./Ultimate.py --spec ../../sv-benchmarks/c/properties/valid-memsafety.prp --file ../../sv-benchmarks/c/memsafety/test-0234-1.i --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for memory safety (deref-memtrack) Using default analysis Version 4e7fbc69 Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/config/TaipanMemDerefMemtrack.xml -i ../../sv-benchmarks/c/memsafety/test-0234-1.i -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/config/svcomp-DerefFreeMemtrack-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G valid-free) ) CHECK( init(main()), LTL(G valid-deref) ) CHECK( init(main()), LTL(G valid-memtrack) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 2e40f9e7b474ba5b84186650c7060a1f3eed5394bab52ac2eaa493135efa417c --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-4e7fbc6 [2022-11-23 13:53:12,904 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-23 13:53:12,905 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-23 13:53:12,929 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-23 13:53:12,930 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-23 13:53:12,931 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-23 13:53:12,932 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-23 13:53:12,934 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-23 13:53:12,936 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-23 13:53:12,937 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-23 13:53:12,938 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-23 13:53:12,939 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-23 13:53:12,940 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-23 13:53:12,941 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-23 13:53:12,942 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-23 13:53:12,943 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-23 13:53:12,944 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-23 13:53:12,945 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-23 13:53:12,947 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-23 13:53:12,949 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-23 13:53:12,951 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-23 13:53:12,952 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-23 13:53:12,954 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-23 13:53:12,955 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-23 13:53:12,959 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-23 13:53:12,959 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-23 13:53:12,960 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-23 13:53:12,961 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-23 13:53:12,961 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-23 13:53:12,962 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-23 13:53:12,963 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-23 13:53:12,964 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-23 13:53:12,965 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-23 13:53:12,966 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-23 13:53:12,967 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-23 13:53:12,967 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-23 13:53:12,968 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-23 13:53:12,968 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-23 13:53:12,969 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-23 13:53:12,970 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-23 13:53:12,970 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-23 13:53:12,971 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/config/svcomp-DerefFreeMemtrack-32bit-Taipan_Default.epf [2022-11-23 13:53:12,997 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-23 13:53:12,997 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-23 13:53:12,997 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-23 13:53:12,998 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-23 13:53:12,998 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-23 13:53:12,999 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-23 13:53:12,999 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-23 13:53:12,999 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-23 13:53:12,999 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-23 13:53:13,000 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-23 13:53:13,000 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-23 13:53:13,000 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-23 13:53:13,000 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-23 13:53:13,000 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-23 13:53:13,001 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-23 13:53:13,001 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-23 13:53:13,001 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-23 13:53:13,001 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-23 13:53:13,002 INFO L136 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2022-11-23 13:53:13,002 INFO L138 SettingsManager]: * Create parallel compositions if possible=false [2022-11-23 13:53:13,002 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-23 13:53:13,003 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-23 13:53:13,003 INFO L138 SettingsManager]: * Check unreachability of error function in SV-COMP mode=false [2022-11-23 13:53:13,003 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-23 13:53:13,003 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-23 13:53:13,003 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-23 13:53:13,004 INFO L138 SettingsManager]: * Check for the main procedure if all allocated memory was freed=true [2022-11-23 13:53:13,004 INFO L138 SettingsManager]: * Bitprecise bitfields=true [2022-11-23 13:53:13,004 INFO L138 SettingsManager]: * SV-COMP memtrack compatibility mode=true [2022-11-23 13:53:13,004 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-23 13:53:13,004 INFO L138 SettingsManager]: * Adapt memory model on pointer casts if necessary=true [2022-11-23 13:53:13,005 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-23 13:53:13,005 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-23 13:53:13,005 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-23 13:53:13,005 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-23 13:53:13,005 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-23 13:53:13,006 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-23 13:53:13,006 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-23 13:53:13,006 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-23 13:53:13,006 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-23 13:53:13,006 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-23 13:53:13,007 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-23 13:53:13,007 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G valid-free) ) CHECK( init(main()), LTL(G valid-deref) ) CHECK( init(main()), LTL(G valid-memtrack) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 2e40f9e7b474ba5b84186650c7060a1f3eed5394bab52ac2eaa493135efa417c [2022-11-23 13:53:13,280 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-23 13:53:13,308 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-23 13:53:13,311 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-23 13:53:13,312 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-23 13:53:13,314 INFO L275 PluginConnector]: CDTParser initialized [2022-11-23 13:53:13,315 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/../../sv-benchmarks/c/memsafety/test-0234-1.i [2022-11-23 13:53:16,564 INFO L500 CDTParser]: Created temporary CDT project at NULL [2022-11-23 13:53:16,811 INFO L351 CDTParser]: Found 1 translation units. [2022-11-23 13:53:16,811 INFO L172 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/sv-benchmarks/c/memsafety/test-0234-1.i [2022-11-23 13:53:16,824 INFO L394 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/data/bf3d94d11/b5c4af366042419d953ac812bbd34d43/FLAG48686b734 [2022-11-23 13:53:16,839 INFO L402 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/data/bf3d94d11/b5c4af366042419d953ac812bbd34d43 [2022-11-23 13:53:16,842 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-23 13:53:16,843 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-23 13:53:16,845 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-23 13:53:16,845 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-23 13:53:16,850 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-23 13:53:16,852 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 01:53:16" (1/1) ... [2022-11-23 13:53:16,853 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@64ef2a77 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:16, skipping insertion in model container [2022-11-23 13:53:16,853 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 01:53:16" (1/1) ... [2022-11-23 13:53:16,861 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-23 13:53:16,914 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-23 13:53:17,306 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-23 13:53:17,324 INFO L203 MainTranslator]: Completed pre-run [2022-11-23 13:53:17,390 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-23 13:53:17,428 INFO L208 MainTranslator]: Completed translation [2022-11-23 13:53:17,429 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17 WrapperNode [2022-11-23 13:53:17,429 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-23 13:53:17,430 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-23 13:53:17,431 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-23 13:53:17,431 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-23 13:53:17,439 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17" (1/1) ... [2022-11-23 13:53:17,468 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17" (1/1) ... [2022-11-23 13:53:17,504 INFO L138 Inliner]: procedures = 188, calls = 60, calls flagged for inlining = 14, calls inlined = 14, statements flattened = 203 [2022-11-23 13:53:17,509 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-23 13:53:17,510 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-23 13:53:17,510 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-23 13:53:17,511 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-23 13:53:17,521 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17" (1/1) ... [2022-11-23 13:53:17,521 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17" (1/1) ... [2022-11-23 13:53:17,530 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17" (1/1) ... [2022-11-23 13:53:17,538 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17" (1/1) ... [2022-11-23 13:53:17,549 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17" (1/1) ... [2022-11-23 13:53:17,558 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17" (1/1) ... [2022-11-23 13:53:17,560 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17" (1/1) ... [2022-11-23 13:53:17,562 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17" (1/1) ... [2022-11-23 13:53:17,566 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-23 13:53:17,567 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-23 13:53:17,567 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-23 13:53:17,567 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-23 13:53:17,568 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17" (1/1) ... [2022-11-23 13:53:17,574 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-23 13:53:17,587 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:53:17,601 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-23 13:53:17,634 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-23 13:53:17,658 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocOnHeap [2022-11-23 13:53:17,658 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-23 13:53:17,659 INFO L130 BoogieDeclarations]: Found specification of procedure write~$Pointer$ [2022-11-23 13:53:17,659 INFO L130 BoogieDeclarations]: Found specification of procedure read~$Pointer$ [2022-11-23 13:53:17,659 INFO L130 BoogieDeclarations]: Found specification of procedure zalloc_or_die [2022-11-23 13:53:17,659 INFO L138 BoogieDeclarations]: Found implementation of procedure zalloc_or_die [2022-11-23 13:53:17,659 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.dealloc [2022-11-23 13:53:17,660 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~$Pointer$ [2022-11-23 13:53:17,660 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-23 13:53:17,660 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-23 13:53:17,660 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-23 13:53:17,813 INFO L235 CfgBuilder]: Building ICFG [2022-11-23 13:53:17,816 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-23 13:53:18,513 INFO L276 CfgBuilder]: Performing block encoding [2022-11-23 13:53:18,595 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-23 13:53:18,596 INFO L300 CfgBuilder]: Removed 10 assume(true) statements. [2022-11-23 13:53:18,599 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 01:53:18 BoogieIcfgContainer [2022-11-23 13:53:18,599 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-23 13:53:18,605 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-23 13:53:18,605 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-23 13:53:18,609 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-23 13:53:18,610 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 23.11 01:53:16" (1/3) ... [2022-11-23 13:53:18,612 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@b5f967 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 01:53:18, skipping insertion in model container [2022-11-23 13:53:18,612 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:53:17" (2/3) ... [2022-11-23 13:53:18,613 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@b5f967 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 01:53:18, skipping insertion in model container [2022-11-23 13:53:18,613 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 01:53:18" (3/3) ... [2022-11-23 13:53:18,615 INFO L112 eAbstractionObserver]: Analyzing ICFG test-0234-1.i [2022-11-23 13:53:18,636 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:false NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-23 13:53:18,636 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 75 error locations. [2022-11-23 13:53:18,689 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-23 13:53:18,696 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=false, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=All, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@2988e0ae, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-23 13:53:18,696 INFO L358 AbstractCegarLoop]: Starting to check reachability of 75 error locations. [2022-11-23 13:53:18,701 INFO L276 IsEmpty]: Start isEmpty. Operand has 159 states, 76 states have (on average 2.263157894736842) internal successors, (172), 151 states have internal predecessors, (172), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2022-11-23 13:53:18,708 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 4 [2022-11-23 13:53:18,708 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:53:18,709 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1] [2022-11-23 13:53:18,709 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting ULTIMATE.startErr32REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:53:18,715 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:53:18,715 INFO L85 PathProgramCache]: Analyzing trace with hash 352557, now seen corresponding path program 1 times [2022-11-23 13:53:18,726 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:53:18,727 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1124141277] [2022-11-23 13:53:18,727 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:18,727 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:53:18,815 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:53:18,858 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 13:53:18,859 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:53:18,859 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1124141277] [2022-11-23 13:53:18,860 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1124141277] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 13:53:18,860 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 13:53:18,860 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-23 13:53:18,862 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1736562147] [2022-11-23 13:53:18,863 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 13:53:18,868 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-23 13:53:18,868 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:53:18,903 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-23 13:53:18,904 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-23 13:53:18,907 INFO L87 Difference]: Start difference. First operand has 159 states, 76 states have (on average 2.263157894736842) internal successors, (172), 151 states have internal predecessors, (172), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) Second operand has 2 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 13:53:18,990 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:53:18,991 INFO L93 Difference]: Finished difference Result 159 states and 174 transitions. [2022-11-23 13:53:18,992 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-23 13:53:18,994 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 3 [2022-11-23 13:53:18,994 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:53:19,002 INFO L225 Difference]: With dead ends: 159 [2022-11-23 13:53:19,003 INFO L226 Difference]: Without dead ends: 158 [2022-11-23 13:53:19,005 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-23 13:53:19,008 INFO L413 NwaCegarLoop]: 150 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 24 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 150 SdHoareTripleChecker+Invalid, 24 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 24 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 13:53:19,009 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 150 Invalid, 24 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 24 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 13:53:19,028 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 158 states. [2022-11-23 13:53:19,059 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 158 to 158. [2022-11-23 13:53:19,065 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 158 states, 76 states have (on average 2.1184210526315788) internal successors, (161), 150 states have internal predecessors, (161), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2022-11-23 13:53:19,075 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 158 states to 158 states and 173 transitions. [2022-11-23 13:53:19,078 INFO L78 Accepts]: Start accepts. Automaton has 158 states and 173 transitions. Word has length 3 [2022-11-23 13:53:19,078 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:53:19,079 INFO L495 AbstractCegarLoop]: Abstraction has 158 states and 173 transitions. [2022-11-23 13:53:19,079 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 13:53:19,079 INFO L276 IsEmpty]: Start isEmpty. Operand 158 states and 173 transitions. [2022-11-23 13:53:19,080 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 6 [2022-11-23 13:53:19,080 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:53:19,080 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1] [2022-11-23 13:53:19,080 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-23 13:53:19,082 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting zalloc_or_dieErr0ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:53:19,083 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:53:19,084 INFO L85 PathProgramCache]: Analyzing trace with hash 334806497, now seen corresponding path program 1 times [2022-11-23 13:53:19,084 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:53:19,084 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [536347289] [2022-11-23 13:53:19,084 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:19,085 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:53:19,119 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:53:19,134 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1433796575] [2022-11-23 13:53:19,134 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:19,135 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:53:19,135 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:53:19,149 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:53:19,174 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-23 13:53:19,273 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:53:19,275 INFO L263 TraceCheckSpWp]: Trace formula consists of 85 conjuncts, 6 conjunts are in the unsatisfiable core [2022-11-23 13:53:19,280 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:53:19,360 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 13:53:19,371 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 13:53:19,371 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-23 13:53:19,372 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:53:19,372 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [536347289] [2022-11-23 13:53:19,374 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:53:19,379 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1433796575] [2022-11-23 13:53:19,380 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1433796575] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 13:53:19,380 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 13:53:19,380 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-23 13:53:19,382 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1681982340] [2022-11-23 13:53:19,383 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 13:53:19,386 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-23 13:53:19,388 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:53:19,389 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-23 13:53:19,389 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 13:53:19,390 INFO L87 Difference]: Start difference. First operand 158 states and 173 transitions. Second operand has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 13:53:19,623 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:53:19,623 INFO L93 Difference]: Finished difference Result 157 states and 172 transitions. [2022-11-23 13:53:19,624 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-23 13:53:19,624 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 5 [2022-11-23 13:53:19,624 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:53:19,626 INFO L225 Difference]: With dead ends: 157 [2022-11-23 13:53:19,626 INFO L226 Difference]: Without dead ends: 157 [2022-11-23 13:53:19,626 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 13:53:19,627 INFO L413 NwaCegarLoop]: 145 mSDtfsCounter, 5 mSDsluCounter, 92 mSDsCounter, 0 mSdLazyCounter, 101 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 5 SdHoareTripleChecker+Valid, 237 SdHoareTripleChecker+Invalid, 101 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 101 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-23 13:53:19,628 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [5 Valid, 237 Invalid, 101 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 101 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-23 13:53:19,629 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 157 states. [2022-11-23 13:53:19,641 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 157 to 157. [2022-11-23 13:53:19,647 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 157 states, 76 states have (on average 2.1052631578947367) internal successors, (160), 149 states have internal predecessors, (160), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2022-11-23 13:53:19,651 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 157 states to 157 states and 172 transitions. [2022-11-23 13:53:19,656 INFO L78 Accepts]: Start accepts. Automaton has 157 states and 172 transitions. Word has length 5 [2022-11-23 13:53:19,657 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:53:19,657 INFO L495 AbstractCegarLoop]: Abstraction has 157 states and 172 transitions. [2022-11-23 13:53:19,657 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 13:53:19,657 INFO L276 IsEmpty]: Start isEmpty. Operand 157 states and 172 transitions. [2022-11-23 13:53:19,658 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 7 [2022-11-23 13:53:19,658 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:53:19,658 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1] [2022-11-23 13:53:19,673 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-23 13:53:19,865 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:53:19,866 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting