]: Reachable states at location L14 satisfy 38#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= 0 (+ ~SIZE~0 2147483648)) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (<= ~SIZE~0 2147483647) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= 100000 ~MAX~0)) [2019-10-07 00:53:19,698 INFO L193 IcfgInterpreter]: Reachable states at location L3 satisfy 461#(and (exists ((v_main_~a~0.offset_BEFORE_CALL_224 Int) (v_main_~a~0.base_BEFORE_CALL_224 Int) (v_main_~i~0_BEFORE_CALL_234 Int) (v_prenex_305 Int) (v_prenex_306 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_305) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_306) v_prenex_305)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_305 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234))))) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_234 0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_234) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_234 0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_234) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_prenex_305) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (not (<= 2 (select (select |#memory_int| v_prenex_306) v_prenex_305))) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_305 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234))))) (<= v_main_~i~0_BEFORE_CALL_234 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= v_main_~i~0_BEFORE_CALL_234 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234)))) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:53:19,698 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION satisfy 481#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (exists ((v_main_~a~0.offset_BEFORE_CALL_224 Int) (v_main_~a~0.base_BEFORE_CALL_224 Int) (v_main_~i~0_BEFORE_CALL_234 Int) (v_prenex_305 Int) (v_prenex_306 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_305) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_306) v_prenex_305)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_305 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234))))) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_234 0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_234) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_234 0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_234) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_prenex_305) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (not (<= 2 (select (select |#memory_int| v_prenex_306) v_prenex_305))) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_305 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234))))) (<= v_main_~i~0_BEFORE_CALL_234 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= v_main_~i~0_BEFORE_CALL_234 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234)))) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:53:19,698 INFO L193 IcfgInterpreter]: Reachable states at location L-1 satisfy 23#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |#valid| 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:53:19,698 INFO L193 IcfgInterpreter]: Reachable states at location mainENTRY satisfy 33#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (<= 0 ~SIZE~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= ~SIZE~0 0) (= |old(~SIZE~0)| ~SIZE~0) (<= 100000 ~MAX~0)) [2019-10-07 00:53:19,698 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initEXIT satisfy 490#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| (store |old(#valid)| 0 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:53:19,699 INFO L193 IcfgInterpreter]: Reachable states at location L31-3 satisfy 382#(and (and (= |old(~SIZE~0)| 0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3)) (or (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= 0 main_~i~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 main_~i~0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)))) [2019-10-07 00:53:19,699 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.startENTRY satisfy 6#true [2019-10-07 00:53:19,699 INFO L193 IcfgInterpreter]: Reachable states at location L22-3 satisfy 77#(and (or (and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (= |#NULL.offset| 0) (= main_~val2~0 3)) (and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= 0 |#NULL.base|) (< ~SIZE~0 ~MAX~0) (< 1 ~SIZE~0) (= 0 |main_#t~malloc2.offset|) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= main_~val1~0 0) (= |#valid| (store |old(#valid)| |main_#t~malloc2.base| 1)) (<= 0 |#NULL.offset|) (= main_~a~0.offset |main_#t~malloc2.offset|) (<= 2 main_~low~0) (<= ~SIZE~0 2147483647) (= main_~val1~0 0) (< |#StackHeapBarrier| |main_#t~malloc2.base|) (= (store |old(#length)| |main_#t~malloc2.base| (* 4 ~SIZE~0)) |#length|) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (not (= |main_#t~malloc2.base| 0)) (<= 0 (+ ~SIZE~0 2147483648)) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= main_~i~0 0) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (= (select |old(#valid)| |main_#t~malloc2.base|) 0) (<= main_~low~0 2) (= |main_#t~malloc2.base| main_~a~0.base) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0))) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) [2019-10-07 00:53:19,699 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertENTRY satisfy 456#(exists ((v_main_~a~0.offset_BEFORE_CALL_224 Int) (v_main_~a~0.base_BEFORE_CALL_224 Int) (v_main_~i~0_BEFORE_CALL_234 Int) (v_prenex_305 Int) (v_prenex_306 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= 0 v_prenex_305) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 2 (select (select |#memory_int| v_prenex_306) v_prenex_305)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_305 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234))))) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_234 0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_234) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~i~0_BEFORE_CALL_234 0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_234) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234)))) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= 0 v_prenex_305) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (not (<= 2 (select (select |#memory_int| v_prenex_306) v_prenex_305))) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_305 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234))))) (<= v_main_~i~0_BEFORE_CALL_234 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= v_main_~i~0_BEFORE_CALL_234 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (<= 1 v_main_~i~0_BEFORE_CALL_234) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_224) (+ v_main_~a~0.offset_BEFORE_CALL_224 (* 4 v_main_~i~0_BEFORE_CALL_234)))) (< v_main_~i~0_BEFORE_CALL_234 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_224 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_224) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) [2019-10-07 00:53:19,699 INFO L193 IcfgInterpreter]: Reachable states at location L33-1 satisfy 452#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 2 |main_#t~mem5|) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:53:26,589 WARN L191 SmtUtils]: Spent 157.00 ms on a formula simplification. DAG size of input: 85 DAG size of output: 31 [2019-10-07 00:53:27,688 INFO L211 tionRefinementEngine]: Constructing automaton from 0 perfect and 4 imperfect interpolant sequences. [2019-10-07 00:53:27,688 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [15, 19, 15, 12] total 55 [2019-10-07 