./Ultimate.py --spec ../../sv-benchmarks/c/properties/valid-memsafety.prp --file ../../sv-benchmarks/c/memsafety/test-0235-1.i --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for memory safety (deref-memtrack) Using default analysis Version 4e7fbc69 Calling Ultimate with: /usr/lib/jvm/java-1.11.0-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/config/TaipanMemDerefMemtrack.xml -i ../../sv-benchmarks/c/memsafety/test-0235-1.i -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/config/svcomp-DerefFreeMemtrack-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G valid-free) ) CHECK( init(main()), LTL(G valid-deref) ) CHECK( init(main()), LTL(G valid-memtrack) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 6e8dd9d71aae7a8c83467a9093ad4bffb4ddd59cddc2d90362f34ff651f24f9a --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-4e7fbc6 [2022-11-23 15:39:07,542 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-23 15:39:07,544 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-23 15:39:07,565 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-23 15:39:07,566 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-23 15:39:07,567 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-23 15:39:07,568 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-23 15:39:07,570 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-23 15:39:07,571 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-23 15:39:07,572 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-23 15:39:07,573 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-23 15:39:07,574 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-23 15:39:07,574 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-23 15:39:07,575 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-23 15:39:07,577 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-23 15:39:07,578 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-23 15:39:07,578 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-23 15:39:07,579 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-23 15:39:07,581 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-23 15:39:07,583 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-23 15:39:07,584 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-23 15:39:07,585 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-23 15:39:07,591 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-23 15:39:07,592 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-23 15:39:07,595 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-23 15:39:07,596 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-23 15:39:07,596 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-23 15:39:07,597 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-23 15:39:07,597 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-23 15:39:07,598 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-23 15:39:07,599 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-23 15:39:07,599 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-23 15:39:07,600 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-23 15:39:07,601 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-23 15:39:07,602 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-23 15:39:07,602 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-23 15:39:07,603 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-23 15:39:07,603 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-23 15:39:07,603 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-23 15:39:07,604 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-23 15:39:07,605 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-23 15:39:07,615 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/config/svcomp-DerefFreeMemtrack-32bit-Taipan_Default.epf [2022-11-23 15:39:07,655 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-23 15:39:07,656 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-23 15:39:07,656 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-23 15:39:07,656 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-23 15:39:07,657 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-23 15:39:07,657 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-23 15:39:07,657 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-23 15:39:07,657 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-23 15:39:07,658 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-23 15:39:07,658 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-23 15:39:07,658 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-23 15:39:07,658 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-23 15:39:07,658 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-23 15:39:07,659 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-23 15:39:07,659 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-23 15:39:07,659 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-23 15:39:07,659 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-23 15:39:07,659 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-23 15:39:07,660 INFO L136 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2022-11-23 15:39:07,660 INFO L138 SettingsManager]: * Create parallel compositions if possible=false [2022-11-23 15:39:07,661 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-23 15:39:07,661 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-23 15:39:07,661 INFO L138 SettingsManager]: * Check unreachability of error function in SV-COMP mode=false [2022-11-23 15:39:07,661 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-23 15:39:07,661 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-23 15:39:07,661 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-23 15:39:07,662 INFO L138 SettingsManager]: * Check for the main procedure if all allocated memory was freed=true [2022-11-23 15:39:07,662 INFO L138 SettingsManager]: * Bitprecise bitfields=true [2022-11-23 15:39:07,662 INFO L138 SettingsManager]: * SV-COMP memtrack compatibility mode=true [2022-11-23 15:39:07,662 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-23 15:39:07,666 INFO L138 SettingsManager]: * Adapt memory model on pointer casts if necessary=true [2022-11-23 15:39:07,667 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-23 15:39:07,667 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-23 15:39:07,667 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-23 15:39:07,667 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-23 15:39:07,668 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-23 15:39:07,669 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-23 15:39:07,669 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-23 15:39:07,669 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-23 15:39:07,669 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-23 15:39:07,670 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-23 15:39:07,670 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-23 15:39:07,670 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G valid-free) ) CHECK( init(main()), LTL(G valid-deref) ) CHECK( init(main()), LTL(G valid-memtrack) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 6e8dd9d71aae7a8c83467a9093ad4bffb4ddd59cddc2d90362f34ff651f24f9a [2022-11-23 15:39:07,952 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-23 15:39:07,976 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-23 15:39:07,979 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-23 15:39:07,980 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-23 15:39:07,980 INFO L275 PluginConnector]: CDTParser initialized [2022-11-23 15:39:07,982 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/../../sv-benchmarks/c/memsafety/test-0235-1.i [2022-11-23 15:39:11,091 INFO L500 CDTParser]: Created temporary CDT project at NULL [2022-11-23 15:39:11,368 INFO L351 CDTParser]: Found 1 translation units. [2022-11-23 15:39:11,368 INFO L172 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/sv-benchmarks/c/memsafety/test-0235-1.i [2022-11-23 15:39:11,400 INFO L394 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/data/36767ded4/6ee76eca69c04924947f97aae645a5da/FLAGe077de94a [2022-11-23 15:39:11,419 INFO L402 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/data/36767ded4/6ee76eca69c04924947f97aae645a5da [2022-11-23 15:39:11,425 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-23 15:39:11,427 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-23 15:39:11,428 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-23 15:39:11,429 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-23 15:39:11,432 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-23 15:39:11,433 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 03:39:11" (1/1) ... [2022-11-23 15:39:11,434 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@35eaf70f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:11, skipping insertion in model container [2022-11-23 15:39:11,434 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 03:39:11" (1/1) ... [2022-11-23 15:39:11,442 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-23 15:39:11,503 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-23 15:39:11,896 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-23 15:39:11,913 INFO L203 MainTranslator]: Completed pre-run [2022-11-23 15:39:11,975 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-23 15:39:12,020 INFO L208 MainTranslator]: Completed translation [2022-11-23 15:39:12,020 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12 WrapperNode [2022-11-23 15:39:12,020 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-23 15:39:12,021 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-23 15:39:12,021 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-23 15:39:12,021 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-23 15:39:12,029 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12" (1/1) ... [2022-11-23 15:39:12,051 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12" (1/1) ... [2022-11-23 15:39:12,098 INFO L138 Inliner]: procedures = 188, calls = 69, calls flagged for inlining = 13, calls inlined = 13, statements flattened = 234 [2022-11-23 15:39:12,099 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-23 15:39:12,099 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-23 15:39:12,100 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-23 15:39:12,100 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-23 15:39:12,107 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12" (1/1) ... [2022-11-23 15:39:12,108 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12" (1/1) ... [2022-11-23 15:39:12,112 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12" (1/1) ... [2022-11-23 15:39:12,113 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12" (1/1) ... [2022-11-23 15:39:12,124 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12" (1/1) ... [2022-11-23 15:39:12,130 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12" (1/1) ... [2022-11-23 15:39:12,132 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12" (1/1) ... [2022-11-23 15:39:12,134 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12" (1/1) ... [2022-11-23 15:39:12,137 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-23 15:39:12,138 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-23 15:39:12,138 