zalloc_or_dieErr1ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:53:19,866 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:53:19,866 INFO L85 PathProgramCache]: Analyzing trace with hash 1789067145, now seen corresponding path program 1 times [2022-11-23 13:53:19,867 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:53:19,867 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1215401240] [2022-11-23 13:53:19,867 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:19,867 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:53:19,880 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:53:19,881 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [624105071] [2022-11-23 13:53:19,881 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:19,881 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:53:19,882 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:53:19,883 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:53:19,902 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-23 13:53:19,983 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:53:19,984 INFO L263 TraceCheckSpWp]: Trace formula consists of 87 conjuncts, 20 conjunts are in the unsatisfiable core [2022-11-23 13:53:19,987 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:53:20,049 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 8 treesize of output 7 [2022-11-23 13:53:20,077 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 13:53:20,077 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-23 13:53:20,078 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:53:20,078 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1215401240] [2022-11-23 13:53:20,078 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:53:20,078 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [624105071] [2022-11-23 13:53:20,078 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [624105071] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 13:53:20,078 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 13:53:20,079 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-23 13:53:20,079 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1088676602] [2022-11-23 13:53:20,079 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 13:53:20,079 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-23 13:53:20,080 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:53:20,080 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-23 13:53:20,080 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-23 13:53:20,080 INFO L87 Difference]: Start difference. First operand 157 states and 172 transitions. Second operand has 4 states, 3 states have (on average 1.6666666666666667) internal successors, (5), 3 states have internal predecessors, (5), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 13:53:20,306 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:53:20,306 INFO L93 Difference]: Finished difference Result 162 states and 177 transitions. [2022-11-23 13:53:20,307 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-23 13:53:20,307 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 1.6666666666666667) internal successors, (5), 3 states have internal predecessors, (5), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 6 [2022-11-23 13:53:20,307 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:53:20,312 INFO L225 Difference]: With dead ends: 162 [2022-11-23 13:53:20,313 INFO L226 Difference]: Without dead ends: 162 [2022-11-23 13:53:20,314 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-23 13:53:20,315 INFO L413 NwaCegarLoop]: 140 mSDtfsCounter, 8 mSDsluCounter, 243 mSDsCounter, 0 mSdLazyCounter, 128 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 383 SdHoareTripleChecker+Invalid, 132 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 128 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-23 13:53:20,317 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 383 Invalid, 132 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 128 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-23 13:53:20,320 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 162 states. [2022-11-23 13:53:20,330 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 162 to 162. [2022-11-23 13:53:20,337 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 162 states, 80 states have (on average 2.0625) internal successors, (165), 153 states have internal predecessors, (165), 6 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2022-11-23 13:53:20,340 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 162 states to 162 states and 177 transitions. [2022-11-23 13:53:20,341 INFO L78 Accepts]: Start accepts. Automaton has 162 states and 177 transitions. Word has length 6 [2022-11-23 13:53:20,341 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:53:20,343 INFO L495 AbstractCegarLoop]: Abstraction has 162 states and 177 transitions. [2022-11-23 13:53:20,344 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 1.6666666666666667) internal successors, (5), 3 states have internal predecessors, (5), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 13:53:20,344 INFO L276 IsEmpty]: Start isEmpty. Operand 162 states and 177 transitions. [2022-11-23 13:53:20,346 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 46 [2022-11-23 13:53:20,347 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:53:20,347 INFO L195 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:53:20,354 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-23 13:53:20,553 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:53:20,553 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting zalloc_or_dieErr1ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:53:20,553 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:53:20,554 INFO L85 PathProgramCache]: Analyzing trace with hash -448372376, now seen corresponding path program 1 times [2022-11-23 13:53:20,554 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:53:20,554 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1236156536] [2022-11-23 13:53:20,554 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:20,554 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:53:20,635 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:53:20,645 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [2057651151] [2022-11-23 13:53:20,646 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:20,646 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:53:20,646 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:53:20,655 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:53:20,682 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-23 13:53:20,870 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:53:20,875 INFO L263 TraceCheckSpWp]: Trace formula consists of 499 conjuncts, 19 conjunts are in the unsatisfiable core [2022-11-23 13:53:20,881 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:53:21,002 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 13:53:21,126 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2022-11-23 13:53:21,355 INFO L134 CoverageAnalysis]: Checked inductivity of 65 backedges. 47 proven. 0 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2022-11-23 13:53:21,355 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-23 13:53:21,355 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:53:21,356 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1236156536] [2022-11-23 13:53:21,356 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:53:21,356 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2057651151] [2022-11-23 13:53:21,357 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2057651151] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 13:53:21,357 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 13:53:21,357 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2022-11-23 13:53:21,357 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [114361888] [2022-11-23 13:53:21,357 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 13:53:21,358 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-23 13:53:21,359 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:53:21,359 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-23 13:53:21,360 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2022-11-23 13:53:21,361 INFO L87 Difference]: Start difference. First operand 162 states and 177 transitions. Second operand has 5 states, 4 states have (on average 6.0) internal successors, (24), 5 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2022-11-23 13:53:23,471 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:53:25,116 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:53:25,117 INFO L93 Difference]: Finished difference Result 166 states and 181 transitions. [2022-11-23 13:53:25,117 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-23 13:53:25,118 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 6.0) internal successors, (24), 5 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) Word has length 45 [2022-11-23 13:53:25,118 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:53:25,119 INFO L225 Difference]: With dead ends: 166 [2022-11-23 13:53:25,119 INFO L226 Difference]: Without dead ends: 164 [2022-11-23 13:53:25,119 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 46 GetRequests, 41 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=17, Invalid=25, Unknown=0, NotChecked=0, Total=42 [2022-11-23 13:53:25,120 INFO L413 NwaCegarLoop]: 139 mSDtfsCounter, 7 mSDsluCounter, 363 mSDsCounter, 0 mSdLazyCounter, 178 mSolverCounterSat, 5 mSolverCounterUnsat, 2 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 7 SdHoareTripleChecker+Valid, 502 SdHoareTripleChecker+Invalid, 185 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 178 IncrementalHoareTripleChecker+Invalid, 2 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.6s IncrementalHoareTripleChecker+Time [2022-11-23 13:53:25,120 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [7 Valid, 502 Invalid, 185 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 178 Invalid, 2 Unknown, 0 Unchecked, 3.6s Time] [2022-11-23 13:53:25,121 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 164 states. [2022-11-23 13:53:25,129 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 164 to 164. [2022-11-23 13:53:25,130 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 164 states, 82 states have (on average 2.0365853658536586) internal successors, (167), 155 states have internal predecessors, (167), 6 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2022-11-23 13:53:25,131 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 164 states to 164 states and 179 transitions. [2022-11-23 13:53:25,131 INFO L78 Accepts]: Start accepts. Automaton has 164 states and 179 transitions. Word has length 45 [2022-11-23 13:53:25,131 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:53:25,131 INFO L495 AbstractCegarLoop]: Abstraction has 164 states and 179 transitions. [2022-11-23 13:53:25,132 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 6.0) internal successors, (24), 5 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2022-11-23 13:53:25,132 INFO L276 IsEmpty]: Start isEmpty. Operand 164 states and 179 transitions. [2022-11-23 13:53:25,139 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 51 [2022-11-23 13:53:25,140 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:53:25,140 INFO L195 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:53:25,151 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-23 13:53:25,340 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:53:25,341 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting zalloc_or_dieErr1ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:53:25,341 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:53:25,341 INFO L85 PathProgramCache]: Analyzing trace with hash -706190496, now seen corresponding path program 1 times [2022-11-23 13:53:25,342 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:53:25,342 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [922864427] [2022-11-23 13:53:25,342 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:25,342 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:53:25,378 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:53:25,378 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1559579046] [2022-11-23 13:53:25,378 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:25,379 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:53:25,379 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:53:25,380 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:53:25,384 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-11-23 13:53:25,662 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:53:25,667 INFO L263 TraceCheckSpWp]: Trace formula consists of 574 conjuncts, 25 conjunts are in the unsatisfiable core [2022-11-23 13:53:25,671 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:53:25,709 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 13:53:25,749 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:53:25,846 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 60 proven. 3 refuted. 0 times theorem prover too weak. 37 trivial. 0 not checked. [2022-11-23 13:53:25,846 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:53:26,184 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 22 proven. 22 refuted. 0 times theorem prover too weak. 56 trivial. 0 not checked. [2022-11-23 13:53:26,184 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:53:26,184 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [922864427] [2022-11-23 13:53:26,185 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:53:26,185 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1559579046] [2022-11-23 13:53:26,185 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1559579046] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 13:53:26,185 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1576864820] [2022-11-23 13:53:26,211 INFO L159 IcfgInterpreter]: Started Sifa with 23 locations of interest [2022-11-23 13:53:26,211 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:53:26,215 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:53:26,221 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:53:26,221 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:53:26,319 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:53:26,329 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:53:26,357 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:26,369 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:26,382 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:26,474 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 13:53:26,500 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 13:53:26,523 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 13:53:26,605 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:26,614 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:26,624 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:26,671 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:26,679 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:26,725 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:26,734 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:27,847 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 13:53:27,918 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:53:27,957 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:53:28,096 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:28,134 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:28,185 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:28,248 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:28,259 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:28,271 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:28,308 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:53:33,752 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSifa [1576864820] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 13:53:33,753 INFO L184 FreeRefinementEngine]: Found 1 perfect and 2 imperfect interpolant sequences. [2022-11-23 13:53:33,753 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [20] imperfect sequences [7, 6] total 31 [2022-11-23 13:53:33,753 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1267408596] [2022-11-23 13:53:33,754 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 13:53:33,754 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2022-11-23 13:53:33,754 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:53:33,755 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2022-11-23 13:53:33,755 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=139, Invalid=791, Unknown=0, NotChecked=0, Total=930 [2022-11-23 13:53:33,755 INFO L87 Difference]: Start difference. First operand 164 states and 179 transitions. Second operand has 22 states, 14 states have (on average 1.2142857142857142) internal successors, (17), 15 states have internal predecessors, (17), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-23 13:53:36,389 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:53:36,389 INFO L93 Difference]: Finished difference Result 331 states and 361 transitions. [2022-11-23 13:53:36,390 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2022-11-23 13:53:36,390 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 14 states have (on average 1.2142857142857142) internal successors, (17), 15 states have internal predecessors, (17), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) Word has length 50 [2022-11-23 13:53:36,391 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:53:36,392 INFO L225 Difference]: With dead ends: 331 [2022-11-23 13:53:36,393 INFO L226 Difference]: Without dead ends: 331 [2022-11-23 13:53:36,393 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 150 GetRequests, 112 SyntacticMatches, 7 SemanticMatches, 31 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 239 ImplicationChecksByTransitivity, 6.1s TimeCoverageRelationStatistics Valid=155, Invalid=901, Unknown=0, NotChecked=0, Total=1056 [2022-11-23 13:53:36,394 INFO L413 NwaCegarLoop]: 83 mSDtfsCounter, 457 mSDsluCounter, 778 mSDsCounter, 0 mSdLazyCounter, 1263 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 462 SdHoareTripleChecker+Valid, 861 SdHoareTripleChecker+Invalid, 1271 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 1263 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.0s IncrementalHoareTripleChecker+Time [2022-11-23 13:53:36,394 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [462 Valid, 861 Invalid, 1271 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 1263 Invalid, 0 Unknown, 0 Unchecked, 2.0s Time] [2022-11-23 13:53:36,395 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 331 states. [2022-11-23 13:53:36,410 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 331 to 209. [2022-11-23 13:53:36,420 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 209 states, 119 states have (on average 1.9831932773109244) internal successors, (236), 192 states have internal predecessors, (236), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 13:53:36,421 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 209 states to 209 states and 260 transitions. [2022-11-23 13:53:36,423 INFO L78 Accepts]: Start accepts. Automaton has 209 states and 260 transitions. Word has length 50 [2022-11-23 13:53:36,424 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:53:36,424 INFO L495 AbstractCegarLoop]: Abstraction has 209 states and 260 transitions. [2022-11-23 13:53:36,424 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 14 states have (on average 1.2142857142857142) internal successors, (17), 15 states have internal predecessors, (17), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-23 13:53:36,424 INFO L276 IsEmpty]: Start isEmpty. Operand 209 states and 260 transitions. [2022-11-23 13:53:36,425 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 55 [2022-11-23 13:53:36,427 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:53:36,427 INFO L195 NwaCegarLoop]: trace histogram [6, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:53:36,447 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-11-23 13:53:36,647 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:53:36,648 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:53:36,648 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:53:36,648 INFO L85 PathProgramCache]: Analyzing trace with hash 451242709, now seen corresponding path program 1 times [2022-11-23 13:53:36,649 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:53:36,650 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2054202135] [2022-11-23 13:53:36,650 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:36,650 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:53:36,699 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:53:36,701 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [2077808298] [2022-11-23 13:53:36,701 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:36,701 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:53:36,701 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:53:36,702 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:53:36,711 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2022-11-23 13:53:36,907 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:53:36,910 INFO L263 TraceCheckSpWp]: Trace formula consists of 617 conjuncts, 22 conjunts are in the unsatisfiable core [2022-11-23 13:53:36,917 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:53:36,975 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_219 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_219))) is different from true [2022-11-23 13:53:37,041 INFO L321 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2022-11-23 13:53:37,042 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2022-11-23 13:53:37,055 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 61 proven. 6 refuted. 0 times theorem prover too weak. 58 trivial. 1 not checked. [2022-11-23 13:53:37,055 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:53:37,263 INFO L321 Elim1Store]: treesize reduction 5, result has 37.5 percent of original size [2022-11-23 13:53:37,264 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 11 [2022-11-23 13:53:37,284 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 61 proven. 7 refuted. 0 times theorem prover too weak. 58 trivial. 