00:53:27,689 INFO L442 AbstractCegarLoop]: Interpolant automaton has 55 states [2019-10-07 00:53:27,689 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 55 interpolants. [2019-10-07 00:53:27,690 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=206, Invalid=2752, Unknown=12, NotChecked=0, Total=2970 [2019-10-07 00:53:27,690 INFO L87 Difference]: Start difference. First operand 41 states and 42 transitions. Second operand 55 states. [2019-10-07 00:53:51,664 WARN L191 SmtUtils]: Spent 4.94 s on a formula simplification. DAG size of input: 81 DAG size of output: 75 [2019-10-07 00:54:09,655 WARN L191 SmtUtils]: Spent 4.11 s on a formula simplification. DAG size of input: 67 DAG size of output: 63 [2019-10-07 00:54:14,014 WARN L191 SmtUtils]: Spent 2.29 s on a formula simplification. DAG size of input: 65 DAG size of output: 47 [2019-10-07 00:54:20,484 WARN L191 SmtUtils]: Spent 342.00 ms on a formula simplification. DAG size of input: 67 DAG size of output: 49 [2019-10-07 00:54:25,688 WARN L191 SmtUtils]: Spent 1.13 s on a formula simplification. DAG size of input: 65 DAG size of output: 47 [2019-10-07 00:54:35,120 WARN L191 SmtUtils]: Spent 4.11 s on a formula simplification. DAG size of input: 67 DAG size of output: 63 [2019-10-07 00:54:39,299 WARN L191 SmtUtils]: Spent 4.11 s on a formula simplification. DAG size of input: 65 DAG size of output: 61 [2019-10-07 00:54:43,476 WARN L191 SmtUtils]: Spent 4.11 s on a formula simplification. DAG size of input: 68 DAG size of output: 63 [2019-10-07 00:54:49,915 WARN L191 SmtUtils]: Spent 103.00 ms on a formula simplification. DAG size of input: 52 DAG size of output: 50 [2019-10-07 00:54:51,106 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:54:51,107 INFO L93 Difference]: Finished difference Result 49 states and 51 transitions. [2019-10-07 00:54:51,108 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 33 states. [2019-10-07 00:54:51,109 INFO L78 Accepts]: Start accepts. Automaton has 55 states. Word has length 38 [2019-10-07 00:54:51,109 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:54:51,109 INFO L225 Difference]: With dead ends: 49 [2019-10-07 00:54:51,110 INFO L226 Difference]: Without dead ends: 47 [2019-10-07 00:54:51,113 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 159 GetRequests, 75 SyntacticMatches, 5 SemanticMatches, 79 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1837 ImplicationChecksByTransitivity, 72.7s TimeCoverageRelationStatistics Valid=545, Invalid=5923, Unknown=12, NotChecked=0, Total=6480 [2019-10-07 00:54:51,113 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 47 states. [2019-10-07 00:54:51,130 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 47 to 46. [2019-10-07 00:54:51,130 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 46 states. [2019-10-07 00:54:51,131 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 46 states to 46 states and 48 transitions. [2019-10-07 00:54:51,131 INFO L78 Accepts]: Start accepts. Automaton has 46 states and 48 transitions. Word has length 38 [2019-10-07 00:54:51,132 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:54:51,133 INFO L462 AbstractCegarLoop]: Abstraction has 46 states and 48 transitions. [2019-10-07 00:54:51,133 INFO L463 AbstractCegarLoop]: Interpolant automaton has 55 states. [2019-10-07 00:54:51,133 INFO L276 IsEmpty]: Start isEmpty. Operand 46 states and 48 transitions. [2019-10-07 00:54:51,134 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 46 [2019-10-07 00:54:51,134 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:54:51,134 INFO L385 BasicCegarLoop]: trace histogram [5, 5, 5, 5, 4, 4, 4, 4, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:54:51,338 WARN L499 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 11 z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:54:51,339 INFO L410 AbstractCegarLoop]: === Iteration 12 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:54:51,339 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:54:51,339 INFO L82 PathProgramCache]: Analyzing trace with hash -1025810261, now seen corresponding path program 9 times [2019-10-07 00:54:51,340 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:54:51,340 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:54:51,340 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:54:51,340 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:54:51,340 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:54:51,362 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:54:51,606 INFO L134 CoverageAnalysis]: Checked inductivity of 73 backedges. 17 proven. 32 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2019-10-07 00:54:51,606 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:54:51,607 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:54:51,607 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 12 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 12 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:54:51,891 INFO L249 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2019-10-07 00:54:51,891 INFO L250 tOrderPrioritization]: Conjunction of SSA is unsat [2019-10-07 00:54:51,892 INFO L256 TraceCheckSpWp]: Trace formula consists of 151 conjuncts, 35 conjunts are in the unsatisfiable core [2019-10-07 00:54:51,897 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:54:59,435 INFO L134 CoverageAnalysis]: Checked inductivity of 73 backedges. 0 proven. 58 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2019-10-07 00:54:59,435 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:55:00,171 INFO L134 CoverageAnalysis]: Checked inductivity of 73 backedges. 8 proven. 41 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2019-10-07 00:55:00,171 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2019-10-07 00:55:00,172 INFO L162 IcfgInterpreter]: Started Sifa with 16 locations of interest [2019-10-07 00:55:00,172 INFO L169 IcfgInterpreter]: Building call graph [2019-10-07 00:55:00,173 INFO L174 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2019-10-07 00:55:00,173 INFO L179 IcfgInterpreter]: Starting interpretation [2019-10-07 00:55:00,173 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2019-10-07 00:55:00,195 INFO L199 IcfgInterpreter]: Interpreting procedure main with input of size 30 for LOIs [2019-10-07 00:55:01,343 INFO L199 IcfgInterpreter]: Interpreting procedure __VERIFIER_assert with input of size 77 for LOIs [2019-10-07 00:55:01,359 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.init with input of size 16 for LOIs [2019-10-07 00:55:01,362 INFO L183 IcfgInterpreter]: Interpretation finished [2019-10-07 00:55:01,362 INFO L191 IcfgInterpreter]: Final predicates for locations of interest are: [2019-10-07 00:55:01,362 INFO L193 IcfgInterpreter]: Reachable states at location L3-1 satisfy 472#(and (exists ((v_prenex_332 Int) (v_prenex_333 Int) (v_main_~a~0.base_BEFORE_CALL_259 Int) (v_main_~a~0.offset_BEFORE_CALL_259 Int) (v_prenex_330 Int) (v_prenex_331 Int) (v_prenex_329 Int) (v_prenex_327 Int) (v_prenex_328 Int) (v_main_~i~0_BEFORE_CALL_269 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_prenex_333) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_332 0) (<= 2 (select (select |#memory_int| v_prenex_331) (+ v_prenex_332 (* 4 v_prenex_333)))) (<= 0 v_prenex_332) (<= v_prenex_333 100000) (< v_prenex_333 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< (select (select |#memory_int| v_prenex_327) (+ v_prenex_328 (* 4 v_main_~i~0_BEFORE_CALL_269))) 