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-23 15:39:12,139 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-23 15:39:12,140 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12" (1/1) ... [2022-11-23 15:39:12,147 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-23 15:39:12,159 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:39:12,176 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-23 15:39:12,183 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-23 15:39:12,229 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocOnHeap [2022-11-23 15:39:12,229 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-23 15:39:12,229 INFO L130 BoogieDeclarations]: Found specification of procedure write~$Pointer$ [2022-11-23 15:39:12,229 INFO L130 BoogieDeclarations]: Found specification of procedure read~$Pointer$ [2022-11-23 15:39:12,230 INFO L130 BoogieDeclarations]: Found specification of procedure zalloc_or_die [2022-11-23 15:39:12,230 INFO L138 BoogieDeclarations]: Found implementation of procedure zalloc_or_die [2022-11-23 15:39:12,230 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.dealloc [2022-11-23 15:39:12,230 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~$Pointer$ [2022-11-23 15:39:12,230 INFO L130 BoogieDeclarations]: Found specification of procedure l0_destroy [2022-11-23 15:39:12,232 INFO L138 BoogieDeclarations]: Found implementation of procedure l0_destroy [2022-11-23 15:39:12,232 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-23 15:39:12,232 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-23 15:39:12,232 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-23 15:39:12,378 INFO L235 CfgBuilder]: Building ICFG [2022-11-23 15:39:12,380 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-23 15:39:13,101 INFO L276 CfgBuilder]: Performing block encoding [2022-11-23 15:39:13,202 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-23 15:39:13,203 INFO L300 CfgBuilder]: Removed 10 assume(true) statements. [2022-11-23 15:39:13,206 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 03:39:13 BoogieIcfgContainer [2022-11-23 15:39:13,206 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-23 15:39:13,209 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-23 15:39:13,210 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-23 15:39:13,214 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-23 15:39:13,214 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 23.11 03:39:11" (1/3) ... [2022-11-23 15:39:13,215 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@5e47b475 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 03:39:13, skipping insertion in model container [2022-11-23 15:39:13,215 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:39:12" (2/3) ... [2022-11-23 15:39:13,217 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@5e47b475 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 03:39:13, skipping insertion in model container [2022-11-23 15:39:13,217 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 03:39:13" (3/3) ... [2022-11-23 15:39:13,219 INFO L112 eAbstractionObserver]: Analyzing ICFG test-0235-1.i [2022-11-23 15:39:13,238 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:false NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-23 15:39:13,238 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 85 error locations. [2022-11-23 15:39:13,293 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-23 15:39:13,299 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=false, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=All, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@448adbdc, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-23 15:39:13,299 INFO L358 AbstractCegarLoop]: Starting to check reachability of 85 error locations. [2022-11-23 15:39:13,303 INFO L276 IsEmpty]: Start isEmpty. Operand has 201 states, 102 states have (on average 2.1372549019607843) internal successors, (218), 187 states have internal predecessors, (218), 11 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (11), 11 states have call predecessors, (11), 11 states have call successors, (11) [2022-11-23 15:39:13,309 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 4 [2022-11-23 15:39:13,309 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:39:13,309 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1] [2022-11-23 15:39:13,310 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting ULTIMATE.startErr32REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:39:13,314 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:39:13,315 INFO L85 PathProgramCache]: Analyzing trace with hash 450579, now seen corresponding path program 1 times [2022-11-23 15:39:13,322 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:39:13,322 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1193804207] [2022-11-23 15:39:13,323 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:13,323 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:39:13,402 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:39:13,460 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 15:39:13,461 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:39:13,461 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1193804207] [2022-11-23 15:39:13,462 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1193804207] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 15:39:13,462 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 15:39:13,462 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-23 15:39:13,463 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [51503322] [2022-11-23 15:39:13,464 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 15:39:13,467 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-23 15:39:13,467 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:39:13,495 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-23 15:39:13,495 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-23 15:39:13,498 INFO L87 Difference]: Start difference. First operand has 201 states, 102 states have (on average 2.1372549019607843) internal successors, (218), 187 states have internal predecessors, (218), 11 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (11), 11 states have call predecessors, (11), 11 states have call successors, (11) Second operand has 2 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 15:39:13,584 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:39:13,584 INFO L93 Difference]: Finished difference Result 201 states and 230 transitions. [2022-11-23 15:39:13,585 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-23 15:39:13,587 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 3 [2022-11-23 15:39:13,587 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:39:13,595 INFO L225 Difference]: With dead ends: 201 [2022-11-23 15:39:13,595 INFO L226 Difference]: Without dead ends: 200 [2022-11-23 15:39:13,597 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-23 15:39:13,600 INFO L413 NwaCegarLoop]: 206 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 24 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 206 SdHoareTripleChecker+Invalid, 24 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 24 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-23 15:39:13,601 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 206 Invalid, 24 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 24 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-23 15:39:13,619 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 200 states. [2022-11-23 15:39:13,643 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 200 to 200. [2022-11-23 15:39:13,645 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 200 states, 102 states have (on average 2.0294117647058822) internal successors, (207), 186 states have internal predecessors, (207), 11 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (11), 11 states have call predecessors, (11), 11 states have call successors, (11) [2022-11-23 15:39:13,649 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 200 states to 200 states and 229 transitions. [2022-11-23 15:39:13,650 INFO L78 Accepts]: Start accepts. Automaton has 200 states and 229 transitions. Word has length 3 [2022-11-23 15:39:13,650 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:39:13,651 INFO L495 AbstractCegarLoop]: Abstraction has 200 states and 229 transitions. [2022-11-23 15:39:13,651 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 15:39:13,651 INFO L276 IsEmpty]: Start isEmpty. Operand 200 states and 229 transitions. [2022-11-23 15:39:13,651 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 6 [2022-11-23 15:39:13,652 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:39:13,652 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1] [2022-11-23 15:39:13,652 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-23 15:39:13,652 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting zalloc_or_dieErr0ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:39:13,653 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:39:13,653 INFO L85 PathProgramCache]: Analyzing trace with hash 429096002, now seen corresponding path program 1 times [2022-11-23 15:39:13,653 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:39:13,654 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1909747627] [2022-11-23 15:39:13,654 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:13,654 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:39:13,669 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:39:13,670 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [2119312180] [2022-11-23 15:39:13,670 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:13,670 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:39:13,670 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:39:13,675 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:39:13,683 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-23 15:39:13,804 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:39:13,806 INFO L263 TraceCheckSpWp]: Trace formula consists of 85 conjuncts, 6 conjunts are in the unsatisfiable core [2022-11-23 15:39:13,811 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:39:13,903 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 15:39:13,914 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 15:39:13,914 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-23 15:39:13,915 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:39:13,915 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1909747627] [2022-11-23 15:39:13,916 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:39:13,916 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2119312180] [2022-11-23 15:39:13,917 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2119312180] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 15:39:13,918 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 15:39:13,918 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-23 15:39:13,920 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [422823263] [2022-11-23 15:39:13,922 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 15:39:13,923 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-23 15:39:13,923 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:39:13,924 