0 not checked. [2022-11-23 13:53:37,284 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:53:37,285 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2054202135] [2022-11-23 13:53:37,285 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:53:37,285 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2077808298] [2022-11-23 13:53:37,285 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2077808298] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 13:53:37,285 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [224292841] [2022-11-23 13:53:37,288 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-23 13:53:37,288 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:53:37,288 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:53:37,289 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:53:37,289 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:53:37,320 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:53:37,328 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:53:37,349 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:37,359 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:37,369 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:37,424 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 13:53:37,439 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 13:53:37,454 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 13:53:37,532 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:37,539 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:37,546 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:37,577 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:37,582 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:37,616 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:37,628 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:38,829 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 13:53:38,885 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:53:38,914 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:53:39,024 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:53:39,044 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:53:39,073 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:53:39,162 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:39,171 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:39,182 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:39,199 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:53:45,635 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '2825#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1)) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 13:53:45,635 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 13:53:45,636 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-23 13:53:45,636 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 8] total 11 [2022-11-23 13:53:45,636 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1988051082] [2022-11-23 13:53:45,636 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-23 13:53:45,637 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2022-11-23 13:53:45,637 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:53:45,637 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2022-11-23 13:53:45,638 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=152, Invalid=907, Unknown=1, NotChecked=62, Total=1122 [2022-11-23 13:53:45,639 INFO L87 Difference]: Start difference. First operand 209 states and 260 transitions. Second operand has 12 states, 10 states have (on average 3.2) internal successors, (32), 10 states have internal predecessors, (32), 2 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-11-23 13:53:46,227 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:53:46,227 INFO L93 Difference]: Finished difference Result 240 states and 292 transitions. [2022-11-23 13:53:46,228 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-11-23 13:53:46,229 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 10 states have (on average 3.2) internal successors, (32), 10 states have internal predecessors, (32), 2 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) Word has length 54 [2022-11-23 13:53:46,229 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:53:46,230 INFO L225 Difference]: With dead ends: 240 [2022-11-23 13:53:46,230 INFO L226 Difference]: Without dead ends: 240 [2022-11-23 13:53:46,231 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 166 GetRequests, 121 SyntacticMatches, 9 SemanticMatches, 36 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 264 ImplicationChecksByTransitivity, 6.6s TimeCoverageRelationStatistics Valid=182, Invalid=1153, Unknown=1, NotChecked=70, Total=1406 [2022-11-23 13:53:46,232 INFO L413 NwaCegarLoop]: 123 mSDtfsCounter, 100 mSDsluCounter, 658 mSDsCounter, 0 mSdLazyCounter, 612 mSolverCounterSat, 18 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 100 SdHoareTripleChecker+Valid, 781 SdHoareTripleChecker+Invalid, 837 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 18 IncrementalHoareTripleChecker+Valid, 612 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 207 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2022-11-23 13:53:46,232 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [100 Valid, 781 Invalid, 837 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [18 Valid, 612 Invalid, 0 Unknown, 207 Unchecked, 0.5s Time] [2022-11-23 13:53:46,233 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 240 states. [2022-11-23 13:53:46,248 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 240 to 207. [2022-11-23 13:53:46,257 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 207 states, 119 states have (on average 1.949579831932773) internal successors, (232), 190 states have internal predecessors, (232), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 13:53:46,259 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 207 states to 207 states and 256 transitions. [2022-11-23 13:53:46,259 INFO L78 Accepts]: Start accepts. Automaton has 207 states and 256 transitions. Word has length 54 [2022-11-23 13:53:46,260 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:53:46,260 INFO L495 AbstractCegarLoop]: Abstraction has 207 states and 256 transitions. [2022-11-23 13:53:46,260 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 10 states have (on average 3.2) internal successors, (32), 10 states have internal predecessors, (32), 2 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-11-23 13:53:46,260 INFO L276 IsEmpty]: Start isEmpty. Operand 207 states and 256 transitions. [2022-11-23 13:53:46,261 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 55 [2022-11-23 13:53:46,261 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:53:46,261 INFO L195 NwaCegarLoop]: trace histogram [6, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:53:46,275 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2022-11-23 13:53:46,468 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5,6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:53:46,469 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:53:46,469 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:53:46,469 INFO L85 PathProgramCache]: Analyzing trace with hash 451242710, now seen corresponding path program 1 times [2022-11-23 13:53:46,469 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:53:46,470 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1611272708] [2022-11-23 13:53:46,470 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:46,470 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:53:46,510 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:53:46,511 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1896833225] [2022-11-23 13:53:46,511 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:46,512 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:53:46,512 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:53:46,513 INFO L229 MonitoredProcess]: Starting monitored process 7 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:53:46,543 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2022-11-23 13:53:46,803 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:53:46,806 INFO L263 TraceCheckSpWp]: Trace formula consists of 617 conjuncts, 25 conjunts are in the unsatisfiable core [2022-11-23 13:53:46,811 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:53:46,831 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 13:53:46,855 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:53:46,910 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 85 proven. 5 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2022-11-23 13:53:46,911 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:53:47,142 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 14 proven. 22 refuted. 0 times theorem prover too weak. 90 trivial. 0 not checked. [2022-11-23 13:53:47,142 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:53:47,142 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1611272708] [2022-11-23 13:53:47,142 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:53:47,142 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1896833225] [2022-11-23 13:53:47,143 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1896833225] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 13:53:47,143 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [108255210] [2022-11-23 13:53:47,147 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-23 13:53:47,147 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:53:47,148 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:53:47,148 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:53:47,149 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:53:47,187 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:53:47,194 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:53:47,218 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:47,229 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:47,240 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:47,321 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 13:53:47,336 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 13:53:47,353 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 13:53:47,405 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:47,412 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:47,418 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:47,448 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:47,458 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:47,492 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:47,501 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:48,610 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 13:53:48,653 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:53:48,674 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:53:48,783 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:48,827 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:48,848 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:48,911 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:48,920 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:48,934 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:48,948 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:53:55,148 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '3633#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (< (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 13:53:55,149 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 13:53:55,149 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-23 13:53:55,149 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 6] total 11 [2022-11-23 13:53:55,149 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1774786721] [2022-11-23 13:53:55,149 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-23 13:53:55,150 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2022-11-23 13:53:55,150 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:53:55,150 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2022-11-23 13:53:55,151 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=162, Invalid=894, Unknown=0, NotChecked=0, Total=1056 [2022-11-23 13:53:55,151 INFO L87 Difference]: Start difference. First operand 207 states and 256 transitions. Second operand has 11 states, 9 states have (on average 3.7777777777777777) internal successors, (34), 11 states have internal predecessors, (34), 2 states have call successors, (9), 2 states have call predecessors, (9), 4 states have return successors, (10), 2 states have call predecessors, (10), 2 states have call successors, (10) [2022-11-23 13:53:55,708 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:53:55,708 INFO L93 Difference]: Finished difference Result 227 states and 280 transitions. [2022-11-23 13:53:55,709 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-11-23 13:53:55,709 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 9 states have (on average 3.7777777777777777) internal successors, (34), 11 states have internal predecessors, (34), 2 states have call successors, (9), 2 states have call predecessors, (9), 4 states have return successors, (10), 2 states have call predecessors, (10), 2 states have call successors, (10) Word has length 54 [2022-11-23 13:53:55,709 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:53:55,711 INFO L225 Difference]: With dead ends: 227 [2022-11-23 13:53:55,711 INFO L226 Difference]: Without dead ends: 219 [2022-11-23 13:53:55,712 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 166 GetRequests, 123 SyntacticMatches, 6 SemanticMatches, 37 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 395 ImplicationChecksByTransitivity, 6.4s TimeCoverageRelationStatistics Valid=215, Invalid=1267, Unknown=0, NotChecked=0, Total=1482 [2022-11-23 13:53:55,713 INFO L413 NwaCegarLoop]: 137 mSDtfsCounter, 17 mSDsluCounter, 591 mSDsCounter, 0 mSdLazyCounter, 286 mSolverCounterSat, 14 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 17 SdHoareTripleChecker+Valid, 728 SdHoareTripleChecker+Invalid, 300 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 14 IncrementalHoareTripleChecker+Valid, 286 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2022-11-23 13:53:55,713 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [17 Valid, 728 Invalid, 300 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [14 Valid, 286 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2022-11-23 13:53:55,714 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 219 states. [2022-11-23 13:53:55,721 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 219 to 219. [2022-11-23 13:53:55,721 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 219 states, 131 states have (on average 1.8625954198473282) internal successors, (244), 202 states have internal predecessors, (244), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 13:53:55,723 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 219 states to 219 states and 268 transitions. [2022-11-23 13:53:55,723 INFO L78 Accepts]: Start accepts. Automaton has 219 states and 268 transitions. Word has length 54 [2022-11-23 13:53:55,724 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:53:55,724 INFO L495 AbstractCegarLoop]: Abstraction has 219 states and 268 transitions. [2022-11-23 13:53:55,724 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 9 states have (on average 3.7777777777777777) internal successors, (34), 11 states have internal predecessors, (34), 2 states have call successors, (9), 2 states have call predecessors, (9), 4 states have return successors, (10), 2 states have call predecessors, (10), 2 states have call successors, (10) [2022-11-23 13:53:55,724 INFO L276 IsEmpty]: Start isEmpty. Operand 219 states and 268 transitions. [2022-11-23 13:53:55,726 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 73 [2022-11-23 13:53:55,726 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:53:55,726 INFO L195 NwaCegarLoop]: trace histogram [24, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:53:55,740 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2022-11-23 13:53:55,934 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 7 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable6 [2022-11-23 13:53:55,934 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:53:55,937 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:53:55,937 INFO L85 PathProgramCache]: Analyzing trace with hash 542831516, now seen corresponding path program 2 times [2022-11-23 13:53:55,937 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:53:55,937 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [962833166] [2022-11-23 13:53:55,938 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:53:55,938 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:53:55,986 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:53:55,987 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [470213036] [2022-11-23 13:53:55,987 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-23 13:53:55,987 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:53:55,987 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:53:55,988 INFO L229 MonitoredProcess]: Starting monitored process 8 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:53:56,014 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2022-11-23 13:53:56,345 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 3 check-sat command(s) [2022-11-23 13:53:56,345 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-23 13:53:56,348 INFO L263 TraceCheckSpWp]: Trace formula consists of 365 conjuncts, 27 conjunts are in the unsatisfiable core [2022-11-23 13:53:56,351 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:53:56,387 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 13:53:56,424 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 22 treesize of output 16 [2022-11-23 13:53:56,580 INFO L134 CoverageAnalysis]: Checked inductivity of 495 backedges. 140 proven. 10 refuted. 0 times theorem prover too weak. 345 trivial. 0 not checked. [2022-11-23 13:53:56,580 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:53:57,046 INFO L134 CoverageAnalysis]: Checked inductivity of 495 backedges. 140 proven. 10 refuted. 0 times theorem prover too weak. 345 trivial. 0 not checked. [2022-11-23 13:53:57,046 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:53:57,046 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [962833166] [2022-11-23 13:53:57,047 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:53:57,047 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [470213036] [2022-11-23 13:53:57,047 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [470213036] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 13:53:57,047 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [989829271] [2022-11-23 13:53:57,049 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-23 13:53:57,050 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:53:57,050 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:53:57,050 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:53:57,050 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:53:57,077 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:53:57,083 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:53:57,102 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:53:57,110 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:53:57,120 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:53:57,188 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 13:53:57,189 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-23 13:53:57,224 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 13:53:57,225 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 13:53:57,255 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 13:53:57,256 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-23 13:53:57,370 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:57,377 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:57,389 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:57,469 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:57,477 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:57,545 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:57,551 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:53:59,086 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 13:53:59,126 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:53:59,147 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:53:59,249 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:53:59,281 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:53:59,322 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:53:59,385 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:53:59,398 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:59,408 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:53:59,421 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:54:06,263 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4555#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (< (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 13:54:06,264 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 13:54:06,264 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-23 13:54:06,264 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 9] total 16 [2022-11-23 13:54:06,264 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1762539103] [2022-11-23 13:54:06,264 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-23 13:54:06,264 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 16 states [2022-11-23 13:54:06,265 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:54:06,266 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 16 interpolants. [2022-11-23 13:54:06,267 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=202, Invalid=1204, Unknown=0, NotChecked=0, Total=1406 [2022-11-23 13:54:06,267 INFO L87 Difference]: Start difference. First operand 219 states and 268 transitions. Second operand has 16 states, 14 states have (on average 2.357142857142857) internal successors, (33), 16 states have internal predecessors, (33), 1 states have call successors, (6), 1 states have call predecessors, (6), 3 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) [2022-11-23 13:54:08,749 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:54:08,749 INFO L93 Difference]: Finished difference Result 239 states and 296 transitions. [2022-11-23 13:54:08,750 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2022-11-23 13:54:08,750 INFO L78 Accepts]: Start accepts. Automaton has has 16 states, 14 states have (on average 2.357142857142857) internal successors, (33), 16 states have internal predecessors, (33), 1 states have call successors, (6), 1 states have call predecessors, (6), 3 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) Word has length 72 [2022-11-23 13:54:08,750 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:54:08,751 INFO L225 Difference]: With dead ends: 239 [2022-11-23 13:54:08,752 INFO L226 Difference]: Without dead ends: 233 [2022-11-23 13:54:08,753 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 232 GetRequests, 172 SyntacticMatches, 6 SemanticMatches, 54 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 818 ImplicationChecksByTransitivity, 9.0s TimeCoverageRelationStatistics Valid=465, Invalid=2615, Unknown=0, NotChecked=0, Total=3080 [2022-11-23 13:54:08,753 INFO L413 NwaCegarLoop]: 136 mSDtfsCounter, 73 mSDsluCounter, 974 mSDsCounter, 0 mSdLazyCounter, 451 mSolverCounterSat, 35 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 73 SdHoareTripleChecker+Valid, 1110 SdHoareTripleChecker+Invalid, 486 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 35 IncrementalHoareTripleChecker+Valid, 451 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2022-11-23 13:54:08,754 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [73 Valid, 1110 Invalid, 486 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [35 Valid, 451 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2022-11-23 13:54:08,755 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 233 states. [2022-11-23 13:54:08,760 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 233 to 233. [2022-11-23 13:54:08,761 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 233 states, 145 states have (on average 1.7793103448275862) internal successors, (258), 216 states have internal predecessors, (258), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 13:54:08,762 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 233 states to 233 states and 282 transitions. [2022-11-23 13:54:08,763 INFO L78 Accepts]: Start accepts. Automaton has 233 states and 282 transitions. Word has length 72 [2022-11-23 13:54:08,763 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:54:08,763 INFO L495 AbstractCegarLoop]: Abstraction has 233 states and 282 transitions. [2022-11-23 13:54:08,763 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 16 states, 14 states have (on average 2.357142857142857) internal successors, (33), 16 states have internal predecessors, (33), 1 states have call successors, (6), 1 states have call predecessors, (6), 3 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) [2022-11-23 13:54:08,764 INFO L276 IsEmpty]: Start isEmpty. Operand 233 states and 282 transitions. [2022-11-23 13:54:08,765 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 84 [2022-11-23 13:54:08,765 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:54:08,765 INFO L195 NwaCegarLoop]: trace histogram [35, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:54:08,780 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Forceful destruction successful, exit code 0 [2022-11-23 13:54:08,972 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,8 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:54:08,972 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:54:08,973 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:54:08,973 INFO L85 PathProgramCache]: Analyzing trace with hash -296064156, now seen corresponding path program 3 times [2022-11-23 13:54:08,973 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:54:08,973 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1320069660] [2022-11-23 13:54:08,973 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:54:08,973 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:54:09,027 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:54:09,027 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1993726165] [2022-11-23 13:54:09,028 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-23 13:54:09,028 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:54:09,028 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:54:09,029 INFO L229 MonitoredProcess]: Starting monitored process 9 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:54:09,054 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2022-11-23 13:54:13,336 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-23 13:54:13,336 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-23 13:54:13,344 INFO L263 TraceCheckSpWp]: Trace formula consists of 1052 conjuncts, 47 conjunts are in the unsatisfiable core [2022-11-23 13:54:13,349 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:54:13,366 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 13:54:13,378 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 13:54:13,542 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~ptr~0#1.base| Int)) (and (exists ((v_ArrVal_1083 Int)) (= (store |c_old(#length)| |zalloc_or_die_calloc_model_~ptr~0#1.base| v_ArrVal_1083) |c_#length|)) (= (select |c_old(#valid)| |zalloc_or_die_calloc_model_~ptr~0#1.base|) 0))) is different from true [2022-11-23 13:54:13,631 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:54:13,632 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 14 [2022-11-23 13:54:13,641 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-23 13:54:13,642 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-23 13:54:13,661 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 437 proven. 