2) (< v_main_~i~0_BEFORE_CALL_269 ~SIZE~0) (<= 0 |#NULL.base|) (<= 0 v_prenex_328) (= ~MAX~0 100000) (<= v_main_~i~0_BEFORE_CALL_269 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_328 0) (<= 1 v_main_~i~0_BEFORE_CALL_269) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< (select (select |#memory_int| v_prenex_327) (+ v_prenex_328 (* 4 v_main_~i~0_BEFORE_CALL_269))) 2) (< v_main_~i~0_BEFORE_CALL_269 ~SIZE~0) (<= 0 |#NULL.base|) (<= 0 v_prenex_328) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_269) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~i~0_BEFORE_CALL_269 0) (<= v_prenex_328 0) (<= 1 v_main_~i~0_BEFORE_CALL_269) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_329 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_329) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_330) v_prenex_329)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_259) v_main_~a~0.offset_BEFORE_CALL_259) 2) (<= v_main_~a~0.offset_BEFORE_CALL_259 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_259) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_prenex_333) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_333) (<= v_prenex_333 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_332 0) (<= 2 (select (select |#memory_int| v_prenex_331) (+ v_prenex_332 (* 4 v_prenex_333)))) (<= 0 v_prenex_332) (< v_prenex_333 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:55:01,363 INFO L193 IcfgInterpreter]: Reachable states at location L33 satisfy 303#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~i~0 100000) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:55:01,363 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initENTRY satisfy 481#(and (= |old(#NULL.base)| |#NULL.base|) (= |#valid| |old(#valid)|) (= ~MAX~0 |old(~MAX~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= |old(~SIZE~0)| ~SIZE~0)) [2019-10-07 00:55:01,363 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertEXIT satisfy 467#(and (exists ((v_prenex_332 Int) (v_prenex_333 Int) (v_main_~a~0.base_BEFORE_CALL_259 Int) (v_main_~a~0.offset_BEFORE_CALL_259 Int) (v_prenex_330 Int) (v_prenex_331 Int) (v_prenex_329 Int) (v_prenex_327 Int) (v_prenex_328 Int) (v_main_~i~0_BEFORE_CALL_269 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_prenex_333) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_332 0) (<= 2 (select (select |#memory_int| v_prenex_331) (+ v_prenex_332 (* 4 v_prenex_333)))) (<= 0 v_prenex_332) (<= v_prenex_333 100000) (< v_prenex_333 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< (select (select |#memory_int| v_prenex_327) (+ v_prenex_328 (* 4 v_main_~i~0_BEFORE_CALL_269))) 2) (< v_main_~i~0_BEFORE_CALL_269 ~SIZE~0) (<= 0 |#NULL.base|) (<= 0 v_prenex_328) (= ~MAX~0 100000) (<= v_main_~i~0_BEFORE_CALL_269 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_328 0) (<= 1 v_main_~i~0_BEFORE_CALL_269) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< (select (select |#memory_int| v_prenex_327) (+ v_prenex_328 (* 4 v_main_~i~0_BEFORE_CALL_269))) 2) (< v_main_~i~0_BEFORE_CALL_269 ~SIZE~0) (<= 0 |#NULL.base|) (<= 0 v_prenex_328) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_269) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~i~0_BEFORE_CALL_269 0) (<= v_prenex_328 0) (<= 1 v_main_~i~0_BEFORE_CALL_269) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_329 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_329) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_330) v_prenex_329)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_259) v_main_~a~0.offset_BEFORE_CALL_259) 2) (<= v_main_~a~0.offset_BEFORE_CALL_259 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_259) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_prenex_333) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_333) (<= v_prenex_333 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_332 0) (<= 2 (select (select |#memory_int| v_prenex_331) (+ v_prenex_332 (* 4 v_prenex_333)))) (<= 0 v_prenex_332) (< v_prenex_333 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (not (= 0 __VERIFIER_assert_~cond)) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:55:01,363 INFO L193 IcfgInterpreter]: Reachable states at location L3-3 satisfy 462#(and (exists ((v_prenex_332 Int) (v_prenex_333 Int) (v_main_~a~0.base_BEFORE_CALL_259 Int) (v_main_~a~0.offset_BEFORE_CALL_259 Int) (v_prenex_330 Int) (v_prenex_331 Int) (v_prenex_329 Int) (v_prenex_327 Int) (v_prenex_328 Int) (v_main_~i~0_BEFORE_CALL_269 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_prenex_333) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_332 0) (<= 2 (select (select |#memory_int| v_prenex_331) (+ v_prenex_332 (* 4 v_prenex_333)))) (<= 0 v_prenex_332) (<= v_prenex_333 100000) (< v_prenex_333 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< (select (select |#memory_int| v_prenex_327) (+ v_prenex_328 (* 4 v_main_~i~0_BEFORE_CALL_269))) 2) (< v_main_~i~0_BEFORE_CALL_269 ~SIZE~0) (<= 0 |#NULL.base|) (<= 0 v_prenex_328) (= ~MAX~0 100000) (<= v_main_~i~0_BEFORE_CALL_269 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_328 0) (<= 1 v_main_~i~0_BEFORE_CALL_269) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< (select (select |#memory_int| v_prenex_327) (+ v_prenex_328 (* 4 v_main_~i~0_BEFORE_CALL_269))) 2) (< v_main_~i~0_BEFORE_CALL_269 ~SIZE~0) (<= 0 |#NULL.base|) (<= 0 v_prenex_328) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_269) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~i~0_BEFORE_CALL_269 0) (<= v_prenex_328 0) (<= 1 v_main_~i~0_BEFORE_CALL_269) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_329 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_329) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_330) v_prenex_329)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_259) v_main_~a~0.offset_BEFORE_CALL_259) 2) (<= v_main_~a~0.offset_BEFORE_CALL_259 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_259) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_prenex_333) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_333) (<= v_prenex_333 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_332 0) (<= 2 (select (select |#memory_int| v_prenex_331) (+ v_prenex_332 (* 4 v_prenex_333)))) (<= 0 v_prenex_332) (< v_prenex_333 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (not (= 0 __VERIFIER_assert_~cond)) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:55:01,363 INFO L193 IcfgInterpreter]: Reachable states at location L14 satisfy 38#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (= 0 (select |old(#valid)| 0)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 |old(~SIZE~0)|) (<= ~SIZE~0 2147483647) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= 100000 ~MAX~0)) [2019-10-07 00:55:01,364 INFO L193 IcfgInterpreter]: Reachable states at location L3 satisfy 457#(and (exists ((v_prenex_332 Int) (v_prenex_333 Int) (v_main_~a~0.base_BEFORE_CALL_259 Int) (v_main_~a~0.offset_BEFORE_CALL_259 Int) (v_prenex_330 Int) (v_prenex_331 Int) (v_prenex_329 Int) (v_prenex_327 Int) (v_prenex_328 Int) (v_main_~i~0_BEFORE_CALL_269 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_prenex_333) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_332 0) (<= 2 (select (select |#memory_int| v_prenex_331) (+ v_prenex_332 (* 4 v_prenex_333)))) (<= 0 v_prenex_332) (<= v_prenex_333 100000) (< v_prenex_333 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< (select (select |#memory_int| v_prenex_327) (+ v_prenex_328 (* 4 v_main_~i~0_BEFORE_CALL_269))) 