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-23 15:39:13,925 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 15:39:13,925 INFO L87 Difference]: Start difference. First operand 200 states and 229 transitions. Second operand has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 15:39:14,083 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:39:14,083 INFO L93 Difference]: Finished difference Result 199 states and 228 transitions. [2022-11-23 15:39:14,084 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-23 15:39:14,084 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 5 [2022-11-23 15:39:14,085 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:39:14,086 INFO L225 Difference]: With dead ends: 199 [2022-11-23 15:39:14,086 INFO L226 Difference]: Without dead ends: 199 [2022-11-23 15:39:14,086 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 15:39:14,088 INFO L413 NwaCegarLoop]: 201 mSDtfsCounter, 5 mSDsluCounter, 138 mSDsCounter, 0 mSdLazyCounter, 111 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 5 SdHoareTripleChecker+Valid, 339 SdHoareTripleChecker+Invalid, 111 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 111 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 15:39:14,088 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [5 Valid, 339 Invalid, 111 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 111 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 15:39:14,089 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 199 states. [2022-11-23 15:39:14,098 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 199 to 199. [2022-11-23 15:39:14,099 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 199 states, 102 states have (on average 2.019607843137255) internal successors, (206), 185 states have internal predecessors, (206), 11 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (11), 11 states have call predecessors, (11), 11 states have call successors, (11) [2022-11-23 15:39:14,101 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 199 states to 199 states and 228 transitions. [2022-11-23 15:39:14,101 INFO L78 Accepts]: Start accepts. Automaton has 199 states and 228 transitions. Word has length 5 [2022-11-23 15:39:14,101 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:39:14,102 INFO L495 AbstractCegarLoop]: Abstraction has 199 states and 228 transitions. [2022-11-23 15:39:14,102 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 15:39:14,102 INFO L276 IsEmpty]: Start isEmpty. Operand 199 states and 228 transitions. [2022-11-23 15:39:14,102 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 7 [2022-11-23 15:39:14,102 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:39:14,103 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1] [2022-11-23 15:39:14,115 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-23 15:39:14,308 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:39:14,309 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting zalloc_or_dieErr1ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:39:14,309 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:39:14,309 INFO L85 PathProgramCache]: Analyzing trace with hash 417074595, now seen corresponding path program 1 times [2022-11-23 15:39:14,309 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:39:14,310 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [269339279] [2022-11-23 15:39:14,310 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:14,310 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:39:14,325 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:39:14,326 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1784250085] [2022-11-23 15:39:14,326 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:14,326 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:39:14,326 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:39:14,334 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:39:14,351 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-23 15:39:14,438 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:39:14,439 INFO L263 TraceCheckSpWp]: Trace formula consists of 87 conjuncts, 20 conjunts are in the unsatisfiable core [2022-11-23 15:39:14,442 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:39:14,500 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 8 treesize of output 7 [2022-11-23 15:39:14,531 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 15:39:14,532 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-23 15:39:14,532 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:39:14,532 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [269339279] [2022-11-23 15:39:14,532 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:39:14,532 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1784250085] [2022-11-23 15:39:14,533 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1784250085] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 15:39:14,533 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 15:39:14,533 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-23 15:39:14,533 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1284608017] [2022-11-23 15:39:14,533 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 15:39:14,533 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-23 15:39:14,534 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:39:14,534 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-23 15:39:14,534 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-23 15:39:14,534 INFO L87 Difference]: Start difference. First operand 199 states and 228 transitions. Second operand has 4 states, 3 states have (on average 1.6666666666666667) internal successors, (5), 3 states have internal predecessors, (5), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 15:39:14,753 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:39:14,753 INFO L93 Difference]: Finished difference Result 204 states and 233 transitions. [2022-11-23 15:39:14,754 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-23 15:39:14,781 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 1.6666666666666667) internal successors, (5), 3 states have internal predecessors, (5), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 6 [2022-11-23 15:39:14,782 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:39:14,783 INFO L225 Difference]: With dead ends: 204 [2022-11-23 15:39:14,783 INFO L226 Difference]: Without dead ends: 204 [2022-11-23 15:39:14,783 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-23 15:39:14,785 INFO L413 NwaCegarLoop]: 196 mSDtfsCounter, 8 mSDsluCounter, 345 mSDsCounter, 0 mSdLazyCounter, 138 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 541 SdHoareTripleChecker+Invalid, 142 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 138 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-23 15:39:14,785 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 541 Invalid, 142 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 138 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-23 15:39:14,786 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 204 states. [2022-11-23 15:39:14,794 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 204 to 204. [2022-11-23 15:39:14,795 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 204 states, 106 states have (on average 1.990566037735849) internal successors, (211), 189 states have internal predecessors, (211), 11 states have call successors, (11), 3 states have call predecessors, (11), 3 states have return successors, (11), 11 states have call predecessors, (11), 11 states have call successors, (11) [2022-11-23 15:39:14,797 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 204 states to 204 states and 233 transitions. [2022-11-23 15:39:14,798 INFO L78 Accepts]: Start accepts. Automaton has 204 states and 233 transitions. Word has length 6 [2022-11-23 15:39:14,798 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:39:14,798 INFO L495 AbstractCegarLoop]: Abstraction has 204 states and 233 transitions. [2022-11-23 15:39:14,798 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 1.6666666666666667) internal successors, (5), 3 states have internal predecessors, (5), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 15:39:14,798 INFO L276 IsEmpty]: Start isEmpty. Operand 204 states and 233 transitions. [2022-11-23 15:39:14,799 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 46 [2022-11-23 15:39:14,800 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:39:14,800 INFO L195 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:39:14,812 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-23 15:39:15,005 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:39:15,006 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting zalloc_or_dieErr1ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:39:15,007 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:39:15,007 INFO L85 PathProgramCache]: Analyzing trace with hash -1974734944, now seen corresponding path program 1 times [2022-11-23 15:39:15,007 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:39:15,007 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [386420580] [2022-11-23 15:39:15,007 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:15,008 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:39:15,055 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:39:15,062 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [692837116] [2022-11-23 15:39:15,062 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:15,063 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:39:15,063 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:39:15,064 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:39:15,071 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-23 15:39:15,284 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:39:15,288 INFO L263 TraceCheckSpWp]: Trace formula consists of 499 conjuncts, 19 conjunts are in the unsatisfiable core [2022-11-23 15:39:15,293 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:39:15,388 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 15:39:15,488 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2022-11-23 15:39:15,609 INFO L134 CoverageAnalysis]: Checked inductivity of 65 backedges. 31 proven. 0 refuted. 0 times theorem prover too weak. 34 trivial. 