0 refuted. 0 times theorem prover too weak. 374 trivial. 69 not checked. [2022-11-23 13:54:13,662 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:54:13,789 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:54:13,789 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1320069660] [2022-11-23 13:54:13,790 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:54:13,790 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1993726165] [2022-11-23 13:54:13,790 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1993726165] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 13:54:13,790 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2025908057] [2022-11-23 13:54:13,793 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-23 13:54:13,793 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:54:13,793 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:54:13,793 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:54:13,793 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:54:13,823 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:54:13,832 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:54:13,854 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:54:13,965 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:54:14,075 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:54:14,147 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 13:54:14,148 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 182 treesize of output 185 [2022-11-23 13:54:14,240 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 13:54:14,241 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 13:54:14,321 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 13:54:14,321 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 176 treesize of output 179 [2022-11-23 13:54:14,457 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:14,467 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:54:14,475 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:14,547 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:54:14,553 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:54:14,596 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:54:14,605 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:54:15,996 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 13:54:16,034 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:54:16,056 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:54:16,164 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:54:16,226 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:54:16,286 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:54:16,355 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:16,366 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:16,378 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:54:16,390 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:54:22,812 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '5349#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (< (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 13:54:22,812 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 13:54:22,813 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 13:54:22,813 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9] total 9 [2022-11-23 13:54:22,813 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1384668978] [2022-11-23 13:54:22,813 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 13:54:22,813 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2022-11-23 13:54:22,814 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:54:22,814 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2022-11-23 13:54:22,814 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=151, Invalid=908, Unknown=1, NotChecked=62, Total=1122 [2022-11-23 13:54:22,815 INFO L87 Difference]: Start difference. First operand 233 states and 282 transitions. Second operand has 10 states, 7 states have (on average 3.857142857142857) internal successors, (27), 7 states have internal predecessors, (27), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 13:54:23,740 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:54:23,740 INFO L93 Difference]: Finished difference Result 282 states and 339 transitions. [2022-11-23 13:54:23,741 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2022-11-23 13:54:23,741 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 7 states have (on average 3.857142857142857) internal successors, (27), 7 states have internal predecessors, (27), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) Word has length 83 [2022-11-23 13:54:23,741 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:54:23,744 INFO L225 Difference]: With dead ends: 282 [2022-11-23 13:54:23,744 INFO L226 Difference]: Without dead ends: 282 [2022-11-23 13:54:23,745 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 170 GetRequests, 129 SyntacticMatches, 6 SemanticMatches, 35 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 257 ImplicationChecksByTransitivity, 6.7s TimeCoverageRelationStatistics Valid=166, Invalid=1097, Unknown=1, NotChecked=68, Total=1332 [2022-11-23 13:54:23,746 INFO L413 NwaCegarLoop]: 93 mSDtfsCounter, 175 mSDsluCounter, 410 mSDsCounter, 0 mSdLazyCounter, 768 mSolverCounterSat, 12 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 175 SdHoareTripleChecker+Valid, 503 SdHoareTripleChecker+Invalid, 971 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 12 IncrementalHoareTripleChecker+Valid, 768 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 191 IncrementalHoareTripleChecker+Unchecked, 0.8s IncrementalHoareTripleChecker+Time [2022-11-23 13:54:23,746 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [175 Valid, 503 Invalid, 971 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [12 Valid, 768 Invalid, 0 Unknown, 191 Unchecked, 0.8s Time] [2022-11-23 13:54:23,747 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 282 states. [2022-11-23 13:54:23,757 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 282 to 231. [2022-11-23 13:54:23,757 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 231 states, 145 states have (on average 1.7517241379310344) internal successors, (254), 214 states have internal predecessors, (254), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 13:54:23,759 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 231 states to 231 states and 278 transitions. [2022-11-23 13:54:23,759 INFO L78 Accepts]: Start accepts. Automaton has 231 states and 278 transitions. Word has length 83 [2022-11-23 13:54:23,761 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:54:23,762 INFO L495 AbstractCegarLoop]: Abstraction has 231 states and 278 transitions. [2022-11-23 13:54:23,763 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 7 states have (on average 3.857142857142857) internal successors, (27), 7 states have internal predecessors, (27), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 13:54:23,763 INFO L276 IsEmpty]: Start isEmpty. Operand 231 states and 278 transitions. [2022-11-23 13:54:23,770 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 85 [2022-11-23 13:54:23,770 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:54:23,771 INFO L195 NwaCegarLoop]: trace histogram [35, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:54:23,797 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Forceful destruction successful, exit code 0 [2022-11-23 13:54:23,971 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,9 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:54:23,972 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:54:23,972 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:54:23,972 INFO L85 PathProgramCache]: Analyzing trace with hash -588044657, now seen corresponding path program 1 times [2022-11-23 13:54:23,972 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:54:23,972 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2056788272] [2022-11-23 13:54:23,972 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:54:23,972 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:54:24,039 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:54:24,049 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [136494476] [2022-11-23 13:54:24,049 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:54:24,050 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:54:24,050 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:54:24,051 INFO L229 MonitoredProcess]: Starting monitored process 10 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:54:24,082 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2022-11-23 13:54:24,487 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:54:24,494 INFO L263 TraceCheckSpWp]: Trace formula consists of 1068 conjuncts, 33 conjunts are in the unsatisfiable core [2022-11-23 13:54:24,499 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:54:24,586 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_1543 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_1543))) is different from true [2022-11-23 13:54:24,671 INFO L321 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2022-11-23 13:54:24,675 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2022-11-23 13:54:24,701 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_1544 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_1544))) is different from true [2022-11-23 13:54:24,813 INFO L321 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2022-11-23 13:54:24,813 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2022-11-23 13:54:24,831 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 449 proven. 106 refuted. 0 times theorem prover too weak. 322 trivial. 3 not checked. [2022-11-23 13:54:24,831 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:54:25,312 INFO L321 Elim1Store]: treesize reduction 5, result has 37.5 percent of original size [2022-11-23 13:54:25,313 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 11 [2022-11-23 13:54:25,332 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 449 proven. 108 refuted. 0 times theorem prover too weak. 323 trivial. 0 not checked. [2022-11-23 13:54:25,332 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:54:25,332 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2056788272] [2022-11-23 13:54:25,332 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:54:25,332 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [136494476] [2022-11-23 13:54:25,333 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [136494476] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 13:54:25,333 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [435936267] [2022-11-23 13:54:25,336 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2022-11-23 13:54:25,336 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:54:25,336 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:54:25,337 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:54:25,337 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:54:25,367 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:54:25,375 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:54:25,398 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:54:25,463 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:54:25,529 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:54:25,664 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 13:54:25,665 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-23 13:54:25,754 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 13:54:25,755 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 13:54:25,811 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 13:54:25,811 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-23 13:54:25,933 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:25,943 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:54:25,951 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:25,986 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:54:25,995 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:54:26,102 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:54:26,108 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:54:27,371 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 13:54:27,397 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:54:27,419 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:54:27,552 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 13:54:27,604 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:54:27,632 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:54:27,723 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:54:27,784 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:54:27,816 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:54:27,885 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:27,894 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:54:27,905 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:27,916 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:54:35,145 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6402#(and (not (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1)) (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 13:54:35,145 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 13:54:35,145 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-23 13:54:35,145 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 9] total 13 [2022-11-23 13:54:35,146 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [832834648] [2022-11-23 13:54:35,146 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-23 13:54:35,147 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-11-23 13:54:35,147 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:54:35,147 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-11-23 13:54:35,148 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=167, Invalid=1029, Unknown=2, NotChecked=134, Total=1332 [2022-11-23 13:54:35,148 INFO L87 Difference]: Start difference. First operand 231 states and 278 transitions. Second operand has 14 states, 12 states have (on average 2.9166666666666665) internal successors, (35), 12 states have internal predecessors, (35), 2 states have call successors, (8), 3 states have call predecessors, (8), 4 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2022-11-23 13:54:35,878 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:54:35,878 INFO L93 Difference]: Finished difference Result 260 states and 307 transitions. [2022-11-23 13:54:35,879 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-11-23 13:54:35,879 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 12 states have (on average 2.9166666666666665) internal successors, (35), 12 states have internal predecessors, (35), 2 states have call successors, (8), 3 states have call predecessors, (8), 4 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) Word has length 84 [2022-11-23 13:54:35,879 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:54:35,881 INFO L225 Difference]: With dead ends: 260 [2022-11-23 13:54:35,881 INFO L226 Difference]: Without dead ends: 260 [2022-11-23 13:54:35,882 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 259 GetRequests, 204 SyntacticMatches, 14 SemanticMatches, 41 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 334 ImplicationChecksByTransitivity, 7.6s TimeCoverageRelationStatistics Valid=205, Invalid=1441, Unknown=2, NotChecked=158, Total=1806 [2022-11-23 13:54:35,882 INFO L413 NwaCegarLoop]: 116 mSDtfsCounter, 176 mSDsluCounter, 675 mSDsCounter, 0 mSdLazyCounter, 675 mSolverCounterSat, 28 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 176 SdHoareTripleChecker+Valid, 791 SdHoareTripleChecker+Invalid, 1107 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 28 IncrementalHoareTripleChecker+Valid, 675 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 404 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2022-11-23 13:54:35,883 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [176 Valid, 791 Invalid, 1107 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [28 Valid, 675 Invalid, 0 Unknown, 404 Unchecked, 0.6s Time] [2022-11-23 13:54:35,883 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 260 states. [2022-11-23 13:54:35,889 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 260 to 228. [2022-11-23 13:54:35,890 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 228 states, 145 states have (on average 1.710344827586207) internal successors, (248), 211 states have internal predecessors, (248), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 13:54:35,891 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 228 states to 228 states and 272 transitions. [2022-11-23 13:54:35,891 INFO L78 Accepts]: Start accepts. Automaton has 228 states and 272 transitions. Word has length 84 [2022-11-23 13:54:35,891 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:54:35,891 INFO L495 AbstractCegarLoop]: Abstraction has 228 states and 272 transitions. [2022-11-23 13:54:35,892 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 12 states have (on average 2.9166666666666665) internal successors, (35), 12 states have internal predecessors, (35), 2 states have call successors, (8), 3 states have call predecessors, (8), 4 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2022-11-23 13:54:35,892 INFO L276 IsEmpty]: Start isEmpty. Operand 228 states and 272 transitions. [2022-11-23 13:54:35,893 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 85 [2022-11-23 13:54:35,893 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:54:35,893 INFO L195 NwaCegarLoop]: trace histogram [35, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:54:35,902 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Forceful destruction successful, exit code 0 [2022-11-23 13:54:36,102 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,10 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:54:36,103 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:54:36,103 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:54:36,103 INFO L85 PathProgramCache]: Analyzing trace with hash -588044656, now seen corresponding path program 1 times [2022-11-23 13:54:36,103 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:54:36,104 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [493191809] [2022-11-23 13:54:36,104 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:54:36,104 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:54:36,145 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:54:36,145 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1752571543] [2022-11-23 13:54:36,145 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:54:36,146 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:54:36,146 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:54:36,147 INFO L229 MonitoredProcess]: Starting monitored process 11 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:54:36,166 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Waiting until timeout for monitored process [2022-11-23 13:54:37,349 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:54:37,356 INFO L263 TraceCheckSpWp]: Trace formula consists of 1068 conjuncts, 73 conjunts are in the unsatisfiable core [2022-11-23 13:54:37,362 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:54:37,406 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 13:54:44,230 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (v_ArrVal_2009 Int) (v_ArrVal_2008 Int)) (and (= |c_#length| (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2009)) (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2008)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 13:54:44,543 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-23 13:54:44,543 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-23 13:54:44,605 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 13:54:44,862 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~ptr~0#1.base| Int)) (and (exists ((v_ArrVal_2010 Int)) (= (store |c_old(#length)| |zalloc_or_die_calloc_model_~ptr~0#1.base| v_ArrVal_2010) |c_#length|)) (= (select |c_old(#valid)| |zalloc_or_die_calloc_model_~ptr~0#1.base|) 0))) is different from true [2022-11-23 13:54:45,034 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:54:45,034 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 13:54:45,055 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-23 13:54:45,055 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-23 13:54:45,535 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 383 proven. 77 refuted. 0 times theorem prover too weak. 192 trivial. 228 not checked. [2022-11-23 13:54:45,535 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:54:45,799 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:54:45,800 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [493191809] [2022-11-23 13:54:45,800 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:54:45,800 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1752571543] [2022-11-23 13:54:45,800 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1752571543] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 13:54:45,800 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [107886270] [2022-11-23 13:54:45,802 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2022-11-23 13:54:45,802 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:54:45,803 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:54:45,803 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:54:45,803 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:54:45,842 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:54:45,849 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:54:45,909 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:45,955 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:45,967 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:54:46,015 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 13:54:46,029 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 13:54:46,043 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 13:54:46,091 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:46,098 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:54:46,107 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:46,134 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:54:46,140 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:54:46,178 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:54:46,184 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:54:47,068 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 13:54:47,083 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:54:47,102 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:54:47,239 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 13:54:47,297 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:54:47,331 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:54:47,436 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:54:47,489 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:54:47,538 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:54:47,590 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:47,600 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:54:47,612 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:54:47,623 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:55:25,664 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '7208#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (< (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 13:55:25,665 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 13:55:25,665 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 13:55:25,665 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19] total 19 [2022-11-23 13:55:25,665 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [859938018] [2022-11-23 13:55:25,665 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 13:55:25,666 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2022-11-23 13:55:25,666 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:55:25,666 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2022-11-23 13:55:25,667 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=189, Invalid=1620, Unknown=5, NotChecked=166, Total=1980 [2022-11-23 13:55:25,668 INFO L87 Difference]: Start difference. First operand 228 states and 272 transitions. Second operand has 20 states, 18 states have (on average 2.2777777777777777) internal successors, (41), 18 states have internal predecessors, (41), 2 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 13:55:27,699 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:55:29,720 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:55:31,993 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:55:34,240 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:55:38,437 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:55:42,600 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:56:01,133 WARN L233 SmtUtils]: Spent 8.25s on a formula simplification. DAG size of input: 56 DAG size of output: 48 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 13:56:11,993 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:56:12,056 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:56:12,057 INFO L93 Difference]: Finished difference Result 257 states and 302 transitions. [2022-11-23 13:56:12,057 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2022-11-23 13:56:12,057 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 18 states have (on average 2.2777777777777777) internal successors, (41), 18 states have internal predecessors, (41), 2 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 2 states have call successors, (6) Word has length 84 [2022-11-23 13:56:12,057 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:56:12,059 INFO L225 Difference]: With dead ends: 257 [2022-11-23 13:56:12,059 INFO L226 Difference]: Without dead ends: 257 [2022-11-23 13:56:12,060 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 182 GetRequests, 122 SyntacticMatches, 6 SemanticMatches, 54 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 655 ImplicationChecksByTransitivity, 70.9s TimeCoverageRelationStatistics Valid=270, Invalid=2590, Unknown=10, NotChecked=210, Total=3080 [2022-11-23 13:56:12,060 INFO L413 NwaCegarLoop]: 94 mSDtfsCounter, 341 mSDsluCounter, 935 mSDsCounter, 0 mSdLazyCounter, 1371 mSolverCounterSat, 21 mSolverCounterUnsat, 7 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 19.