2) (< v_main_~i~0_BEFORE_CALL_269 ~SIZE~0) (<= 0 |#NULL.base|) (<= 0 v_prenex_328) (= ~MAX~0 100000) (<= v_main_~i~0_BEFORE_CALL_269 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_328 0) (<= 1 v_main_~i~0_BEFORE_CALL_269) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< (select (select |#memory_int| v_prenex_327) (+ v_prenex_328 (* 4 v_main_~i~0_BEFORE_CALL_269))) 2) (< v_main_~i~0_BEFORE_CALL_269 ~SIZE~0) (<= 0 |#NULL.base|) (<= 0 v_prenex_328) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_269) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~i~0_BEFORE_CALL_269 0) (<= v_prenex_328 0) (<= 1 v_main_~i~0_BEFORE_CALL_269) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_329 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_329) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_330) v_prenex_329)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_259) v_main_~a~0.offset_BEFORE_CALL_259) 2) (<= v_main_~a~0.offset_BEFORE_CALL_259 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_259) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_prenex_333) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_333) (<= v_prenex_333 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_332 0) (<= 2 (select (select |#memory_int| v_prenex_331) (+ v_prenex_332 (* 4 v_prenex_333)))) (<= 0 v_prenex_332) (< v_prenex_333 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:55:01,364 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION satisfy 477#(and (exists ((v_prenex_332 Int) (v_prenex_333 Int) (v_main_~a~0.base_BEFORE_CALL_259 Int) (v_main_~a~0.offset_BEFORE_CALL_259 Int) (v_prenex_330 Int) (v_prenex_331 Int) (v_prenex_329 Int) (v_prenex_327 Int) (v_prenex_328 Int) (v_main_~i~0_BEFORE_CALL_269 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_prenex_333) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_332 0) (<= 2 (select (select |#memory_int| v_prenex_331) (+ v_prenex_332 (* 4 v_prenex_333)))) (<= 0 v_prenex_332) (<= v_prenex_333 100000) (< v_prenex_333 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< (select (select |#memory_int| v_prenex_327) (+ v_prenex_328 (* 4 v_main_~i~0_BEFORE_CALL_269))) 2) (< v_main_~i~0_BEFORE_CALL_269 ~SIZE~0) (<= 0 |#NULL.base|) (<= 0 v_prenex_328) (= ~MAX~0 100000) (<= v_main_~i~0_BEFORE_CALL_269 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_328 0) (<= 1 v_main_~i~0_BEFORE_CALL_269) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< (select (select |#memory_int| v_prenex_327) (+ v_prenex_328 (* 4 v_main_~i~0_BEFORE_CALL_269))) 2) (< v_main_~i~0_BEFORE_CALL_269 ~SIZE~0) (<= 0 |#NULL.base|) (<= 0 v_prenex_328) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_269) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~i~0_BEFORE_CALL_269 0) (<= v_prenex_328 0) (<= 1 v_main_~i~0_BEFORE_CALL_269) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_329 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_329) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_330) v_prenex_329)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_259) v_main_~a~0.offset_BEFORE_CALL_259) 2) (<= v_main_~a~0.offset_BEFORE_CALL_259 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_259) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_prenex_333) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_333) (<= v_prenex_333 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_332 0) (<= 2 (select (select |#memory_int| v_prenex_331) (+ v_prenex_332 (* 4 v_prenex_333)))) (<= 0 v_prenex_332) (< v_prenex_333 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:55:01,364 INFO L193 IcfgInterpreter]: Reachable states at location L-1 satisfy 23#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |#valid| 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:55:01,364 INFO L193 IcfgInterpreter]: Reachable states at location mainENTRY satisfy 33#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (= 0 (select |old(#valid)| 0)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 0 |old(~SIZE~0)|) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (<= 0 ~SIZE~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= ~SIZE~0 0) (= |old(~SIZE~0)| ~SIZE~0) (<= 100000 ~MAX~0)) [2019-10-07 00:55:01,364 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initEXIT satisfy 486#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| (store |old(#valid)| 0 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:55:01,365 INFO L193 IcfgInterpreter]: Reachable states at location L31-3 satisfy 378#(and (and (= |old(~SIZE~0)| 0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3)) (or (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= 0 main_~i~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 main_~i~0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)))) [2019-10-07 00:55:01,365 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.startENTRY satisfy 6#true [2019-10-07 00:55:01,365 INFO L193 IcfgInterpreter]: Reachable states at location L22-3 satisfy 77#(and (or (and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= 0 |#NULL.base|) (< ~SIZE~0 ~MAX~0) (< 1 ~SIZE~0) (= 0 |main_#t~malloc2.offset|) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= main_~val1~0 0) (= |#valid| (store |old(#valid)| |main_#t~malloc2.base| 1)) (= main_~a~0.offset |main_#t~malloc2.offset|) (<= ~SIZE~0 2147483647) (= main_~val1~0 0) (< |#StackHeapBarrier| |main_#t~malloc2.base|) (= (store |old(#length)| |main_#t~malloc2.base| (* 4 ~SIZE~0)) |#length|) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (not (= |main_#t~malloc2.base| 0)) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= main_~i~0 0) (= 0 (select |old(#valid)| 0)) (= (select |old(#valid)| |main_#t~malloc2.base|) 0) (= |main_#t~malloc2.base| main_~a~0.base) (= main_~low~0 2) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) (and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (= main_~val1~0 0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3))) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) [2019-10-07 00:55:01,365 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertENTRY satisfy 452#(exists ((v_prenex_332 Int) (v_prenex_333 Int) (v_main_~a~0.base_BEFORE_CALL_259 Int) (v_main_~a~0.offset_BEFORE_CALL_259 Int) (v_prenex_330 Int) (v_prenex_331 Int) (v_prenex_329 Int) (v_prenex_327 Int) (v_prenex_328 Int) (v_main_~i~0_BEFORE_CALL_269 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_prenex_333) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_332 0) (<= 2 (select (select |#memory_int| v_prenex_331) (+ v_prenex_332 (* 4 v_prenex_333)))) (<= 0 v_prenex_332) (<= v_prenex_333 100000) (< v_prenex_333 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< (select (select |#memory_int| v_prenex_327) (+ v_prenex_328 (* 4 v_main_~i~0_BEFORE_CALL_269))) 2) (< v_main_~i~0_BEFORE_CALL_269 ~SIZE~0) (<= 0 |#NULL.base|) (<= 0 v_prenex_328) (= ~MAX~0 100000) (<= v_main_~i~0_BEFORE_CALL_269 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_328 0) (<= 1 v_main_~i~0_BEFORE_CALL_269) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (< (select (select |#memory_int| v_prenex_327) (+ v_prenex_328 (* 4 v_main_~i~0_BEFORE_CALL_269))) 2) (< v_main_~i~0_BEFORE_CALL_269 ~SIZE~0) (<= 0 |#NULL.base|) (<= 0 v_prenex_328) (= ~MAX~0 100000) (<= 0 v_main_~i~0_BEFORE_CALL_269) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_main_~i~0_BEFORE_CALL_269 0) (<= v_prenex_328 0) (<= 1 v_main_~i~0_BEFORE_CALL_269) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_prenex_329 