0 not checked. [2022-11-23 15:39:15,610 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-23 15:39:15,610 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:39:15,610 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [386420580] [2022-11-23 15:39:15,610 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:39:15,610 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [692837116] [2022-11-23 15:39:15,611 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [692837116] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 15:39:15,611 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 15:39:15,611 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2022-11-23 15:39:15,611 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [182916665] [2022-11-23 15:39:15,611 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 15:39:15,612 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-23 15:39:15,612 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:39:15,612 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-23 15:39:15,613 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2022-11-23 15:39:15,613 INFO L87 Difference]: Start difference. First operand 204 states and 233 transitions. Second operand has 5 states, 4 states have (on average 5.5) internal successors, (22), 5 states have internal predecessors, (22), 2 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 1 states have call successors, (5) [2022-11-23 15:39:17,653 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:39:20,105 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:39:23,234 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:39:23,588 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:39:23,588 INFO L93 Difference]: Finished difference Result 208 states and 237 transitions. [2022-11-23 15:39:23,588 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-23 15:39:23,589 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 5.5) internal successors, (22), 5 states have internal predecessors, (22), 2 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 1 states have call successors, (5) Word has length 45 [2022-11-23 15:39:23,589 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:39:23,590 INFO L225 Difference]: With dead ends: 208 [2022-11-23 15:39:23,590 INFO L226 Difference]: Without dead ends: 206 [2022-11-23 15:39:23,590 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 46 GetRequests, 41 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=17, Invalid=25, Unknown=0, NotChecked=0, Total=42 [2022-11-23 15:39:23,591 INFO L413 NwaCegarLoop]: 195 mSDtfsCounter, 7 mSDsluCounter, 521 mSDsCounter, 0 mSdLazyCounter, 186 mSolverCounterSat, 5 mSolverCounterUnsat, 3 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 7.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 7 SdHoareTripleChecker+Valid, 716 SdHoareTripleChecker+Invalid, 194 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 186 IncrementalHoareTripleChecker+Invalid, 3 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 7.8s IncrementalHoareTripleChecker+Time [2022-11-23 15:39:23,592 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [7 Valid, 716 Invalid, 194 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 186 Invalid, 3 Unknown, 0 Unchecked, 7.8s Time] [2022-11-23 15:39:23,593 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 206 states. [2022-11-23 15:39:23,599 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 206 to 206. [2022-11-23 15:39:23,600 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 206 states, 108 states have (on average 1.9722222222222223) internal successors, (213), 191 states have internal predecessors, (213), 11 states have call successors, (11), 3 states have call predecessors, (11), 3 states have return successors, (11), 11 states have call predecessors, (11), 11 states have call successors, (11) [2022-11-23 15:39:23,602 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 206 states to 206 states and 235 transitions. [2022-11-23 15:39:23,602 INFO L78 Accepts]: Start accepts. Automaton has 206 states and 235 transitions. Word has length 45 [2022-11-23 15:39:23,603 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:39:23,603 INFO L495 AbstractCegarLoop]: Abstraction has 206 states and 235 transitions. [2022-11-23 15:39:23,603 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 5.5) internal successors, (22), 5 states have internal predecessors, (22), 2 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 1 states have call successors, (5) [2022-11-23 15:39:23,603 INFO L276 IsEmpty]: Start isEmpty. Operand 206 states and 235 transitions. [2022-11-23 15:39:23,604 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 51 [2022-11-23 15:39:23,604 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:39:23,605 INFO L195 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:39:23,619 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-23 15:39:23,819 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:39:23,819 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting zalloc_or_dieErr1ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:39:23,820 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:39:23,820 INFO L85 PathProgramCache]: Analyzing trace with hash -1061303319, now seen corresponding path program 1 times [2022-11-23 15:39:23,820 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:39:23,820 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1444794384] [2022-11-23 15:39:23,820 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:23,820 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:39:23,888 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:39:23,891 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1139616482] [2022-11-23 15:39:23,893 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:23,894 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:39:23,901 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:39:23,905 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:39:23,931 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-11-23 15:39:24,213 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:39:24,217 INFO L263 TraceCheckSpWp]: Trace formula consists of 574 conjuncts, 25 conjunts are in the unsatisfiable core [2022-11-23 15:39:24,222 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:39:24,252 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 15:39:24,300 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:39:24,407 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 42 proven. 9 refuted. 0 times theorem prover too weak. 49 trivial. 0 not checked. [2022-11-23 15:39:24,407 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:39:24,662 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 43 proven. 1 refuted. 0 times theorem prover too weak. 56 trivial. 0 not checked. [2022-11-23 15:39:24,662 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:39:24,663 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1444794384] [2022-11-23 15:39:24,663 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:39:24,663 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1139616482] [2022-11-23 15:39:24,663 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1139616482] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 15:39:24,663 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1269177129] [2022-11-23 15:39:24,691 INFO L159 IcfgInterpreter]: Started Sifa with 23 locations of interest [2022-11-23 15:39:24,691 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:39:24,696 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:39:24,701 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:39:24,702 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:39:24,797 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:39:24,806 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:39:24,841 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:24,852 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:39:24,865 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:24,960 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 15:39:24,990 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 15:39:25,008 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 15:39:25,094 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:25,102 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:39:25,117 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:25,229 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:25,237 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:25,286 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:25,320 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:26,725 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:39:26,788 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:39:26,803 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:39:26,921 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:26,952 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:26,996 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:39:27,082 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:27,092 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:39:27,103 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:27,135 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:39:32,265 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSifa [1269177129] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 15:39:32,265 INFO L184 FreeRefinementEngine]: Found 1 perfect and 2 imperfect interpolant sequences. [2022-11-23 15:39:32,265 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [20] imperfect sequences [7, 6] total 31 [2022-11-23 15:39:32,266 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [330864415] [2022-11-23 15:39:32,266 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 15:39:32,267 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2022-11-23 15:39:32,267 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:39:32,267 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2022-11-23 15:39:32,268 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=139, Invalid=791, Unknown=0, NotChecked=0, Total=930 [2022-11-23 15:39:32,268 INFO L87 Difference]: Start difference. First operand 206 states and 235 transitions. Second operand has 22 states, 14 states have (on average 1.2142857142857142) internal successors, (17), 15 states have internal predecessors, (17), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-23 15:39:34,976 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:39:34,977 INFO L93 Difference]: Finished difference Result 322 states and 366 transitions. [2022-11-23 15:39:34,977 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2022-11-23 15:39:34,978 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 14 states have (on average 1.2142857142857142) internal successors, (17), 15 states have internal predecessors, (17), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) Word has length 50 [2022-11-23 15:39:34,978 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:39:34,979 INFO L225 Difference]: With dead ends: 322 [2022-11-23 15:39:34,979 INFO L226 Difference]: Without dead ends: 322 [2022-11-23 15:39:34,980 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 150 GetRequests, 112 SyntacticMatches, 7 SemanticMatches, 31 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 239 ImplicationChecksByTransitivity, 5.7s TimeCoverageRelationStatistics Valid=155, Invalid=901, Unknown=0, NotChecked=0, Total=1056 [2022-11-23 15:39:34,981 INFO L413 NwaCegarLoop]: 141 mSDtfsCounter, 111 mSDsluCounter, 1051 mSDsCounter, 0 mSdLazyCounter, 1454 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 121 SdHoareTripleChecker+Valid, 1192 SdHoareTripleChecker+Invalid, 1462 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 1454 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.2s IncrementalHoareTripleChecker+Time [2022-11-23 15:39:34,981 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [121 Valid, 1192 Invalid, 1462 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 1454 Invalid, 0 Unknown, 0 Unchecked, 2.2s Time] [2022-11-23 15:39:34,982 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 322 states. [2022-11-23 15:39:35,001 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 322 to 251. [2022-11-23 15:39:35,009 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 