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 341 SdHoareTripleChecker+Valid, 1029 SdHoareTripleChecker+Invalid, 1769 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 21 IncrementalHoareTripleChecker+Valid, 1371 IncrementalHoareTripleChecker+Invalid, 7 IncrementalHoareTripleChecker+Unknown, 370 IncrementalHoareTripleChecker+Unchecked, 20.1s IncrementalHoareTripleChecker+Time [2022-11-23 13:56:12,061 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [341 Valid, 1029 Invalid, 1769 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [21 Valid, 1371 Invalid, 7 Unknown, 370 Unchecked, 20.1s Time] [2022-11-23 13:56:12,062 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 257 states. [2022-11-23 13:56:12,067 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 257 to 226. [2022-11-23 13:56:12,067 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 226 states, 145 states have (on average 1.6827586206896552) internal successors, (244), 209 states have internal predecessors, (244), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 13:56:12,069 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 226 states to 226 states and 268 transitions. [2022-11-23 13:56:12,069 INFO L78 Accepts]: Start accepts. Automaton has 226 states and 268 transitions. Word has length 84 [2022-11-23 13:56:12,069 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:56:12,069 INFO L495 AbstractCegarLoop]: Abstraction has 226 states and 268 transitions. [2022-11-23 13:56:12,070 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 18 states have (on average 2.2777777777777777) internal successors, (41), 18 states have internal predecessors, (41), 2 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 13:56:12,070 INFO L276 IsEmpty]: Start isEmpty. Operand 226 states and 268 transitions. [2022-11-23 13:56:12,071 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 89 [2022-11-23 13:56:12,071 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:56:12,071 INFO L195 NwaCegarLoop]: trace histogram [35, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:56:12,098 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Forceful destruction successful, exit code 0 [2022-11-23 13:56:12,293 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 11 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2022-11-23 13:56:12,294 INFO L420 AbstractCegarLoop]: === Iteration 12 === Targeting ULTIMATE.startErr8REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:56:12,294 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:56:12,294 INFO L85 PathProgramCache]: Analyzing trace with hash 1264675266, now seen corresponding path program 1 times [2022-11-23 13:56:12,294 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:56:12,294 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [413161561] [2022-11-23 13:56:12,294 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:56:12,295 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:56:12,333 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:56:12,333 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [676998189] [2022-11-23 13:56:12,333 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:56:12,334 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:56:12,334 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:56:12,335 INFO L229 MonitoredProcess]: Starting monitored process 12 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:56:12,339 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Waiting until timeout for monitored process [2022-11-23 13:56:12,741 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:56:12,747 INFO L263 TraceCheckSpWp]: Trace formula consists of 1112 conjuncts, 42 conjunts are in the unsatisfiable core [2022-11-23 13:56:12,750 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:56:12,959 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-23 13:56:12,960 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-23 13:56:13,011 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_2495 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2495)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 13:56:13,092 INFO L321 Elim1Store]: treesize reduction 36, result has 34.5 percent of original size [2022-11-23 13:56:13,092 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 3 select indices, 3 select index equivalence classes, 1 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 4 case distinctions, treesize of input 22 treesize of output 33 [2022-11-23 13:56:13,118 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_2496 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2496))) is different from true [2022-11-23 13:56:13,235 INFO L321 Elim1Store]: treesize reduction 28, result has 28.2 percent of original size [2022-11-23 13:56:13,236 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 1 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 22 [2022-11-23 13:56:13,302 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 381 proven. 175 refuted. 0 times theorem prover too weak. 175 trivial. 149 not checked. [2022-11-23 13:56:13,302 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:56:13,568 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:56:13,568 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [413161561] [2022-11-23 13:56:13,569 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:56:13,569 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [676998189] [2022-11-23 13:56:13,569 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [676998189] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 13:56:13,569 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [313671986] [2022-11-23 13:56:13,571 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-23 13:56:13,571 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:56:13,571 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:56:13,572 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:56:13,572 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:56:13,601 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:56:13,609 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:56:13,628 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:56:13,638 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:56:13,656 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:56:13,719 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 13:56:13,720 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-23 13:56:13,749 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 13:56:13,749 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 13:56:13,777 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 13:56:13,778 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-23 13:56:13,878 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:13,884 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:56:13,897 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:13,954 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:56:13,981 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:56:14,009 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:56:14,030 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:56:15,121 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:56:15,135 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 13:56:15,150 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:56:15,204 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:15,205 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 13:56:15,243 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 13:56:15,243 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 13:56:15,277 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:15,280 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 13:56:15,295 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 13:56:15,295 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 13:56:15,314 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 13:56:15,368 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 13:56:15,398 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:15,399 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:15,400 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 13:56:15,417 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 13:56:15,417 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 13:56:15,441 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:15,442 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:15,443 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 13:56:15,462 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 13:56:15,462 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 13:56:15,609 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 13:56:15,639 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:56:15,661 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:56:15,775 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:56:15,825 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:15,873 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:15,922 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:56:15,932 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:15,942 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:15,952 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:56:26,604 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '8088#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (not (= (select |#valid| |ULTIMATE.start_l3_insert_~list#1.base|) 1)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 13:56:26,605 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 13:56:26,605 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 13:56:26,605 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14] total 14 [2022-11-23 13:56:26,605 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [274686607] [2022-11-23 13:56:26,605 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 13:56:26,606 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2022-11-23 13:56:26,606 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:56:26,606 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2022-11-23 13:56:26,607 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=233, Invalid=1579, Unknown=2, NotChecked=166, Total=1980 [2022-11-23 13:56:26,607 INFO L87 Difference]: Start difference. First operand 226 states and 268 transitions. Second operand has 15 states, 12 states have (on average 3.5) internal successors, (42), 13 states have internal predecessors, (42), 3 states have call successors, (6), 2 states have call predecessors, (6), 5 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) [2022-11-23 13:56:27,858 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:56:27,859 INFO L93 Difference]: Finished difference Result 253 states and 295 transitions. [2022-11-23 13:56:27,859 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-11-23 13:56:27,859 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 12 states have (on average 3.5) internal successors, (42), 13 states have internal predecessors, (42), 3 states have call successors, (6), 2 states have call predecessors, (6), 5 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) Word has length 88 [2022-11-23 13:56:27,859 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:56:27,861 INFO L225 Difference]: With dead ends: 253 [2022-11-23 13:56:27,861 INFO L226 Difference]: Without dead ends: 253 [2022-11-23 13:56:27,862 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 209 GetRequests, 149 SyntacticMatches, 11 SemanticMatches, 49 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 580 ImplicationChecksByTransitivity, 11.2s TimeCoverageRelationStatistics Valid=277, Invalid=2081, Unknown=2, NotChecked=190, Total=2550 [2022-11-23 13:56:27,862 INFO L413 NwaCegarLoop]: 111 mSDtfsCounter, 239 mSDsluCounter, 723 mSDsCounter, 0 mSdLazyCounter, 718 mSolverCounterSat, 31 mSolverCounterUnsat, 35 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 239 SdHoareTripleChecker+Valid, 834 SdHoareTripleChecker+Invalid, 1128 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 31 IncrementalHoareTripleChecker+Valid, 718 IncrementalHoareTripleChecker+Invalid, 35 IncrementalHoareTripleChecker+Unknown, 344 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2022-11-23 13:56:27,863 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [239 Valid, 834 Invalid, 1128 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [31 Valid, 718 Invalid, 35 Unknown, 344 Unchecked, 1.0s Time] [2022-11-23 13:56:27,863 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 253 states. [2022-11-23 13:56:27,868 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 253 to 223. [2022-11-23 13:56:27,869 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 223 states, 145 states have (on average 1.6413793103448275) internal successors, (238), 206 states have internal predecessors, (238), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 13:56:27,870 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 223 states to 223 states and 262 transitions. [2022-11-23 13:56:27,870 INFO L78 Accepts]: Start accepts. Automaton has 223 states and 262 transitions. Word has length 88 [2022-11-23 13:56:27,871 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:56:27,871 INFO L495 AbstractCegarLoop]: Abstraction has 223 states and 262 transitions. [2022-11-23 13:56:27,871 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 12 states have (on average 3.5) internal successors, (42), 13 states have internal predecessors, (42), 3 states have call successors, (6), 2 states have call predecessors, (6), 5 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) [2022-11-23 13:56:27,871 INFO L276 IsEmpty]: Start isEmpty. Operand 223 states and 262 transitions. [2022-11-23 13:56:27,872 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 89 [2022-11-23 13:56:27,872 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:56:27,872 INFO L195 NwaCegarLoop]: trace histogram [35, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:56:27,883 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Forceful destruction successful, exit code 0 [2022-11-23 13:56:28,080 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 12 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable11 [2022-11-23 13:56:28,081 INFO L420 AbstractCegarLoop]: === Iteration 13 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:56:28,081 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:56:28,081 INFO L85 PathProgramCache]: Analyzing trace with hash 1264675267, now seen corresponding path program 1 times [2022-11-23 13:56:28,081 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:56:28,081 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [147608548] [2022-11-23 13:56:28,081 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:56:28,081 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:56:28,119 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:56:28,119 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1151640167] [2022-11-23 13:56:28,119 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:56:28,120 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:56:28,120 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:56:28,121 INFO L229 MonitoredProcess]: Starting monitored process 13 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:56:28,125 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Waiting until timeout for monitored process [2022-11-23 13:56:29,766 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:56:29,773 INFO L263 TraceCheckSpWp]: Trace formula consists of 1112 conjuncts, 62 conjunts are in the unsatisfiable core [2022-11-23 13:56:29,776 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:56:29,817 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 13:56:36,786 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_2984 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= |c_#length| (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2984)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 13:56:36,866 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:36,867 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 13:56:36,874 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-23 13:56:36,875 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-23 13:56:36,940 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 357 proven. 145 refuted. 0 times theorem prover too weak. 254 trivial. 124 not checked. [2022-11-23 13:56:36,940 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:56:37,050 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:56:37,051 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [147608548] [2022-11-23 13:56:37,051 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:56:37,051 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1151640167] [2022-11-23 13:56:37,051 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1151640167] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 13:56:37,051 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1767586149] [2022-11-23 13:56:37,053 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-23 13:56:37,053 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:56:37,054 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:56:37,054 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:56:37,054 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:56:37,124 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:56:37,131 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:56:37,151 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:37,193 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:56:37,231 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:37,265 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 13:56:37,276 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 13:56:37,288 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 13:56:37,333 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:56:37,339 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:37,345 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:37,366 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:56:37,372 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:56:37,403 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:56:37,414 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:56:38,204 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:56:38,229 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 13:56:38,243 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:56:38,317 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:38,318 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 13:56:38,348 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 13:56:38,349 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 13:56:38,368 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:38,368 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 13:56:38,383 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 13:56:38,384 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 13:56:38,415 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 13:56:38,469 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:38,470 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:38,471 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 13:56:38,488 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 13:56:38,488 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 13:56:38,511 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 13:56:38,533 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:38,535 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:56:38,536 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 13:56:38,552 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 13:56:38,553 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 13:56:38,682 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 13:56:38,717 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:56:38,746 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:56:38,859 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:56:38,913 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:38,933 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:38,979 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:38,991 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:56:38,999 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:56:39,008 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:57:10,380 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '8912#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 13:57:10,381 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 13:57:10,381 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 13:57:10,382 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [21] total 21 [2022-11-23 13:57:10,382 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [476156567] [2022-11-23 13:57:10,382 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 13:57:10,382 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2022-11-23 13:57:10,382 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:57:10,383 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2022-11-23 13:57:10,383 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=245, Invalid=2110, Unknown=1, NotChecked=94, Total=2450 [2022-11-23 13:57:10,384 INFO L87 Difference]: Start difference. First operand 223 states and 262 transitions. Second operand has 21 states, 19 states have (on average 2.210526315789474) internal successors, (42), 18 states have internal predecessors, (42), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 13:57:12,411 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:57:21,545 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:57:23,828 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:57:26,698 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:57:26,699 INFO L93 Difference]: Finished difference Result 233 states and 282 transitions. [2022-11-23 13:57:26,699 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 16 states. [2022-11-23 13:57:26,699 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 19 states have (on average 2.210526315789474) internal successors, (42), 18 states have internal predecessors, (42), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) Word has length 88 [2022-11-23 13:57:26,699 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:57:26,700 INFO L225 Difference]: With dead ends: 233 [2022-11-23 13:57:26,700 INFO L226 Difference]: Without dead ends: 229 [2022-11-23 13:57:26,701 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 192 GetRequests, 128 SyntacticMatches, 6 SemanticMatches, 58 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 838 ImplicationChecksByTransitivity, 46.8s TimeCoverageRelationStatistics Valid=321, Invalid=3103, Unknown=2, NotChecked=114, Total=3540 [2022-11-23 13:57:26,702 INFO L413 NwaCegarLoop]: 131 mSDtfsCounter, 24 mSDsluCounter, 1216 mSDsCounter, 0 mSdLazyCounter, 957 mSolverCounterSat, 7 mSolverCounterUnsat, 3 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 7.