/*
 ============================================================================
 *  Author      : Vadim Mutilin
 *  Licensed under the Apache License, Version 2.0 (the "License");
 *  you may not use this file except in compliance with the License.
 *  You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 ============================================================================
*/
#include "header.h"

//conditions
int f6(void) {
	return __VERIFIER_nondet_int();
}

int g6(void) {
	return __VERIFIER_nondet_int();
}

//unsafe: memory is not free on the error path (after failed call to g6)
int probe2_6(struct A *a) {
	int ret = -ENOMEM;
	int *p = (int *)ldv_malloc(sizeof(int));
	if(p==0) 
		return ret;
	ret = f6();
	if(ret<0)
		goto err;
	ret = g6();
	if(ret<0)
		return ret;//bug
	a->p = p;
	return 0;

	err:
		free(p);
		return ret;
}

void disconnect_6(struct A *a) {
	free(a->p);
}

//global variable passed as parameter
struct A a6;

//unsafe: memory is not free for probe!=0, => checker should know the path probe!=0->disconnect
void entry_point(void) {
	int ret = probe2_6(&a6);
	if(ret==0) {
		disconnect_6(&a6);
	}
	a6.p = 0;
}

void main(void) {
     entry_point();
}