251 states, 145 states have (on average 1.9448275862068964) internal successors, (282), 228 states have internal predecessors, (282), 17 states have call successors, (17), 5 states have call predecessors, (17), 5 states have return successors, (17), 17 states have call predecessors, (17), 17 states have call successors, (17) [2022-11-23 15:39:35,011 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 251 states to 251 states and 316 transitions. [2022-11-23 15:39:35,012 INFO L78 Accepts]: Start accepts. Automaton has 251 states and 316 transitions. Word has length 50 [2022-11-23 15:39:35,012 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:39:35,012 INFO L495 AbstractCegarLoop]: Abstraction has 251 states and 316 transitions. [2022-11-23 15:39:35,012 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 14 states have (on average 1.2142857142857142) internal successors, (17), 15 states have internal predecessors, (17), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-23 15:39:35,013 INFO L276 IsEmpty]: Start isEmpty. Operand 251 states and 316 transitions. [2022-11-23 15:39:35,014 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 55 [2022-11-23 15:39:35,014 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:39:35,014 INFO L195 NwaCegarLoop]: trace histogram [6, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:39:35,026 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-11-23 15:39:35,214 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:39:35,215 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:39:35,215 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:39:35,215 INFO L85 PathProgramCache]: Analyzing trace with hash 1417431757, now seen corresponding path program 1 times [2022-11-23 15:39:35,215 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:39:35,216 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [780008299] [2022-11-23 15:39:35,216 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:35,216 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:39:35,254 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:39:35,257 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [304881552] [2022-11-23 15:39:35,257 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:35,257 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:39:35,257 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:39:35,258 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:39:35,276 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2022-11-23 15:39:35,461 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:39:35,464 INFO L263 TraceCheckSpWp]: Trace formula consists of 617 conjuncts, 22 conjunts are in the unsatisfiable core [2022-11-23 15:39:35,467 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:39:35,528 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_219 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_219))) is different from true [2022-11-23 15:39:35,585 INFO L321 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2022-11-23 15:39:35,586 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2022-11-23 15:39:35,599 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 61 proven. 6 refuted. 0 times theorem prover too weak. 58 trivial. 1 not checked. [2022-11-23 15:39:35,599 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:39:35,808 INFO L321 Elim1Store]: treesize reduction 5, result has 37.5 percent of original size [2022-11-23 15:39:35,808 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 11 [2022-11-23 15:39:35,834 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 61 proven. 7 refuted. 0 times theorem prover too weak. 58 trivial. 0 not checked. [2022-11-23 15:39:35,835 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:39:35,835 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [780008299] [2022-11-23 15:39:35,835 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:39:35,835 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [304881552] [2022-11-23 15:39:35,835 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [304881552] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 15:39:35,835 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [387725065] [2022-11-23 15:39:35,840 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-23 15:39:35,841 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:39:35,841 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:39:35,842 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:39:35,844 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:39:35,881 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:39:35,888 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:39:35,911 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:39:35,922 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:39:35,938 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:39:36,020 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 15:39:36,021 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-23 15:39:36,059 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:39:36,059 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 15:39:36,096 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:39:36,096 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-23 15:39:36,230 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:36,240 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:39:36,248 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:36,336 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:36,342 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:36,384 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:36,423 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:37,953 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:39:37,995 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:39:38,028 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:39:38,123 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:39:38,163 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:39:38,196 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:39:38,242 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:38,251 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:38,263 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:39:38,274 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:39:44,186 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '3236#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1)) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 15:39:44,186 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:39:44,187 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-23 15:39:44,187 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 8] total 11 [2022-11-23 15:39:44,187 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [536783913] [2022-11-23 15:39:44,187 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-23 15:39:44,188 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2022-11-23 15:39:44,188 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:39:44,188 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2022-11-23 15:39:44,189 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=152, Invalid=907, Unknown=1, NotChecked=62, Total=1122 [2022-11-23 15:39:44,189 INFO L87 Difference]: Start difference. First operand 251 states and 316 transitions. Second operand has 12 states, 10 states have (on average 3.2) internal successors, (32), 10 states have internal predecessors, (32), 2 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-11-23 15:39:45,318 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:39:45,318 INFO L93 Difference]: Finished difference Result 387 states and 480 transitions. [2022-11-23 15:39:45,319 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-11-23 15:39:45,319 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 10 states have (on average 3.2) internal successors, (32), 10 states have internal predecessors, (32), 2 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) Word has length 54 [2022-11-23 15:39:45,319 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:39:45,322 INFO L225 Difference]: With dead ends: 387 [2022-11-23 15:39:45,322 INFO L226 Difference]: Without dead ends: 387 [2022-11-23 15:39:45,323 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 166 GetRequests, 121 SyntacticMatches, 9 SemanticMatches, 36 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 264 ImplicationChecksByTransitivity, 6.1s TimeCoverageRelationStatistics Valid=182, Invalid=1153, Unknown=1, NotChecked=70, Total=1406 [2022-11-23 15:39:45,323 INFO L413 NwaCegarLoop]: 171 mSDtfsCounter, 311 mSDsluCounter, 1247 mSDsCounter, 0 mSdLazyCounter, 1037 mSolverCounterSat, 35 mSolverCounterUnsat, 38 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 311 SdHoareTripleChecker+Valid, 1418 SdHoareTripleChecker+Invalid, 1496 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 35 IncrementalHoareTripleChecker+Valid, 1037 IncrementalHoareTripleChecker+Invalid, 38 IncrementalHoareTripleChecker+Unknown, 386 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2022-11-23 15:39:45,324 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [311 Valid, 1418 Invalid, 1496 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [35 Valid, 1037 Invalid, 38 Unknown, 386 Unchecked, 1.0s Time] [2022-11-23 15:39:45,325 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 387 states. [2022-11-23 15:39:45,359 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 387 to 249. [2022-11-23 15:39:45,359 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 249 states, 145 states have (on average 1.9172413793103449) internal successors, (278), 226 states have internal predecessors, (278), 17 states have call successors, (17), 5 states have call predecessors, (17), 5 states have return successors, (17), 17 states have call predecessors, (17), 17 states have call successors, (17) [2022-11-23 15:39:45,361 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 249 states to 249 states and 312 transitions. [2022-11-23 15:39:45,361 INFO L78 Accepts]: Start accepts. Automaton has 249 states and 312 transitions. Word has length 54 [2022-11-23 15:39:45,362 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:39:45,362 INFO L495 AbstractCegarLoop]: Abstraction has 249 states and 312 transitions. [2022-11-23 15:39:45,362 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 10 states have (on average 3.2) internal successors, (32), 10 states have internal predecessors, (32), 2 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-11-23 15:39:45,362 INFO L276 IsEmpty]: Start isEmpty. Operand 249 states and 312 transitions. [2022-11-23 15:39:45,364 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 55 [2022-11-23 15:39:45,367 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:39:45,367 INFO L195 NwaCegarLoop]: trace histogram [6, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:39:45,379 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2022-11-23 15:39:45,574 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2022-11-23 15:39:45,574 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:39:45,575 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:39:45,575 INFO L85 PathProgramCache]: Analyzing trace with hash 1417431758, now seen corresponding path program 1 times [2022-11-23 15:39:45,575 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:39:45,575 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [999967379] [2022-11-23 15:39:45,575 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:45,576 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:39:45,599 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:39:45,600 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [825902216] [2022-11-23 15:39:45,600 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:45,600 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:39:45,600 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:39:45,601 INFO L229 MonitoredProcess]: Starting monitored process 7 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:39:45,629 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2022-11-23 15:39:45,958 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:39:45,961 INFO L263 TraceCheckSpWp]: Trace formula consists of 617 conjuncts, 25 conjunts are in the unsatisfiable core [2022-11-23 15:39:45,964 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:39:45,990 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 15:39:46,014 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:39:46,067 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 67 proven. 