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 24 SdHoareTripleChecker+Valid, 1347 SdHoareTripleChecker+Invalid, 1123 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 957 IncrementalHoareTripleChecker+Invalid, 3 IncrementalHoareTripleChecker+Unknown, 156 IncrementalHoareTripleChecker+Unchecked, 7.6s IncrementalHoareTripleChecker+Time [2022-11-23 13:57:26,702 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [24 Valid, 1347 Invalid, 1123 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 957 Invalid, 3 Unknown, 156 Unchecked, 7.6s Time] [2022-11-23 13:57:26,703 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 229 states. [2022-11-23 13:57:26,711 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 229 to 229. [2022-11-23 13:57:26,712 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 229 states, 148 states have (on average 1.6418918918918919) internal successors, (243), 211 states have internal predecessors, (243), 13 states have call successors, (13), 4 states have call predecessors, (13), 6 states have return successors, (21), 13 states have call predecessors, (21), 12 states have call successors, (21) [2022-11-23 13:57:26,713 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 229 states to 229 states and 277 transitions. [2022-11-23 13:57:26,714 INFO L78 Accepts]: Start accepts. Automaton has 229 states and 277 transitions. Word has length 88 [2022-11-23 13:57:26,714 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:57:26,714 INFO L495 AbstractCegarLoop]: Abstraction has 229 states and 277 transitions. [2022-11-23 13:57:26,714 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 19 states have (on average 2.210526315789474) internal successors, (42), 18 states have internal predecessors, (42), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 13:57:26,715 INFO L276 IsEmpty]: Start isEmpty. Operand 229 states and 277 transitions. [2022-11-23 13:57:26,716 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 90 [2022-11-23 13:57:26,716 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:57:26,716 INFO L195 NwaCegarLoop]: trace histogram [36, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:57:26,750 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Forceful destruction successful, exit code 0 [2022-11-23 13:57:26,930 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12,13 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:57:26,930 INFO L420 AbstractCegarLoop]: === Iteration 14 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 13:57:26,931 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:57:26,931 INFO L85 PathProgramCache]: Analyzing trace with hash 343643551, now seen corresponding path program 2 times [2022-11-23 13:57:26,931 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:57:26,931 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [129156433] [2022-11-23 13:57:26,931 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:57:26,931 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:57:26,973 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 13:57:26,973 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1663017423] [2022-11-23 13:57:26,973 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-23 13:57:26,973 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:57:26,974 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:57:26,975 INFO L229 MonitoredProcess]: Starting monitored process 14 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:57:26,979 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Waiting until timeout for monitored process [2022-11-23 13:57:36,461 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 5 check-sat command(s) [2022-11-23 13:57:36,462 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-23 13:57:36,472 INFO L263 TraceCheckSpWp]: Trace formula consists of 719 conjuncts, 58 conjunts are in the unsatisfiable core [2022-11-23 13:57:36,475 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:57:36,485 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:57:38,465 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (v_ArrVal_3481 Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_3481) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 13:57:38,728 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:57:38,729 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 13:57:38,859 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-23 13:57:38,859 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-23 13:57:47,265 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 13 [2022-11-23 13:57:51,989 INFO L134 CoverageAnalysis]: Checked inductivity of 921 backedges. 461 proven. 28 refuted. 0 times theorem prover too weak. 349 trivial. 83 not checked. [2022-11-23 13:57:52,007 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:57:52,454 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:57:52,454 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [129156433] [2022-11-23 13:57:52,454 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 13:57:52,454 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1663017423] [2022-11-23 13:57:52,454 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1663017423] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 13:57:52,455 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1176171637] [2022-11-23 13:57:52,457 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-23 13:57:52,457 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:57:52,457 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:57:52,457 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:57:52,458 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:57:52,489 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:57:52,496 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:57:52,574 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:57:52,584 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:57:52,624 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:57:52,660 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 13:57:52,672 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 13:57:52,684 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 13:57:52,725 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:57:52,732 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:57:52,739 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:57:52,761 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:57:52,766 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:57:52,796 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:57:52,806 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 13:57:53,582 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:57:53,598 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:57:53,613 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 13:57:53,692 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 13:57:53,718 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:57:53,719 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 13:57:53,733 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 13:57:53,733 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 13:57:53,751 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:57:53,752 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 13:57:53,766 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 13:57:53,766 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 13:57:53,816 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:57:53,817 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:57:53,818 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 13:57:53,837 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 13:57:53,837 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 13:57:53,869 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:57:53,873 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 13:57:53,874 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 13:57:53,894 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 13:57:53,894 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 13:57:53,918 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 13:57:54,046 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 13:57:54,081 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 13:57:54,118 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 13:57:54,240 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:57:54,263 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 13:57:54,316 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 13:57:54,367 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:57:54,376 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 13:57:54,422 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 13:57:54,434 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:58:47,576 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '9728#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 13:58:47,576 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 13:58:47,576 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 13:58:47,576 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19] total 19 [2022-11-23 13:58:47,576 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1931503095] [2022-11-23 13:58:47,576 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 13:58:47,576 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 19 states [2022-11-23 13:58:47,577 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:58:47,577 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 19 interpolants. [2022-11-23 13:58:47,578 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=239, Invalid=2013, Unknown=8, NotChecked=92, Total=2352 [2022-11-23 13:58:47,578 INFO L87 Difference]: Start difference. First operand 229 states and 277 transitions. Second operand has 19 states, 17 states have (on average 2.235294117647059) internal successors, (38), 16 states have internal predecessors, (38), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 13:58:49,609 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:58:51,644 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:58:53,650 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:58:57,770 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:58:59,857 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:02,003 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:04,020 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:06,167 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:08,204 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:12,360 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:14,391 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:18,536 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:20,569 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:26,745 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:28,780 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:30,977 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:33,024 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:35,515 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:37,583 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:44,418 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:46,486 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:48,506 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:50,573 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 13:59:52,611 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:02,269 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:04,353 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:06,538 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:08,586 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:10,627 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:12,665 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:14,718 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:16,758 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:19,087 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:23,901 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:25,912 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:27,973 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:30,424 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:32,544 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:34,610 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:36,626 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:38,688 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.03s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:40,892 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:42,948 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:44,978 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:47,068 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:49,273 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:51,833 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:53,971 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:56,003 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:00:56,263 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:00:56,263 INFO L93 Difference]: Finished difference Result 243 states and 301 transitions. [2022-11-23 14:00:56,263 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2022-11-23 14:00:56,264 INFO L78 Accepts]: Start accepts. Automaton has has 19 states, 17 states have (on average 2.235294117647059) internal successors, (38), 16 states have internal predecessors, (38), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) Word has length 89 [2022-11-23 14:00:56,264 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:00:56,265 INFO L225 Difference]: With dead ends: 243 [2022-11-23 14:00:56,266 INFO L226 Difference]: Without dead ends: 235 [2022-11-23 14:00:56,266 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 196 GetRequests, 131 SyntacticMatches, 6 SemanticMatches, 59 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 924 ImplicationChecksByTransitivity, 94.2s TimeCoverageRelationStatistics Valid=328, Invalid=3205, Unknown=11, NotChecked=116, Total=3660 [2022-11-23 14:00:56,267 INFO L413 NwaCegarLoop]: 135 mSDtfsCounter, 29 mSDsluCounter, 1100 mSDsCounter, 0 mSdLazyCounter, 1452 mSolverCounterSat, 8 mSolverCounterUnsat, 49 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 101.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 29 SdHoareTripleChecker+Valid, 1235 SdHoareTripleChecker+Invalid, 1672 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 1452 IncrementalHoareTripleChecker+Invalid, 49 IncrementalHoareTripleChecker+Unknown, 163 IncrementalHoareTripleChecker+Unchecked, 102.4s IncrementalHoareTripleChecker+Time [2022-11-23 14:00:56,267 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [29 Valid, 1235 Invalid, 1672 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 1452 Invalid, 49 Unknown, 163 Unchecked, 102.4s Time] [2022-11-23 14:00:56,268 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 235 states. [2022-11-23 14:00:56,275 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 235 to 231. [2022-11-23 14:00:56,276 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 231 states, 150 states have (on average 1.6466666666666667) internal successors, (247), 213 states have internal predecessors, (247), 13 states have call successors, (13), 4 states have call predecessors, (13), 6 states have return successors, (21), 13 states have call predecessors, (21), 12 states have call successors, (21) [2022-11-23 14:00:56,277 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 231 states to 231 states and 281 transitions. [2022-11-23 14:00:56,277 INFO L78 Accepts]: Start accepts. Automaton has 231 states and 281 transitions. Word has length 89 [2022-11-23 14:00:56,277 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:00:56,277 INFO L495 AbstractCegarLoop]: Abstraction has 231 states and 281 transitions. [2022-11-23 14:00:56,278 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 19 states, 17 states have (on average 2.235294117647059) internal successors, (38), 16 states have internal predecessors, (38), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 14:00:56,278 INFO L276 IsEmpty]: Start isEmpty. Operand 231 states and 281 transitions. [2022-11-23 14:00:56,279 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 91 [2022-11-23 14:00:56,279 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:00:56,279 INFO L195 NwaCegarLoop]: trace histogram [37, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:00:56,299 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Forceful destruction successful, exit code 0 [2022-11-23 14:00:56,490 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 14 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable13 [2022-11-23 14:00:56,491 INFO L420 AbstractCegarLoop]: === Iteration 15 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 14:00:56,491 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:00:56,491 INFO L85 PathProgramCache]: Analyzing trace with hash 1856431427, now seen corresponding path program 3 times [2022-11-23 14:00:56,491 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:00:56,491 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1435702143] [2022-11-23 14:00:56,491 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:00:56,492 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:00:56,540 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 14:00:56,541 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1718689830] [2022-11-23 14:00:56,541 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-23 14:00:56,541 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 14:00:56,541 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 14:00:56,543 INFO L229 MonitoredProcess]: Starting monitored process 15 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 14:00:56,570 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Waiting until timeout for monitored process [2022-11-23 14:00:58,695 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-23 14:00:58,695 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-23 14:00:58,703 INFO L263 TraceCheckSpWp]: Trace formula consists of 1142 conjuncts, 69 conjunts are in the unsatisfiable core [2022-11-23 14:00:58,707 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 14:00:58,718 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 14:00:58,730 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 14:01:03,622 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~ptr~0#1.base| Int)) (and (exists ((v_ArrVal_3991 Int)) (= (store |c_old(#length)| |zalloc_or_die_calloc_model_~ptr~0#1.base| v_ArrVal_3991) |c_#length|)) (= (select |c_old(#valid)| |zalloc_or_die_calloc_model_~ptr~0#1.base|) 0))) is different from true [2022-11-23 14:01:03,926 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~ptr~0#1.base| Int) (v_ArrVal_3991 Int)) (and (= (store |c_old(#length)| |zalloc_or_die_calloc_model_~ptr~0#1.base| v_ArrVal_3991) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_calloc_model_~ptr~0#1.base|) 0))) is different from true [2022-11-23 14:01:03,957 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:03,957 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 14:01:03,971 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-23 14:01:03,973 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-23 14:01:04,145 INFO L134 CoverageAnalysis]: Checked inductivity of 963 backedges. 485 proven. 105 refuted. 0 times theorem prover too weak. 310 trivial. 63 not checked. [2022-11-23 14:01:04,145 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 14:01:04,293 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:01:04,293 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1435702143] [2022-11-23 14:01:04,293 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 14:01:04,293 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1718689830] [2022-11-23 14:01:04,293 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1718689830] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 14:01:04,294 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1573943031] [2022-11-23 14:01:04,296 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-23 14:01:04,296 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 14:01:04,296 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 14:01:04,296 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 14:01:04,297 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 14:01:04,325 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 14:01:04,332 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 14:01:04,429 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 14:01:04,469 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:01:04,512 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 14:01:04,647 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 14:01:04,647 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 182 treesize of output 185 [2022-11-23 14:01:04,684 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 14:01:04,685 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 14:01:04,784 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 14:01:04,784 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 176 treesize of output 179 [2022-11-23 14:01:04,907 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:01:04,915 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:01:04,923 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:01:04,973 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:01:04,982 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:01:05,020 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:01:05,026 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:01:06,155 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:01:06,178 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:01:06,194 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 14:01:06,267 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:06,268 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:01:06,284 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 14:01:06,284 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 14:01:06,304 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 14:01:06,327 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:06,328 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:01:06,345 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 14:01:06,345 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 14:01:06,410 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:06,411 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:06,412 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:01:06,433 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 14:01:06,433 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 14:01:06,467 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:06,468 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:06,469 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:01:06,491 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 14:01:06,492 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 14:01:06,519 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 14:01:06,665 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 14:01:06,728 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 14:01:06,778 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 14:01:06,915 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:01:06,961 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:01:07,008 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:01:07,055 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:01:07,067 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:01:07,075 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:01:07,087 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 14:01:31,778 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10568#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 14:01:31,778 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 14:01:31,779 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 14:01:31,779 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [25] total 25 [2022-11-23 14:01:31,779 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [329863341] [2022-11-23 14:01:31,779 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 14:01:31,779 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2022-11-23 14:01:31,780 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:01:31,780 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2022-11-23 14:01:31,780 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=248, Invalid=2407, Unknown=5, NotChecked=202, Total=2862 [2022-11-23 14:01:31,781 INFO L87 Difference]: Start difference. First operand 231 states and 281 transitions. Second operand has 25 states, 23 states have (on average 1.9565217391304348) internal successors, (45), 22 states have internal predecessors, (45), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 14:01:44,386 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.02s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:01:46,964 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:01:48,142 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:01:48,142 INFO L93 Difference]: Finished difference Result 243 states and 310 transitions. [2022-11-23 14:01:48,143 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2022-11-23 14:01:48,143 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 23 states have (on average 1.9565217391304348) internal successors, (45), 22 states have internal predecessors, (45), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) Word has length 90 [2022-11-23 14:01:48,143 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:01:48,145 INFO L225 Difference]: With dead ends: 243 [2022-11-23 14:01:48,145 INFO L226 Difference]: Without dead ends: 239 [2022-11-23 14:01:48,147 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 199 GetRequests, 128 SyntacticMatches, 7 SemanticMatches, 64 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 957 ImplicationChecksByTransitivity, 39.3s TimeCoverageRelationStatistics Valid=321, Invalid=3708, Unknown=11, NotChecked=250, Total=4290 [2022-11-23 14:01:48,147 INFO L413 NwaCegarLoop]: 141 mSDtfsCounter, 20 mSDsluCounter, 1095 mSDsCounter, 0 mSdLazyCounter, 1521 mSolverCounterSat, 9 mSolverCounterUnsat, 2 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 6.