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_329) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_prenex_330) v_prenex_329)) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_259) v_main_~a~0.offset_BEFORE_CALL_259) 2) (<= v_main_~a~0.offset_BEFORE_CALL_259 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_259) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= 1 v_prenex_333) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 v_prenex_333) (<= v_prenex_333 0) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_332 0) (<= 2 (select (select |#memory_int| v_prenex_331) (+ v_prenex_332 (* 4 v_prenex_333)))) (<= 0 v_prenex_332) (< v_prenex_333 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) [2019-10-07 00:55:01,366 INFO L193 IcfgInterpreter]: Reachable states at location L33-1 satisfy 448#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 2 |main_#t~mem5|) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:55:04,180 WARN L191 SmtUtils]: Spent 144.00 ms on a formula simplification. DAG size of input: 85 DAG size of output: 34 [2019-10-07 00:55:05,340 INFO L211 tionRefinementEngine]: Constructing automaton from 0 perfect and 4 imperfect interpolant sequences. [2019-10-07 00:55:05,341 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [16, 19, 16, 12] total 57 [2019-10-07 00:55:05,342 INFO L442 AbstractCegarLoop]: Interpolant automaton has 57 states [2019-10-07 00:55:05,343 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 57 interpolants. [2019-10-07 00:55:05,344 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=222, Invalid=2968, Unknown=2, NotChecked=0, Total=3192 [2019-10-07 00:55:05,344 INFO L87 Difference]: Start difference. First operand 46 states and 48 transitions. Second operand 57 states. [2019-10-07 00:55:21,610 WARN L191 SmtUtils]: Spent 104.00 ms on a formula simplification. DAG size of input: 55 DAG size of output: 42 [2019-10-07 00:55:23,303 WARN L191 SmtUtils]: Spent 100.00 ms on a formula simplification. DAG size of input: 52 DAG size of output: 47 [2019-10-07 00:55:23,486 WARN L191 SmtUtils]: Spent 109.00 ms on a formula simplification. DAG size of input: 55 DAG size of output: 49 [2019-10-07 00:55:24,117 WARN L191 SmtUtils]: Spent 125.00 ms on a formula simplification. DAG size of input: 60 DAG size of output: 54 [2019-10-07 00:55:24,311 WARN L191 SmtUtils]: Spent 151.00 ms on a formula simplification. DAG size of input: 65 DAG size of output: 58 [2019-10-07 00:55:24,682 WARN L191 SmtUtils]: Spent 125.00 ms on a formula simplification. DAG size of input: 55 DAG size of output: 54 [2019-10-07 00:55:24,871 WARN L191 SmtUtils]: Spent 145.00 ms on a formula simplification. DAG size of input: 60 DAG size of output: 58 [2019-10-07 00:55:25,208 WARN L191 SmtUtils]: Spent 129.00 ms on a formula simplification. DAG size of input: 56 DAG size of output: 55 [2019-10-07 00:55:25,212 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:55:25,213 INFO L93 Difference]: Finished difference Result 94 states and 101 transitions. [2019-10-07 00:55:25,213 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 44 states. [2019-10-07 00:55:25,213 INFO L78 Accepts]: Start accepts. Automaton has 57 states. Word has length 45 [2019-10-07 00:55:25,214 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:55:25,215 INFO L225 Difference]: With dead ends: 94 [2019-10-07 00:55:25,215 INFO L226 Difference]: Without dead ends: 52 [2019-10-07 00:55:25,218 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 186 GetRequests, 83 SyntacticMatches, 12 SemanticMatches, 91 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2826 ImplicationChecksByTransitivity, 16.5s TimeCoverageRelationStatistics Valid=744, Invalid=7810, Unknown=2, NotChecked=0, Total=8556 [2019-10-07 00:55:25,218 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 52 states. [2019-10-07 00:55:25,235 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 52 to 47. [2019-10-07 00:55:25,235 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 47 states. [2019-10-07 00:55:25,236 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 47 states to 47 states and 49 transitions. [2019-10-07 00:55:25,236 INFO L78 Accepts]: Start accepts. Automaton has 47 states and 49 transitions. Word has length 45 [2019-10-07 00:55:25,236 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:55:25,236 INFO L462 AbstractCegarLoop]: Abstraction has 47 states and 49 transitions. [2019-10-07 00:55:25,236 INFO L463 AbstractCegarLoop]: Interpolant automaton has 57 states. [2019-10-07 00:55:25,236 INFO L276 IsEmpty]: Start isEmpty. Operand 47 states and 49 transitions. [2019-10-07 00:55:25,237 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 47 [2019-10-07 00:55:25,237 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:55:25,237 INFO L385 BasicCegarLoop]: trace histogram [6, 5, 5, 5, 4, 4, 4, 4, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:55:25,438 WARN L499 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 12 z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:55:25,439 INFO L410 AbstractCegarLoop]: === Iteration 13 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:55:25,439 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:55:25,440 INFO L82 PathProgramCache]: Analyzing trace with hash -714262377, now seen corresponding path program 10 times [2019-10-07 00:55:25,440 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:55:25,440 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:55:25,440 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:55:25,441 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:55:25,441 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:55:25,480 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:55:25,728 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 8 proven. 47 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2019-10-07 00:55:25,729 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:55:25,729 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:55:25,729 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 13 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 13 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:55:26,030 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:55:26,031 INFO L256 TraceCheckSpWp]: Trace formula consists of 169 conjuncts, 40 conjunts are in the unsatisfiable core [2019-10-07 00:55:26,034 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:55:33,372 WARN L191 SmtUtils]: Spent 2.02 s on a formula simplification that was a NOOP. DAG size: 40 [2019-10-07 00:55:33,990 WARN L191 SmtUtils]: Spent 574.00 ms on a formula simplification. DAG size of input: 40 DAG size of output: 26 [2019-10-07 00:55:52,374 WARN L191 SmtUtils]: Spent 2.01 s on a formula simplification that was a NOOP. DAG size: 40 [2019-10-07 00:55:54,438 WARN L191 SmtUtils]: Spent 2.01 s on a formula simplification that was a NOOP. DAG size: 39 [2019-10-07 00:56:14,627 WARN L191 SmtUtils]: Spent 1.10 s on a formula simplification. DAG size of input: 39 DAG size of output: 25 [2019-10-07 00:56:24,221 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 2 proven. 64 refuted. 9 times theorem prover too weak. 4 trivial. 0 not checked. [2019-10-07 00:56:24,221 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:56:24,934 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 8 proven. 