9 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2022-11-23 15:39:46,068 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:39:46,286 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 28 proven. 8 refuted. 0 times theorem prover too weak. 90 trivial. 0 not checked. [2022-11-23 15:39:46,287 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:39:46,287 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [999967379] [2022-11-23 15:39:46,287 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:39:46,287 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [825902216] [2022-11-23 15:39:46,287 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [825902216] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 15:39:46,288 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1673564190] [2022-11-23 15:39:46,290 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-23 15:39:46,290 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:39:46,290 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:39:46,291 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:39:46,291 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:39:46,316 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:39:46,324 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:39:46,341 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:39:46,351 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:39:46,362 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:39:46,428 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:39:46,429 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 182 treesize of output 185 [2022-11-23 15:39:46,461 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 15:39:46,462 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 180 treesize of output 183 [2022-11-23 15:39:46,491 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:39:46,491 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-23 15:39:46,651 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:46,658 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:46,668 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:39:46,723 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:46,729 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:46,764 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:46,789 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:48,086 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:39:48,129 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:39:48,154 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:39:48,267 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:48,287 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:39:48,327 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:48,374 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:39:48,382 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:48,393 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:48,406 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:39:54,155 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4233#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (< (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 15:39:54,156 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:39:54,156 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-23 15:39:54,156 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 6] total 11 [2022-11-23 15:39:54,156 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [422486130] [2022-11-23 15:39:54,156 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-23 15:39:54,157 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2022-11-23 15:39:54,157 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:39:54,157 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2022-11-23 15:39:54,158 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=162, Invalid=894, Unknown=0, NotChecked=0, Total=1056 [2022-11-23 15:39:54,158 INFO L87 Difference]: Start difference. First operand 249 states and 312 transitions. Second operand has 11 states, 9 states have (on average 3.7777777777777777) internal successors, (34), 11 states have internal predecessors, (34), 2 states have call successors, (7), 2 states have call predecessors, (7), 4 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2022-11-23 15:39:54,700 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:39:54,701 INFO L93 Difference]: Finished difference Result 269 states and 336 transitions. [2022-11-23 15:39:54,701 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-11-23 15:39:54,701 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 9 states have (on average 3.7777777777777777) internal successors, (34), 11 states have internal predecessors, (34), 2 states have call successors, (7), 2 states have call predecessors, (7), 4 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) Word has length 54 [2022-11-23 15:39:54,702 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:39:54,704 INFO L225 Difference]: With dead ends: 269 [2022-11-23 15:39:54,704 INFO L226 Difference]: Without dead ends: 261 [2022-11-23 15:39:54,705 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 166 GetRequests, 123 SyntacticMatches, 6 SemanticMatches, 37 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 395 ImplicationChecksByTransitivity, 6.0s TimeCoverageRelationStatistics Valid=215, Invalid=1267, Unknown=0, NotChecked=0, Total=1482 [2022-11-23 15:39:54,706 INFO L413 NwaCegarLoop]: 193 mSDtfsCounter, 17 mSDsluCounter, 1037 mSDsCounter, 0 mSdLazyCounter, 344 mSolverCounterSat, 14 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 17 SdHoareTripleChecker+Valid, 1230 SdHoareTripleChecker+Invalid, 358 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 14 IncrementalHoareTripleChecker+Valid, 344 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2022-11-23 15:39:54,707 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [17 Valid, 1230 Invalid, 358 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [14 Valid, 344 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2022-11-23 15:39:54,708 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 261 states. [2022-11-23 15:39:54,714 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 261 to 261. [2022-11-23 15:39:54,715 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 261 states, 157 states have (on average 1.8471337579617835) internal successors, (290), 238 states have internal predecessors, (290), 17 states have call successors, (17), 5 states have call predecessors, (17), 5 states have return successors, (17), 17 states have call predecessors, (17), 17 states have call successors, (17) [2022-11-23 15:39:54,717 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 261 states to 261 states and 324 transitions. [2022-11-23 15:39:54,717 INFO L78 Accepts]: Start accepts. Automaton has 261 states and 324 transitions. Word has length 54 [2022-11-23 15:39:54,718 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:39:54,718 INFO L495 AbstractCegarLoop]: Abstraction has 261 states and 324 transitions. [2022-11-23 15:39:54,718 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 9 states have (on average 3.7777777777777777) internal successors, (34), 11 states have internal predecessors, (34), 2 states have call successors, (7), 2 states have call predecessors, (7), 4 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2022-11-23 15:39:54,718 INFO L276 IsEmpty]: Start isEmpty. Operand 261 states and 324 transitions. [2022-11-23 15:39:54,726 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 73 [2022-11-23 15:39:54,726 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:39:54,727 INFO L195 NwaCegarLoop]: trace histogram [24, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:39:54,739 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2022-11-23 15:39:54,934 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,7 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:39:54,934 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:39:54,935 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:39:54,935 INFO L85 PathProgramCache]: Analyzing trace with hash 466014350, now seen corresponding path program 2 times [2022-11-23 15:39:54,935 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:39:54,935 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [628682411] [2022-11-23 15:39:54,935 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:39:54,935 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:39:54,979 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:39:54,979 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1771985622] [2022-11-23 15:39:54,979 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-23 15:39:54,980 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:39:54,980 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:39:54,981 INFO L229 MonitoredProcess]: Starting monitored process 8 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:39:55,007 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2022-11-23 15:39:55,600 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 3 check-sat command(s) [2022-11-23 15:39:55,601 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-23 15:39:55,603 INFO L263 TraceCheckSpWp]: Trace formula consists of 365 conjuncts, 27 conjunts are in the unsatisfiable core [2022-11-23 15:39:55,607 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:39:55,622 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 15:39:55,643 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:39:55,759 INFO L134 CoverageAnalysis]: Checked inductivity of 495 backedges. 140 proven. 10 refuted. 0 times theorem prover too weak. 345 trivial. 0 not checked. [2022-11-23 15:39:55,759 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:39:56,213 INFO L134 CoverageAnalysis]: Checked inductivity of 495 backedges. 140 proven. 10 refuted. 0 times theorem prover too weak. 345 trivial. 