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 20 SdHoareTripleChecker+Valid, 1236 SdHoareTripleChecker+Invalid, 1890 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 1521 IncrementalHoareTripleChecker+Invalid, 2 IncrementalHoareTripleChecker+Unknown, 358 IncrementalHoareTripleChecker+Unchecked, 6.8s IncrementalHoareTripleChecker+Time [2022-11-23 14:01:48,148 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [20 Valid, 1236 Invalid, 1890 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 1521 Invalid, 2 Unknown, 358 Unchecked, 6.8s Time] [2022-11-23 14:01:48,148 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 239 states. [2022-11-23 14:01:48,155 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 239 to 233. [2022-11-23 14:01:48,155 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 233 states, 152 states have (on average 1.6513157894736843) internal successors, (251), 215 states have internal predecessors, (251), 13 states have call successors, (13), 4 states have call predecessors, (13), 6 states have return successors, (21), 13 states have call predecessors, (21), 12 states have call successors, (21) [2022-11-23 14:01:48,157 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 233 states to 233 states and 285 transitions. [2022-11-23 14:01:48,157 INFO L78 Accepts]: Start accepts. Automaton has 233 states and 285 transitions. Word has length 90 [2022-11-23 14:01:48,157 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:01:48,157 INFO L495 AbstractCegarLoop]: Abstraction has 233 states and 285 transitions. [2022-11-23 14:01:48,158 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 23 states have (on average 1.9565217391304348) internal successors, (45), 22 states have internal predecessors, (45), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 14:01:48,158 INFO L276 IsEmpty]: Start isEmpty. Operand 233 states and 285 transitions. [2022-11-23 14:01:48,158 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 92 [2022-11-23 14:01:48,159 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:01:48,159 INFO L195 NwaCegarLoop]: trace histogram [38, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:01:48,184 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Ended with exit code 0 [2022-11-23 14:01:48,374 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 15 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable14 [2022-11-23 14:01:48,374 INFO L420 AbstractCegarLoop]: === Iteration 16 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 14:01:48,375 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:01:48,375 INFO L85 PathProgramCache]: Analyzing trace with hash 1508215327, now seen corresponding path program 4 times [2022-11-23 14:01:48,375 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:01:48,375 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [286246613] [2022-11-23 14:01:48,375 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:01:48,375 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:01:48,424 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 14:01:48,424 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [446911132] [2022-11-23 14:01:48,424 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-23 14:01:48,425 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 14:01:48,425 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 14:01:48,426 INFO L229 MonitoredProcess]: Starting monitored process 16 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 14:01:48,433 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (16)] Waiting until timeout for monitored process [2022-11-23 14:01:53,072 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:01:53,080 INFO L263 TraceCheckSpWp]: Trace formula consists of 1157 conjuncts, 34 conjunts are in the unsatisfiable core [2022-11-23 14:01:53,083 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 14:01:53,100 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 14:01:53,132 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:01:53,303 INFO L134 CoverageAnalysis]: Checked inductivity of 1006 backedges. 248 proven. 15 refuted. 0 times theorem prover too weak. 743 trivial. 0 not checked. [2022-11-23 14:01:53,303 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 14:01:53,964 INFO L134 CoverageAnalysis]: Checked inductivity of 1006 backedges. 0 proven. 258 refuted. 0 times theorem prover too weak. 748 trivial. 0 not checked. [2022-11-23 14:01:53,964 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:01:53,964 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [286246613] [2022-11-23 14:01:53,964 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 14:01:53,964 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [446911132] [2022-11-23 14:01:53,964 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [446911132] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 14:01:53,964 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [816264393] [2022-11-23 14:01:53,966 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-23 14:01:53,966 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 14:01:53,967 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 14:01:53,967 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 14:01:53,967 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 14:01:53,993 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 14:01:54,000 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 14:01:54,020 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 14:01:54,058 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 14:01:54,071 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:01:54,160 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 14:01:54,160 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 182 treesize of output 185 [2022-11-23 14:01:54,194 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 14:01:54,194 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 180 treesize of output 183 [2022-11-23 14:01:54,262 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 14:01:54,263 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-23 14:01:54,407 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:01:54,416 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:01:54,423 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:01:54,466 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:01:54,471 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:01:54,517 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:01:54,523 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:01:55,612 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:01:55,625 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 14:01:55,639 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:01:55,701 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 14:01:55,725 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:55,726 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:01:55,740 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 14:01:55,740 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 14:01:55,764 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:55,764 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:01:55,780 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 14:01:55,780 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 14:01:55,856 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:55,858 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:55,858 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:01:55,879 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 14:01:55,879 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 14:01:55,908 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:55,910 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:01:55,910 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:01:55,929 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 14:01:55,930 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 14:01:55,955 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 14:01:56,102 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 14:01:56,140 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 14:01:56,172 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 14:01:56,242 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:01:56,269 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:01:56,325 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:01:56,371 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:01:56,381 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:01:56,392 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:01:56,401 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 14:02:07,845 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '11654#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 14:02:07,846 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 14:02:07,846 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-23 14:02:07,846 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 10] total 18 [2022-11-23 14:02:07,846 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1485322192] [2022-11-23 14:02:07,846 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-23 14:02:07,847 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 18 states [2022-11-23 14:02:07,847 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:02:07,847 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 18 interpolants. [2022-11-23 14:02:07,848 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=274, Invalid=1706, Unknown=0, NotChecked=0, Total=1980 [2022-11-23 14:02:07,848 INFO L87 Difference]: Start difference. First operand 233 states and 285 transitions. Second operand has 18 states, 16 states have (on average 2.8125) internal successors, (45), 18 states have internal predecessors, (45), 2 states have call successors, (11), 2 states have call predecessors, (11), 4 states have return successors, (12), 1 states have call predecessors, (12), 2 states have call successors, (12) [2022-11-23 14:02:09,130 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:02:09,130 INFO L93 Difference]: Finished difference Result 233 states and 274 transitions. [2022-11-23 14:02:09,131 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 20 states. [2022-11-23 14:02:09,131 INFO L78 Accepts]: Start accepts. Automaton has has 18 states, 16 states have (on average 2.8125) internal successors, (45), 18 states have internal predecessors, (45), 2 states have call successors, (11), 2 states have call predecessors, (11), 4 states have return successors, (12), 1 states have call predecessors, (12), 2 states have call successors, (12) Word has length 91 [2022-11-23 14:02:09,131 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:02:09,132 INFO L225 Difference]: With dead ends: 233 [2022-11-23 14:02:09,132 INFO L226 Difference]: Without dead ends: 229 [2022-11-23 14:02:09,133 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 288 GetRequests, 223 SyntacticMatches, 6 SemanticMatches, 59 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 922 ImplicationChecksByTransitivity, 12.4s TimeCoverageRelationStatistics Valid=485, Invalid=3175, Unknown=0, NotChecked=0, Total=3660 [2022-11-23 14:02:09,134 INFO L413 NwaCegarLoop]: 127 mSDtfsCounter, 65 mSDsluCounter, 931 mSDsCounter, 0 mSdLazyCounter, 490 mSolverCounterSat, 39 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 65 SdHoareTripleChecker+Valid, 1058 SdHoareTripleChecker+Invalid, 529 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 39 IncrementalHoareTripleChecker+Valid, 490 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.7s IncrementalHoareTripleChecker+Time [2022-11-23 14:02:09,134 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [65 Valid, 1058 Invalid, 529 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [39 Valid, 490 Invalid, 0 Unknown, 0 Unchecked, 0.7s Time] [2022-11-23 14:02:09,135 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 229 states. [2022-11-23 14:02:09,145 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 229 to 229. [2022-11-23 14:02:09,145 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 229 states, 151 states have (on average 1.6158940397350994) internal successors, (244), 212 states have internal predecessors, (244), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 14:02:09,147 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 229 states to 229 states and 268 transitions. [2022-11-23 14:02:09,147 INFO L78 Accepts]: Start accepts. Automaton has 229 states and 268 transitions. Word has length 91 [2022-11-23 14:02:09,147 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:02:09,148 INFO L495 AbstractCegarLoop]: Abstraction has 229 states and 268 transitions. [2022-11-23 14:02:09,148 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 18 states, 16 states have (on average 2.8125) internal successors, (45), 18 states have internal predecessors, (45), 2 states have call successors, (11), 2 states have call predecessors, (11), 4 states have return successors, (12), 1 states have call predecessors, (12), 2 states have call successors, (12) [2022-11-23 14:02:09,149 INFO L276 IsEmpty]: Start isEmpty. Operand 229 states and 268 transitions. [2022-11-23 14:02:09,150 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 104 [2022-11-23 14:02:09,150 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:02:09,150 INFO L195 NwaCegarLoop]: trace histogram [50, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:02:09,186 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (16)] Forceful destruction successful, exit code 0 [2022-11-23 14:02:09,368 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 16 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable15 [2022-11-23 14:02:09,369 INFO L420 AbstractCegarLoop]: === Iteration 17 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 14:02:09,369 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:02:09,369 INFO L85 PathProgramCache]: Analyzing trace with hash 1495218635, now seen corresponding path program 5 times [2022-11-23 14:02:09,369 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:02:09,369 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [70506599] [2022-11-23 14:02:09,369 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:02:09,370 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:02:09,429 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 14:02:09,430 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1324167329] [2022-11-23 14:02:09,430 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-23 14:02:09,430 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 14:02:09,430 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 14:02:09,431 INFO L229 MonitoredProcess]: Starting monitored process 17 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 14:02:09,454 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (17)] Waiting until timeout for monitored process [2022-11-23 14:02:47,625 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 6 check-sat command(s) [2022-11-23 14:02:47,625 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-23 14:02:47,644 INFO L263 TraceCheckSpWp]: Trace formula consists of 839 conjuncts, 85 conjunts are in the unsatisfiable core [2022-11-23 14:02:47,646 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 14:02:47,809 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 14:02:47,855 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:02:48,348 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 811 proven. 369 refuted. 0 times theorem prover too weak. 420 trivial. 0 not checked. [2022-11-23 14:02:48,348 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 14:02:50,309 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 510 proven. 55 refuted. 0 times theorem prover too weak. 1035 trivial. 0 not checked. [2022-11-23 14:02:50,309 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:02:50,309 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [70506599] [2022-11-23 14:02:50,309 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 14:02:50,309 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1324167329] [2022-11-23 14:02:50,310 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1324167329] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 14:02:50,310 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1362429443] [2022-11-23 14:02:50,311 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-23 14:02:50,311 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 14:02:50,312 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 14:02:50,312 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 14:02:50,312 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 14:02:50,341 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 14:02:50,347 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 14:02:50,393 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 14:02:50,435 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 14:02:50,480 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:02:50,582 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 14:02:50,582 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-23 14:02:50,644 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 14:02:50,644 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 14:02:50,704 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 14:02:50,704 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-23 14:02:50,787 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:02:50,798 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:02:50,805 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:02:50,852 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:02:50,872 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:02:50,922 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:02:50,928 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:02:51,997 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:02:52,017 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 14:02:52,036 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:02:52,103 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:02:52,103 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:02:52,118 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 14:02:52,118 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 14:02:52,151 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 14:02:52,169 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:02:52,170 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:02:52,184 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 14:02:52,185 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 14:02:52,231 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 14:02:52,259 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:02:52,261 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:02:52,261 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:02:52,278 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 14:02:52,279 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 14:02:52,302 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:02:52,303 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:02:52,303 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:02:52,320 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 14:02:52,321 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 14:02:52,474 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 14:02:52,509 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 14:02:52,533 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 14:02:52,636 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 14:02:52,675 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 14:02:52,715 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:02:52,753 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:02:52,761 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:02:52,771 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:02:52,780 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 14:03:07,344 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '12829#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 14:03:07,344 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 14:03:07,344 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-23 14:03:07,344 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [28, 15] total 41 [2022-11-23 14:03:07,344 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1610139318] [2022-11-23 14:03:07,344 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-23 14:03:07,345 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 41 states [2022-11-23 14:03:07,345 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:03:07,345 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 41 interpolants. [2022-11-23 14:03:07,346 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=454, Invalid=4102, Unknown=0, NotChecked=0, Total=4556 [2022-11-23 14:03:07,347 INFO L87 Difference]: Start difference. First operand 229 states and 268 transitions. Second operand has 41 states, 38 states have (on average 1.763157894736842) internal successors, (67), 40 states have internal predecessors, (67), 1 states have call successors, (6), 1 states have call predecessors, (6), 4 states have return successors, (8), 3 states have call predecessors, (8), 1 states have call successors, (8) [2022-11-23 14:03:36,083 WARN L233 SmtUtils]: Spent 26.42s on a formula simplification. DAG size of input: 81 DAG size of output: 72 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 14:03:50,137 WARN L233 SmtUtils]: Spent 13.18s on a formula simplification. DAG size of input: 75 DAG size of output: 67 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 14:03:59,377 WARN L233 SmtUtils]: Spent 8.76s on a formula simplification. DAG size of input: 69 DAG size of output: 62 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 14:04:09,057 WARN L233 SmtUtils]: Spent 7.01s on a formula simplification. DAG size of input: 63 DAG size of output: 57 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 14:04:17,757 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:04:17,757 INFO L93 Difference]: Finished difference Result 276 states and 373 transitions. [2022-11-23 14:04:17,757 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 46 states. [2022-11-23 14:04:17,758 INFO L78 Accepts]: Start accepts. Automaton has has 41 states, 38 states have (on average 1.763157894736842) internal successors, (67), 40 states have internal predecessors, (67), 1 states have call successors, (6), 1 states have call predecessors, (6), 4 states have return successors, (8), 3 states have call predecessors, (8), 1 states have call successors, (8) Word has length 103 [2022-11-23 14:04:17,758 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:04:17,759 INFO L225 Difference]: With dead ends: 276 [2022-11-23 14:04:17,759 INFO L226 Difference]: Without dead ends: 272 [2022-11-23 14:04:17,762 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 349 GetRequests, 236 SyntacticMatches, 6 SemanticMatches, 107 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3224 ImplicationChecksByTransitivity, 83.3s TimeCoverageRelationStatistics Valid=1565, Invalid=10206, Unknown=1, NotChecked=0, Total=11772 [2022-11-23 14:04:17,762 INFO L413 NwaCegarLoop]: 133 mSDtfsCounter, 309 mSDsluCounter, 3537 mSDsCounter, 0 mSdLazyCounter, 2038 mSolverCounterSat, 82 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 326 