47 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2019-10-07 00:56:24,934 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2019-10-07 00:56:24,935 INFO L162 IcfgInterpreter]: Started Sifa with 16 locations of interest [2019-10-07 00:56:24,935 INFO L169 IcfgInterpreter]: Building call graph [2019-10-07 00:56:24,936 INFO L174 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2019-10-07 00:56:24,936 INFO L179 IcfgInterpreter]: Starting interpretation [2019-10-07 00:56:24,936 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2019-10-07 00:56:24,958 INFO L199 IcfgInterpreter]: Interpreting procedure main with input of size 30 for LOIs [2019-10-07 00:56:26,397 INFO L199 IcfgInterpreter]: Interpreting procedure __VERIFIER_assert with input of size 57 for LOIs [2019-10-07 00:56:26,405 INFO L199 IcfgInterpreter]: Interpreting procedure ULTIMATE.init with input of size 16 for LOIs [2019-10-07 00:56:26,414 INFO L183 IcfgInterpreter]: Interpretation finished [2019-10-07 00:56:26,414 INFO L191 IcfgInterpreter]: Final predicates for locations of interest are: [2019-10-07 00:56:26,414 INFO L193 IcfgInterpreter]: Reachable states at location L3-1 satisfy 464#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (exists ((v_prenex_369 Int) (v_main_~i~0_BEFORE_CALL_304 Int) (v_prenex_370 Int) (v_main_~a~0.base_BEFORE_CALL_294 Int) (v_main_~a~0.offset_BEFORE_CALL_294 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (<= v_main_~i~0_BEFORE_CALL_304 0) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294)))) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~i~0_BEFORE_CALL_304) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (<= v_main_~i~0_BEFORE_CALL_304 0) (= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294))) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~i~0_BEFORE_CALL_304) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_369) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (not (<= 2 (select (select |#memory_int| v_prenex_370) v_prenex_369))) (<= v_prenex_369 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (<= v_main_~i~0_BEFORE_CALL_304 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294))) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (<= v_main_~i~0_BEFORE_CALL_304 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294)))) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_369) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_370) v_prenex_369)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_369 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:56:26,414 INFO L193 IcfgInterpreter]: Reachable states at location L33 satisfy 289#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~i~0 100000) (<= main_~a~0.offset 0) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:56:26,415 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initENTRY satisfy 473#(and (= |old(#NULL.base)| |#NULL.base|) (= |#valid| |old(#valid)|) (= ~MAX~0 |old(~MAX~0)|) (= |#NULL.offset| |old(#NULL.offset)|) (= |old(~SIZE~0)| ~SIZE~0)) [2019-10-07 00:56:26,415 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertEXIT satisfy 459#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_prenex_369 Int) (v_main_~i~0_BEFORE_CALL_304 Int) (v_prenex_370 Int) (v_main_~a~0.base_BEFORE_CALL_294 Int) (v_main_~a~0.offset_BEFORE_CALL_294 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (<= v_main_~i~0_BEFORE_CALL_304 0) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294)))) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~i~0_BEFORE_CALL_304) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (<= v_main_~i~0_BEFORE_CALL_304 0) (= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294))) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~i~0_BEFORE_CALL_304) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_369) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (not (<= 2 (select (select |#memory_int| v_prenex_370) v_prenex_369))) (<= v_prenex_369 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (<= v_main_~i~0_BEFORE_CALL_304 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294))) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (<= v_main_~i~0_BEFORE_CALL_304 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294)))) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_369) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_370) v_prenex_369)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_369 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:56:26,415 INFO L193 IcfgInterpreter]: Reachable states at location L3-3 satisfy 454#(and (not (= 0 __VERIFIER_assert_~cond)) (exists ((v_prenex_369 Int) (v_main_~i~0_BEFORE_CALL_304 Int) (v_prenex_370 Int) (v_main_~a~0.base_BEFORE_CALL_294 Int) (v_main_~a~0.offset_BEFORE_CALL_294 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (<= v_main_~i~0_BEFORE_CALL_304 0) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294)))) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~i~0_BEFORE_CALL_304) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (<= v_main_~i~0_BEFORE_CALL_304 0) (= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294))) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~i~0_BEFORE_CALL_304) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_369) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (not (<= 2 (select (select |#memory_int| v_prenex_370) v_prenex_369))) (<= v_prenex_369 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (<= v_main_~i~0_BEFORE_CALL_304 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294))) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (<= v_main_~i~0_BEFORE_CALL_304 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294)))) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_369) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_370) v_prenex_369)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_369 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:56:26,415 INFO L193 IcfgInterpreter]: Reachable states at location L14 satisfy 38#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (= |#valid| |old(#valid)|) (<= ~SIZE~0 2147483647) (<= |old(~SIZE~0)| 0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= 100000 ~MAX~0)) [2019-10-07 00:56:26,416 INFO L193 IcfgInterpreter]: Reachable states at location L3 satisfy 449#(and (exists ((v_prenex_369 Int) (v_main_~i~0_BEFORE_CALL_304 Int) (v_prenex_370 Int) (v_main_~a~0.base_BEFORE_CALL_294 Int) (v_main_~a~0.offset_BEFORE_CALL_294 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (<= v_main_~i~0_BEFORE_CALL_304 0) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294)))) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~i~0_BEFORE_CALL_304) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (<= v_main_~i~0_BEFORE_CALL_304 0) (= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294))) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~i~0_BEFORE_CALL_304) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_369) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (not (<= 2 (select (select |#memory_int| v_prenex_370) v_prenex_369))) (<= v_prenex_369 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (<= v_main_~i~0_BEFORE_CALL_304 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294))) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (<= v_main_~i~0_BEFORE_CALL_304 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294)))) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_369) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_370) v_prenex_369)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_369 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:56:26,416 