0 not checked. [2022-11-23 15:39:56,213 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:39:56,214 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [628682411] [2022-11-23 15:39:56,214 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:39:56,214 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1771985622] [2022-11-23 15:39:56,214 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1771985622] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 15:39:56,214 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [388245145] [2022-11-23 15:39:56,217 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-23 15:39:56,218 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:39:56,219 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:39:56,219 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:39:56,219 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:39:56,248 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:39:56,256 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:39:56,371 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:39:56,429 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:39:56,441 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:39:56,532 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 15:39:56,533 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-23 15:39:56,563 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:39:56,564 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 15:39:56,610 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:39:56,611 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-23 15:39:56,710 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:56,716 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:56,726 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:39:56,776 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:56,783 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:56,823 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:56,828 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:39:58,207 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:39:58,249 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:39:58,267 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:39:58,398 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:39:58,431 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:39:58,490 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:39:58,532 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:58,542 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:39:58,552 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:39:58,562 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:40:04,896 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '5239#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (< (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 15:40:04,897 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:40:04,897 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-23 15:40:04,897 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 9] total 16 [2022-11-23 15:40:04,897 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [580273764] [2022-11-23 15:40:04,897 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-23 15:40:04,898 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 16 states [2022-11-23 15:40:04,898 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:40:04,898 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 16 interpolants. [2022-11-23 15:40:04,899 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=201, Invalid=1205, Unknown=0, NotChecked=0, Total=1406 [2022-11-23 15:40:04,899 INFO L87 Difference]: Start difference. First operand 261 states and 324 transitions. Second operand has 16 states, 14 states have (on average 2.357142857142857) internal successors, (33), 16 states have internal predecessors, (33), 1 states have call successors, (6), 1 states have call predecessors, (6), 3 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) [2022-11-23 15:40:06,457 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:40:06,457 INFO L93 Difference]: Finished difference Result 281 states and 352 transitions. [2022-11-23 15:40:06,461 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2022-11-23 15:40:06,462 INFO L78 Accepts]: Start accepts. Automaton has has 16 states, 14 states have (on average 2.357142857142857) internal successors, (33), 16 states have internal predecessors, (33), 1 states have call successors, (6), 1 states have call predecessors, (6), 3 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) Word has length 72 [2022-11-23 15:40:06,462 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:40:06,463 INFO L225 Difference]: With dead ends: 281 [2022-11-23 15:40:06,463 INFO L226 Difference]: Without dead ends: 275 [2022-11-23 15:40:06,464 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 231 GetRequests, 172 SyntacticMatches, 6 SemanticMatches, 53 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 773 ImplicationChecksByTransitivity, 7.5s TimeCoverageRelationStatistics Valid=446, Invalid=2524, Unknown=0, NotChecked=0, Total=2970 [2022-11-23 15:40:06,465 INFO L413 NwaCegarLoop]: 192 mSDtfsCounter, 85 mSDsluCounter, 1402 mSDsCounter, 0 mSdLazyCounter, 472 mSolverCounterSat, 64 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 85 SdHoareTripleChecker+Valid, 1594 SdHoareTripleChecker+Invalid, 536 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 64 IncrementalHoareTripleChecker+Valid, 472 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2022-11-23 15:40:06,465 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [85 Valid, 1594 Invalid, 536 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [64 Valid, 472 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2022-11-23 15:40:06,466 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 275 states. [2022-11-23 15:40:06,474 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 275 to 275. [2022-11-23 15:40:06,475 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 275 states, 171 states have (on average 1.7777777777777777) internal successors, (304), 252 states have internal predecessors, (304), 17 states have call successors, (17), 5 states have call predecessors, (17), 5 states have return successors, (17), 17 states have call predecessors, (17), 17 states have call successors, (17) [2022-11-23 15:40:06,479 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 275 states to 275 states and 338 transitions. [2022-11-23 15:40:06,480 INFO L78 Accepts]: Start accepts. Automaton has 275 states and 338 transitions. Word has length 72 [2022-11-23 15:40:06,480 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:40:06,481 INFO L495 AbstractCegarLoop]: Abstraction has 275 states and 338 transitions. [2022-11-23 15:40:06,482 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 16 states, 14 states have (on average 2.357142857142857) internal successors, (33), 16 states have internal predecessors, (33), 1 states have call successors, (6), 1 states have call predecessors, (6), 3 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) [2022-11-23 15:40:06,482 INFO L276 IsEmpty]: Start isEmpty. Operand 275 states and 338 transitions. [2022-11-23 15:40:06,483 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 84 [2022-11-23 15:40:06,485 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:40:06,485 INFO L195 NwaCegarLoop]: trace histogram [35, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:40:06,500 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Forceful destruction successful, exit code 0 [2022-11-23 15:40:06,692 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,8 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:40:06,692 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:40:06,692 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:40:06,692 INFO L85 PathProgramCache]: Analyzing trace with hash 358118405, now seen corresponding path program 3 times [2022-11-23 15:40:06,693 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:40:06,693 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [506611202] [2022-11-23 15:40:06,693 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:40:06,693 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:40:06,747 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:40:06,749 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1358160068] [2022-11-23 15:40:06,749 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-23 15:40:06,750 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:40:06,750 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:40:06,751 INFO L229 MonitoredProcess]: Starting monitored process 9 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:40:06,775 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2022-11-23 15:40:08,853 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-23 15:40:08,853 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-23 15:40:08,859 INFO L263 TraceCheckSpWp]: Trace formula consists of 1052 conjuncts, 28 conjunts are in the unsatisfiable core [2022-11-23 15:40:08,862 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:40:08,886 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 15:40:09,000 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2022-11-23 15:40:10,459 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 230 proven. 15 refuted. 0 times theorem prover too weak. 635 trivial. 0 not checked. [2022-11-23 15:40:10,459 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:40:11,404 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 0 proven. 240 refuted. 0 times theorem prover too weak. 640 trivial. 0 not checked. [2022-11-23 15:40:11,405 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:40:11,405 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [506611202] [2022-11-23 15:40:11,405 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:40:11,405 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1358160068] [2022-11-23 15:40:11,405 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1358160068] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 15:40:11,405 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1583054862] [2022-11-23 15:40:11,414 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-23 15:40:11,414 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:40:11,414 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:40:11,416 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:40:11,417 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:40:11,445 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:40:11,456 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:40:11,476 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:40:11,557 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:40:11,570 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:40:11,634 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 15:40:11,635 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-23 15:40:11,668 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:40:11,668 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 15:40:11,696 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:40:11,696 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-23 15:40:11,814 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:40:11,822 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:40:11,829 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:40:11,867 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:40:11,873 