SdHoareTripleChecker+Valid, 3670 SdHoareTripleChecker+Invalid, 2120 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 82 IncrementalHoareTripleChecker+Valid, 2038 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.0s IncrementalHoareTripleChecker+Time [2022-11-23 14:04:17,763 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [326 Valid, 3670 Invalid, 2120 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [82 Valid, 2038 Invalid, 0 Unknown, 0 Unchecked, 3.0s Time] [2022-11-23 14:04:17,763 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 272 states. [2022-11-23 14:04:17,770 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 272 to 253. [2022-11-23 14:04:17,770 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 253 states, 175 states have (on average 1.5314285714285714) internal successors, (268), 236 states have internal predecessors, (268), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 14:04:17,772 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 253 states to 253 states and 292 transitions. [2022-11-23 14:04:17,772 INFO L78 Accepts]: Start accepts. Automaton has 253 states and 292 transitions. Word has length 103 [2022-11-23 14:04:17,772 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:04:17,772 INFO L495 AbstractCegarLoop]: Abstraction has 253 states and 292 transitions. [2022-11-23 14:04:17,773 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 41 states, 38 states have (on average 1.763157894736842) internal successors, (67), 40 states have internal predecessors, (67), 1 states have call successors, (6), 1 states have call predecessors, (6), 4 states have return successors, (8), 3 states have call predecessors, (8), 1 states have call successors, (8) [2022-11-23 14:04:17,773 INFO L276 IsEmpty]: Start isEmpty. Operand 253 states and 292 transitions. [2022-11-23 14:04:17,774 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 116 [2022-11-23 14:04:17,774 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:04:17,774 INFO L195 NwaCegarLoop]: trace histogram [62, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:04:17,803 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (17)] Forceful destruction successful, exit code 0 [2022-11-23 14:04:17,999 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 17 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable16 [2022-11-23 14:04:17,999 INFO L420 AbstractCegarLoop]: === Iteration 18 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 14:04:18,000 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:04:18,000 INFO L85 PathProgramCache]: Analyzing trace with hash -671799221, now seen corresponding path program 6 times [2022-11-23 14:04:18,000 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:04:18,000 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1110971695] [2022-11-23 14:04:18,000 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:04:18,000 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:04:18,054 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 14:04:18,054 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [553607861] [2022-11-23 14:04:18,054 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-23 14:04:18,055 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 14:04:18,055 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 14:04:18,056 INFO L229 MonitoredProcess]: Starting monitored process 18 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 14:04:18,058 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (18)] Waiting until timeout for monitored process [2022-11-23 14:04:22,173 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-23 14:04:22,173 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-23 14:04:22,182 INFO L263 TraceCheckSpWp]: Trace formula consists of 1517 conjuncts, 129 conjunts are in the unsatisfiable core [2022-11-23 14:04:22,187 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 14:04:22,190 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 14:04:22,245 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 14:04:22,254 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 14:04:28,506 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-23 14:04:28,506 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-23 14:04:28,623 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 14:04:31,365 INFO L321 Elim1Store]: treesize reduction 36, result has 34.5 percent of original size [2022-11-23 14:04:31,365 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 3 select indices, 3 select index equivalence classes, 1 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 4 case distinctions, treesize of input 22 treesize of output 33 [2022-11-23 14:04:31,454 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 14:04:33,171 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~ptr~0#1.base| Int)) (and (exists ((v_ArrVal_5988 Int)) (= |c_#length| (store |c_old(#length)| |zalloc_or_die_calloc_model_~ptr~0#1.base| v_ArrVal_5988))) (= (select |c_old(#valid)| |zalloc_or_die_calloc_model_~ptr~0#1.base|) 0))) is different from true [2022-11-23 14:04:33,372 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:04:33,373 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 14:04:33,392 INFO L321 Elim1Store]: treesize reduction 12, result has 52.0 percent of original size [2022-11-23 14:04:33,393 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 4 select indices, 4 select index equivalence classes, 3 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 3 case distinctions, treesize of input 21 treesize of output 25 [2022-11-23 14:04:34,412 INFO L134 CoverageAnalysis]: Checked inductivity of 2338 backedges. 590 proven. 484 refuted. 0 times theorem prover too weak. 473 trivial. 791 not checked. [2022-11-23 14:04:34,412 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 14:04:34,830 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:04:34,830 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1110971695] [2022-11-23 14:04:34,830 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 14:04:34,830 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [553607861] [2022-11-23 14:04:34,830 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [553607861] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 14:04:34,831 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1407188016] [2022-11-23 14:04:34,832 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-23 14:04:34,832 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 14:04:34,832 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 14:04:34,833 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 14:04:34,833 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 14:04:34,869 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 14:04:34,876 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 14:04:34,894 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:04:34,906 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:04:34,974 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:04:35,008 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 14:04:35,018 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 14:04:35,031 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 14:04:35,069 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:04:35,075 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:04:35,081 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:04:35,100 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:04:35,105 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:04:35,130 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:04:35,135 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:04:35,938 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 14:04:35,959 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:04:35,985 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:04:36,053 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:04:36,054 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:04:36,069 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 14:04:36,069 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 14:04:36,087 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:04:36,088 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:04:36,102 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 14:04:36,103 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 14:04:36,124 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 14:04:36,178 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 14:04:36,196 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:04:36,197 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:04:36,198 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:04:36,215 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 14:04:36,215 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 14:04:36,238 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:04:36,239 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:04:36,240 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:04:36,257 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 14:04:36,257 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 14:04:36,408 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 14:04:36,442 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 14:04:36,474 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 14:04:36,542 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:04:36,598 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 14:04:36,641 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 14:04:36,680 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:04:36,690 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:04:36,698 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:04:36,709 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 14:05:11,771 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '13866#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 14:05:11,771 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 14:05:11,771 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 14:05:11,771 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [32] total 32 [2022-11-23 14:05:11,771 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [64122302] [2022-11-23 14:05:11,771 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 14:05:11,772 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 33 states [2022-11-23 14:05:11,772 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:05:11,772 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 33 interpolants. [2022-11-23 14:05:11,773 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=297, Invalid=3364, Unknown=3, NotChecked=118, Total=3782 [2022-11-23 14:05:11,773 INFO L87 Difference]: Start difference. First operand 253 states and 292 transitions. Second operand has 33 states, 27 states have (on average 1.9259259259259258) internal successors, (52), 29 states have internal predecessors, (52), 4 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 5 states have call predecessors, (6), 4 states have call successors, (6) [2022-11-23 14:05:13,820 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:05:17,989 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:05:20,221 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:05:24,433 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:05:26,653 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:05:28,855 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:05:31,045 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:05:33,281 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:05:35,462 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:06:08,807 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:06:08,807 INFO L93 Difference]: Finished difference Result 282 states and 322 transitions. [2022-11-23 14:06:08,807 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 26 states. [2022-11-23 14:06:08,807 INFO L78 Accepts]: Start accepts. Automaton has has 33 states, 27 states have (on average 1.9259259259259258) internal successors, (52), 29 states have internal predecessors, (52), 4 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 5 states have call predecessors, (6), 4 states have call successors, (6) Word has length 115 [2022-11-23 14:06:08,808 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:06:08,809 INFO L225 Difference]: With dead ends: 282 [2022-11-23 14:06:08,809 INFO L226 Difference]: Without dead ends: 282 [2022-11-23 14:06:08,810 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 258 GetRequests, 170 SyntacticMatches, 8 SemanticMatches, 80 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 1836 ImplicationChecksByTransitivity, 76.3s TimeCoverageRelationStatistics Valid=471, Invalid=6008, Unknown=5, NotChecked=158, Total=6642 [2022-11-23 14:06:08,811 INFO L413 NwaCegarLoop]: 89 mSDtfsCounter, 397 mSDsluCounter, 1496 mSDsCounter, 0 mSdLazyCounter, 2385 mSolverCounterSat, 36 mSolverCounterUnsat, 9 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 25.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 397 SdHoareTripleChecker+Valid, 1585 SdHoareTripleChecker+Invalid, 2601 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 36 IncrementalHoareTripleChecker+Valid, 2385 IncrementalHoareTripleChecker+Invalid, 9 IncrementalHoareTripleChecker+Unknown, 171 IncrementalHoareTripleChecker+Unchecked, 25.9s IncrementalHoareTripleChecker+Time [2022-11-23 14:06:08,811 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [397 Valid, 1585 Invalid, 2601 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [36 Valid, 2385 Invalid, 9 Unknown, 171 Unchecked, 25.9s Time] [2022-11-23 14:06:08,812 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 282 states. [2022-11-23 14:06:08,816 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 282 to 250. [2022-11-23 14:06:08,817 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 250 states, 175 states have (on average 1.497142857142857) internal successors, (262), 233 states have internal predecessors, (262), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 14:06:08,818 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 250 states to 250 states and 286 transitions. [2022-11-23 14:06:08,819 INFO L78 Accepts]: Start accepts. Automaton has 250 states and 286 transitions. Word has length 115 [2022-11-23 14:06:08,819 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:06:08,819 INFO L495 AbstractCegarLoop]: Abstraction has 250 states and 286 transitions. [2022-11-23 14:06:08,819 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 33 states, 27 states have (on average 1.9259259259259258) internal successors, (52), 29 states have internal predecessors, (52), 4 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 5 states have call predecessors, (6), 4 states have call successors, (6) [2022-11-23 14:06:08,819 INFO L276 IsEmpty]: Start isEmpty. Operand 250 states and 286 transitions. [2022-11-23 14:06:08,820 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 117 [2022-11-23 14:06:08,821 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:06:08,821 INFO L195 NwaCegarLoop]: trace histogram [62, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:06:08,882 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (18)] Forceful destruction successful, exit code 0 [2022-11-23 14:06:09,042 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 18 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable17 [2022-11-23 14:06:09,042 INFO L420 AbstractCegarLoop]: === Iteration 19 === Targeting ULTIMATE.startErr11REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-23 14:06:09,043 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:06:09,043 INFO L85 PathProgramCache]: Analyzing trace with hash 649060632, now seen corresponding path program 1 times [2022-11-23 14:06:09,043 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:06:09,043 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1986848782] [2022-11-23 14:06:09,043 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:06:09,043 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:06:09,106 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 14:06:09,106 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [2062687908] [2022-11-23 14:06:09,107 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:06:09,107 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 14:06:09,107 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 14:06:09,108 INFO L229 MonitoredProcess]: Starting monitored process 19 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 14:06:09,137 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_734d9e22-baa0-45f8-83b0-bd13db12e15e/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (19)] Waiting until timeout for monitored process [2022-11-23 14:06:13,338 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:06:13,348 INFO L263 TraceCheckSpWp]: Trace formula consists of 1525 conjuncts, 87 conjunts are in the unsatisfiable core [2022-11-23 14:06:13,351 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 14:06:13,410 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 14:06:28,409 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_6798 Int) (v_ArrVal_6797 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6797) |c_#length|) (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6798)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 14:06:28,605 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:06:28,606 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 14:06:28,753 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-23 14:06:28,754 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-23 14:06:28,872 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_6799 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6799) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 14:06:29,057 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:06:29,058 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 14:06:29,065 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-23 14:06:29,066 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-23 14:06:30,111 INFO L134 CoverageAnalysis]: Checked inductivity of 2338 backedges. 862 proven. 253 refuted. 0 times theorem prover too weak. 495 trivial. 728 not checked. [2022-11-23 14:06:30,111 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 14:06:32,410 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:06:32,410 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1986848782] [2022-11-23 14:06:32,410 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 14:06:32,411 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2062687908] [2022-11-23 14:06:32,411 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2062687908] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 14:06:32,411 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [436296690] [2022-11-23 14:06:32,412 INFO L159 IcfgInterpreter]: Started Sifa with 30 locations of interest [2022-11-23 14:06:32,413 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 14:06:32,413 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 14:06:32,413 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 14:06:32,413 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 14:06:32,447 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 14:06:32,454 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 14:06:32,475 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:06:32,524 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:06:32,536 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:06:32,572 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 14:06:32,585 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 14:06:32,596 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 14:06:32,636 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:06:32,642 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:06:32,648 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:06:32,668 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:06:32,675 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:06:32,708 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:06:32,714 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 14:06:33,499 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:06:33,525 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:06:33,539 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 14:06:33,591 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:06:33,592 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:06:33,606 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 14:06:33,606 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 14:06:33,637 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 14:06:33,656 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:06:33,657 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:06:33,672 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 14:06:33,673 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 14:06:33,717 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:06:33,718 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:06:33,718 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:06:33,736 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 14:06:33,737 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 14:06:33,775 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:06:33,776 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 14:06:33,777 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 14:06:33,795 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 14:06:33,795 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 14:06:33,825 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 14:06:33,989 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 14:06:34,021 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 14:06:34,041 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 14:06:34,137 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 14:06:34,182 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 14:06:34,222 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 14:06:34,263 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:06:34,272 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 14:06:34,284 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 14:06:34,293 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 14:07:17,739 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '14865#(and (<= (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4) (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|)) (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (select |#valid| |ULTIMATE.start_l3_insert_~list#1.base|) 1) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (< (select |#length| |ULTIMATE.start_l3_insert_~item~1#1.base|) (+ |ULTIMATE.start_l3_insert_~item~1#1.offset| 8)) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l3_insert_~list#1.base|) |ULTIMATE.start_l3_insert_~list#1.offset|) |ULTIMATE.start_l3_insert_#t~mem11#1.base|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= |ULTIMATE.start_l3_insert_#t~mem11#1.offset| (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l3_insert_~list#1.base|) |ULTIMATE.start_l3_insert_~list#1.offset|)) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 14:07:17,739 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 14:07:17,739 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 14:07:17,740 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [26] total 26 [2022-11-23 14:07:17,740 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [102139935] [2022-11-23 14:07:17,740 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 14:07:17,740 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 27 states [2022-11-23 14:07:17,740 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:07:17,741 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 27 interpolants. [2022-11-23 14:07:17,741 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=275, Invalid=2695, Unknown=8, NotChecked=214, Total=3192 [2022-11-23 14:07:17,741 INFO L87 Difference]: Start difference. First operand 250 states and 286 transitions. Second operand has 27 states, 25 states have (on average 2.12) internal successors, (53), 25 states have internal predecessors, (53), 2 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 14:07:19,780 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:07:21,790 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:07:24,033 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:07:26,287 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:07:28,492 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:07:30,796 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:07:35,015 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:07:39,214 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:07:41,407 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 14:07:43,582 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0]