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION satisfy 469#(and (<= __VERIFIER_assert_~cond 0) (<= 0 |__VERIFIER_assert_#in~cond|) (<= |__VERIFIER_assert_#in~cond| 0) (exists ((v_prenex_369 Int) (v_main_~i~0_BEFORE_CALL_304 Int) (v_prenex_370 Int) (v_main_~a~0.base_BEFORE_CALL_294 Int) (v_main_~a~0.offset_BEFORE_CALL_294 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (<= v_main_~i~0_BEFORE_CALL_304 0) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294)))) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~i~0_BEFORE_CALL_304) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (<= v_main_~i~0_BEFORE_CALL_304 0) (= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294))) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~i~0_BEFORE_CALL_304) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_369) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (not (<= 2 (select (select |#memory_int| v_prenex_370) v_prenex_369))) (<= v_prenex_369 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (<= v_main_~i~0_BEFORE_CALL_304 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294))) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (<= v_main_~i~0_BEFORE_CALL_304 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294)))) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_369) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_370) v_prenex_369)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_369 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) (<= 0 __VERIFIER_assert_~cond) (= 0 __VERIFIER_assert_~cond) (= |__VERIFIER_assert_#in~cond| __VERIFIER_assert_~cond)) [2019-10-07 00:56:26,416 INFO L193 IcfgInterpreter]: Reachable states at location L-1 satisfy 23#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |#valid| 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:56:26,416 INFO L193 IcfgInterpreter]: Reachable states at location mainENTRY satisfy 33#(and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= 0 (select |old(#valid)| 0)) (<= 0 |old(~SIZE~0)|) (= |#valid| |old(#valid)|) (<= |old(~SIZE~0)| 0) (<= 0 ~SIZE~0) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= |old(#length)| |#length|) (<= ~SIZE~0 0) (= |old(~SIZE~0)| ~SIZE~0) (<= 100000 ~MAX~0)) [2019-10-07 00:56:26,416 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.initEXIT satisfy 478#(and (<= ~MAX~0 100000) (= 0 |#NULL.base|) (<= |#NULL.base| 0) (= ~SIZE~0 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (= |#valid| (store |old(#valid)| 0 0)) (<= 0 ~SIZE~0) (= |#NULL.offset| 0) (<= ~SIZE~0 0) (<= 100000 ~MAX~0)) [2019-10-07 00:56:26,417 INFO L193 IcfgInterpreter]: Reachable states at location L31-3 satisfy 367#(and (and (= |old(~SIZE~0)| 0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3)) (or (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= 0 main_~i~0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) (and (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 1 main_~i~0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)))) [2019-10-07 00:56:26,417 INFO L193 IcfgInterpreter]: Reachable states at location ULTIMATE.startENTRY satisfy 6#true [2019-10-07 00:56:26,417 INFO L193 IcfgInterpreter]: Reachable states at location L22-3 satisfy 66#(and (or (and (<= ~MAX~0 100000) (= |old(~SIZE~0)| 0) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= 0 |#NULL.base|) (< ~SIZE~0 ~MAX~0) (< 1 ~SIZE~0) (= 0 |main_#t~malloc2.offset|) (= ~MAX~0 100000) (= |#valid| (store |old(#valid)| |main_#t~malloc2.base| 1)) (= main_~a~0.offset |main_#t~malloc2.offset|) (<= ~SIZE~0 2147483647) (= main_~val1~0 0) (< |#StackHeapBarrier| |main_#t~malloc2.base|) (= (store |old(#length)| |main_#t~malloc2.base| (* 4 ~SIZE~0)) |#length|) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (not (= |main_#t~malloc2.base| 0)) (<= |#NULL.base| 0) (<= 0 (+ ~SIZE~0 2147483648)) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= main_~i~0 0) (= 0 (select |old(#valid)| 0)) (= (select |old(#valid)| |main_#t~malloc2.base|) 0) (= |main_#t~malloc2.base| main_~a~0.base) (= main_~low~0 2) (= |#memory_int| |old(#memory_int)|) (= |#NULL.offset| 0) (= main_~val2~0 3) (= main_~i~0 0)) (and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (= main_~val1~0 0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (= main_~low~0 2) (= |#NULL.offset| 0) (= main_~val2~0 3))) (<= main_~val2~0 3) (<= 0 main_~a~0.offset) (<= 0 |#NULL.base|) (<= main_~val1~0 0) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 main_~low~0) (<= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (<= 100000 ~MAX~0)) [2019-10-07 00:56:26,417 INFO L193 IcfgInterpreter]: Reachable states at location __VERIFIER_assertENTRY satisfy 444#(exists ((v_prenex_369 Int) (v_main_~i~0_BEFORE_CALL_304 Int) (v_prenex_370 Int) (v_main_~a~0.base_BEFORE_CALL_294 Int) (v_main_~a~0.offset_BEFORE_CALL_294 Int)) (or (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (<= v_main_~i~0_BEFORE_CALL_304 0) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294)))) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~i~0_BEFORE_CALL_304) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (<= v_main_~i~0_BEFORE_CALL_304 0) (= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294))) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~i~0_BEFORE_CALL_304) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_369) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (not (<= 2 (select (select |#memory_int| v_prenex_370) v_prenex_369))) (<= v_prenex_369 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (<= v_main_~i~0_BEFORE_CALL_304 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294))) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (<= v_main_~i~0_BEFORE_CALL_304 100000) (= |__VERIFIER_assert_#in~cond| 0) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= v_main_~a~0.offset_BEFORE_CALL_294 0) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (not (<= 2 (select (select |#memory_int| v_main_~a~0.base_BEFORE_CALL_294) (+ (* 4 v_main_~i~0_BEFORE_CALL_304) v_main_~a~0.offset_BEFORE_CALL_294)))) (<= 1 v_main_~i~0_BEFORE_CALL_304) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (< v_main_~i~0_BEFORE_CALL_304 ~SIZE~0) (= |#NULL.offset| 0) (<= 0 v_main_~a~0.offset_BEFORE_CALL_294) (<= 100000 ~MAX~0)) (and (= |#NULL.base| 0) (<= ~MAX~0 100000) (<= ~SIZE~0 100000) (= |__VERIFIER_assert_#in~cond| 1) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= 0 v_prenex_369) (<= 0 |#NULL.base|) (= ~MAX~0 100000) (<= 2 (select (select |#memory_int| v_prenex_370) v_prenex_369)) (<= 0 |#NULL.offset|) (<= |#NULL.offset| 0) (<= v_prenex_369 0) (< 0 ~SIZE~0) (= |#NULL.offset| 0) (<= 100000 ~MAX~0)))) [2019-10-07 00:56:26,417 INFO L193 IcfgInterpreter]: Reachable states at location L33-1 satisfy 440#(and (= |old(~SIZE~0)| 0) (<= ~MAX~0 100000) (<= |main_#t~malloc2.offset| 0) (<= 0 main_~i~0) (<= main_~val2~0 3) (<= 0 |#NULL.base|) (= |main_#t~malloc2.offset| 0) (= ~MAX~0 100000) (<= main_~val1~0 0) (<= 0 |#NULL.offset|) (<= 2 main_~low~0) (= main_~val1~0 0) (<= 100000 ~MAX~0) (= |#NULL.base| 0) (<= 3 main_~val2~0) (<= ~SIZE~0 100000) (<= |#NULL.base| 0) (<= 1 ~SIZE~0) (<= main_~a~0.offset 0) (<= 2 |main_#t~mem5|) (<= 0 main_~a~0.offset) (<= 0 |main_#t~malloc2.offset|) (<= 0 |old(~SIZE~0)|) (<= |#NULL.offset| 0) (<= main_~low~0 2) (= main_~low~0 2) (<= |old(~SIZE~0)| 0) (<= 0 main_~val1~0) (= |#NULL.offset| 0) (= main_~val2~0 3)) [2019-10-07 00:56:33,345 WARN L191 SmtUtils]: Spent 116.00 ms on a formula simplification. DAG size of input: 85 DAG size of output: 31 [2019-10-07 00:56:34,713 INFO L211 tionRefinementEngine]: Constructing automaton from 0 perfect and 4 imperfect interpolant sequences. [2019-10-07 00:56:34,713 INFO L224 tionRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [17, 24, 17, 12] total 64 [2019-10-07 00:56:34,714 INFO L442 AbstractCegarLoop]: Interpolant automaton has 64 states [2019-10-07 00:56:34,714 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 64 interpolants. [2019-10-07 00:56:34,715 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=245, Invalid=3765, Unknown=22, NotChecked=0, Total=4032 [2019-10-07 00:56:34,715 INFO L87 Difference]: Start difference. First operand 47 states and 49 transitions. Second operand 64 states. [2019-10-07 00:57:09,485 WARN L191 SmtUtils]: Spent 1.61 s on a formula simplification. DAG size of input: 71 DAG size of output: 65 [2019-10-07 00:57:17,008 WARN L191 SmtUtils]: Spent 5.00 s on a formula simplification. DAG size of input: 93 DAG size of output: 76 [2019-10-07 00:57:37,328 WARN L191 SmtUtils]: Spent 4.12 s on a formula simplification. DAG size of input: 74 DAG size of output: 65 [2019-10-07 00:57:45,524 WARN L191 SmtUtils]: Spent 110.00 ms on a formula simplification. DAG size of input: 58 DAG size of output: 49 [2019-10-07 00:58:00,697 WARN L191 SmtUtils]: Spent 2.72 s on a formula simplification. DAG size of input: 80 DAG size of output: 51 [2019-10-07 00:58:08,909 WARN L191 SmtUtils]: Spent 4.12 s on a formula simplification. DAG size of input: 72 DAG size of output: 63 [2019-10-07 00:58:19,139 WARN L191 SmtUtils]: Spent 1.10 s on a formula simplification. DAG size of input: 74 DAG size of output: 51 [2019-10-07 00:58:24,229 WARN L191 SmtUtils]: Spent 4.11 s on a formula simplification. DAG size of input: 69 DAG size of output: 60 [2019-10-07 00:58:32,809 WARN L191 SmtUtils]: Spent 4.12 s on a formula simplification. DAG size of input: 71 DAG size of output: 62 [2019-10-07 00:58:42,784 WARN L191 SmtUtils]: Spent 3.44 s on a formula simplification. DAG size of input: 66 DAG size of output: 50 [2019-10-07 00:59:06,394 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2019-10-07 00:59:06,394 INFO L93 Difference]: Finished difference Result 61 states and 65 transitions. [2019-10-07 00:59:06,394 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 39 states. [2019-10-07 00:59:06,395 INFO L78 Accepts]: Start accepts. Automaton has 64 states. Word has length 46 [2019-10-07 00:59:06,395 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2019-10-07 00:59:06,396 INFO L225 Difference]: With dead ends: 61 [2019-10-07 00:59:06,396 INFO L226 Difference]: Without dead ends: 59 [2019-10-07 00:59:06,397 INFO L606 BasicCegarLoop]: 0 DeclaredPredicates, 192 GetRequests, 87 SyntacticMatches, 11 SemanticMatches, 94 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2761 ImplicationChecksByTransitivity, 133.6s TimeCoverageRelationStatistics Valid=705, Invalid=8382, Unknown=33, NotChecked=0, Total=9120 [2019-10-07 00:59:06,397 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 59 states. [2019-10-07 00:59:06,424 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 59 to 52. [2019-10-07 00:59:06,424 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 52 states. [2019-10-07 00:59:06,424 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 52 states to 52 states and 54 transitions. [2019-10-07 00:59:06,425 INFO L78 Accepts]: Start accepts. Automaton has 52 states and 54 transitions. Word has length 46 [2019-10-07 00:59:06,425 INFO L84 Accepts]: Finished accepts. word is rejected. [2019-10-07 00:59:06,425 INFO L462 AbstractCegarLoop]: Abstraction has 52 states and 54 transitions. [2019-10-07 00:59:06,425 INFO L463 AbstractCegarLoop]: Interpolant automaton has 64 states. [2019-10-07 00:59:06,425 INFO L276 IsEmpty]: Start isEmpty. Operand 52 states and 54 transitions. [2019-10-07 00:59:06,426 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2019-10-07 00:59:06,426 INFO L377 BasicCegarLoop]: Found error trace [2019-10-07 00:59:06,426 INFO L385 BasicCegarLoop]: trace histogram [6, 6, 6, 6, 5, 5, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2019-10-07 00:59:06,630 WARN L499 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 13 z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:59:06,631 INFO L410 AbstractCegarLoop]: === Iteration 14 === [__VERIFIER_assertErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2019-10-07 00:59:06,631 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2019-10-07 00:59:06,631 INFO L82 PathProgramCache]: Analyzing trace with hash 870174719, now seen corresponding path program 11 times [2019-10-07 00:59:06,632 INFO L150 tionRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2019-10-07 00:59:06,632 INFO L231 tionRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:59:06,632 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:59:06,632 INFO L117 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2019-10-07 00:59:06,632 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2019-10-07 00:59:06,656 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2019-10-07 00:59:06,949 INFO L134 CoverageAnalysis]: Checked inductivity of 111 backedges. 28 proven. 43 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2019-10-07 00:59:06,949 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2019-10-07 00:59:06,949 INFO L286 tionRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2019-10-07 00:59:06,949 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 14 with z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 14 with z3 -smt2 -in SMTLIB2_COMPLIANT=true [2019-10-07 00:59:07,335 INFO L249 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 6 check-sat command(s) [2019-10-07 00:59:07,335 INFO L250 tOrderPrioritization]: Conjunction of SSA is unsat [2019-10-07 00:59:07,338 INFO L256 TraceCheckSpWp]: Trace formula consists of 183 conjuncts, 49 conjunts are in the unsatisfiable core [2019-10-07 00:59:07,342 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2019-10-07 00:59:07,765 WARN L191 SmtUtils]: Spent 158.00 ms on a formula simplification. DAG size of input: 49 DAG size of output: 48 [2019-10-07 00:59:08,277 WARN L191 SmtUtils]: Spent 241.00 ms on a formula simplification. DAG size of input: 58 DAG size of output: 53 [2019-10-07 00:59:08,867 WARN L191 SmtUtils]: Spent 260.00 ms on a formula simplification. DAG size of input: 63 DAG size of output: 58 [2019-10-07 00:59:09,121 WARN L225 Elim1Store]: Array PQE input equivalent to false [2019-10-07 00:59:09,288 WARN L191 SmtUtils]: Spent 165.00 ms on a formula simplification. DAG size of input: 111 DAG size of output: 56 [2019-10-07 00:59:11,659 WARN L191 SmtUtils]: Spent 2.02 s on a formula simplification that was a NOOP. DAG size: 33 [2019-10-07 00:59:13,733 WARN L191 SmtUtils]: Spent 2.03 s on a formula simplification that was a NOOP. DAG size: 36 [2019-10-07 00:59:15,804 WARN L191 SmtUtils]: Spent 2.03 s on a formula simplification that was a NOOP. DAG size: 37 [2019-10-07 00:59:16,877 WARN L191 SmtUtils]: Spent 112.00 ms on a formula simplification. DAG size of input: 106 DAG size of output: 46 [2019-10-07 00:59:17,045 INFO L134 CoverageAnalysis]: Checked inductivity of 111 backedges. 22 proven. 61 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2019-10-07 00:59:17,045 INFO L322 TraceCheckSpWp]: Computing backward predicates... [2019-10-07 00:59:23,685 WARN L191 SmtUtils]: Spent 4.05 s on a formula simplification. DAG size of input: 48 DAG size of output: 31