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:40:11,948 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:40:11,955 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:40:13,246 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:40:13,276 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:40:13,309 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:40:13,412 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:40:13,461 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:40:13,504 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:40:13,560 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:40:13,571 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:40:13,582 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:40:13,593 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:40:20,508 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6361#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (< (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 15:40:20,509 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:40:20,509 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-23 15:40:20,509 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 10] total 18 [2022-11-23 15:40:20,509 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [549957551] [2022-11-23 15:40:20,510 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-23 15:40:20,510 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 18 states [2022-11-23 15:40:20,510 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:40:20,511 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 18 interpolants. [2022-11-23 15:40:20,511 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=213, Invalid=1347, Unknown=0, NotChecked=0, Total=1560 [2022-11-23 15:40:20,511 INFO L87 Difference]: Start difference. First operand 275 states and 338 transitions. Second operand has 18 states, 16 states have (on average 2.5) internal successors, (40), 18 states have internal predecessors, (40), 2 states have call successors, (11), 2 states have call predecessors, (11), 4 states have return successors, (12), 1 states have call predecessors, (12), 2 states have call successors, (12) [2022-11-23 15:40:22,900 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:40:22,900 INFO L93 Difference]: Finished difference Result 285 states and 350 transitions. [2022-11-23 15:40:22,901 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2022-11-23 15:40:22,901 INFO L78 Accepts]: Start accepts. Automaton has has 18 states, 16 states have (on average 2.5) internal successors, (40), 18 states have internal predecessors, (40), 2 states have call successors, (11), 2 states have call predecessors, (11), 4 states have return successors, (12), 1 states have call predecessors, (12), 2 states have call successors, (12) Word has length 83 [2022-11-23 15:40:22,901 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:40:22,903 INFO L225 Difference]: With dead ends: 285 [2022-11-23 15:40:22,903 INFO L226 Difference]: Without dead ends: 281 [2022-11-23 15:40:22,904 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 257 GetRequests, 203 SyntacticMatches, 6 SemanticMatches, 48 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 578 ImplicationChecksByTransitivity, 9.5s TimeCoverageRelationStatistics Valid=327, Invalid=2123, Unknown=0, NotChecked=0, Total=2450 [2022-11-23 15:40:22,904 INFO L413 NwaCegarLoop]: 193 mSDtfsCounter, 21 mSDsluCounter, 1402 mSDsCounter, 0 mSdLazyCounter, 472 mSolverCounterSat, 27 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 21 SdHoareTripleChecker+Valid, 1595 SdHoareTripleChecker+Invalid, 499 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 27 IncrementalHoareTripleChecker+Valid, 472 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.2s IncrementalHoareTripleChecker+Time [2022-11-23 15:40:22,905 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [21 Valid, 1595 Invalid, 499 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [27 Valid, 472 Invalid, 0 Unknown, 0 Unchecked, 1.2s Time] [2022-11-23 15:40:22,905 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 281 states. [2022-11-23 15:40:22,911 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 281 to 281. [2022-11-23 15:40:22,912 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 281 states, 177 states have (on average 1.7514124293785311) internal successors, (310), 258 states have internal predecessors, (310), 17 states have call successors, (17), 5 states have call predecessors, (17), 5 states have return successors, (17), 17 states have call predecessors, (17), 17 states have call successors, (17) [2022-11-23 15:40:22,914 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 281 states to 281 states and 344 transitions. [2022-11-23 15:40:22,914 INFO L78 Accepts]: Start accepts. Automaton has 281 states and 344 transitions. Word has length 83 [2022-11-23 15:40:22,915 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:40:22,915 INFO L495 AbstractCegarLoop]: Abstraction has 281 states and 344 transitions. [2022-11-23 15:40:22,915 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 18 states, 16 states have (on average 2.5) internal successors, (40), 18 states have internal predecessors, (40), 2 states have call successors, (11), 2 states have call predecessors, (11), 4 states have return successors, (12), 1 states have call predecessors, (12), 2 states have call successors, (12) [2022-11-23 15:40:22,915 INFO L276 IsEmpty]: Start isEmpty. Operand 281 states and 344 transitions. [2022-11-23 15:40:22,916 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 99 [2022-11-23 15:40:22,916 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:40:22,917 INFO L195 NwaCegarLoop]: trace histogram [50, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:40:22,934 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Forceful destruction successful, exit code 0 [2022-11-23 15:40:23,127 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,9 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:40:23,127 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:40:23,127 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:40:23,128 INFO L85 PathProgramCache]: Analyzing trace with hash 221030894, now seen corresponding path program 4 times [2022-11-23 15:40:23,128 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:40:23,128 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1304388224] [2022-11-23 15:40:23,128 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:40:23,128 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:40:23,193 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:40:23,197 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [440447305] [2022-11-23 15:40:23,197 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-23 15:40:23,198 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:40:23,198 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:40:23,199 INFO L229 MonitoredProcess]: Starting monitored process 10 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:40:23,223 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2022-11-23 15:40:25,231 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:40:25,240 INFO L263 TraceCheckSpWp]: Trace formula consists of 1277 conjuncts, 73 conjunts are in the unsatisfiable core [2022-11-23 15:40:25,245 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:40:25,336 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 15:40:34,491 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_1709 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= |c_#length| (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_1709)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 15:40:34,574 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:40:34,575 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 15:40:34,673 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-23 15:40:34,673 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-23 15:40:35,073 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 616 proven. 316 refuted. 0 times theorem prover too weak. 489 trivial. 179 not checked. [2022-11-23 15:40:35,073 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:40:37,417 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:40:37,417 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1304388224] [2022-11-23 15:40:37,417 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:40:37,417 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [440447305] [2022-11-23 15:40:37,417 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [440447305] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 15:40:37,417 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [471573426] [2022-11-23 15:40:37,419 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-23 15:40:37,419 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:40:37,420 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:40:37,420 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:40:37,420 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:40:37,452 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:40:37,458 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:40:37,479 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:40:37,492 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:40:37,506 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:40:37,550 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 15:40:37,561 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 15:40:37,573 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 15:40:37,619 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:40:37,626 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:40:37,632 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:40:37,668 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:40:37,691 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:40:37,743 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:40:37,748 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:40:38,943 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:40:39,008 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:40:39,041 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:40:39,152 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:40:39,196 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:40:39,216 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:40:39,273 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:40:39,282 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:40:39,303 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:40:39,315 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:41:18,494 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '7294#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (< (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 15:41:18,494 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:41:18,495 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 15:41:18,495 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [25] total 25 [2022-11-23 15:41:18,495 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1188646758] [2022-11-23 15:41:18,495 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 15:41:18,496 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 26 states [2022-11-23 15:41:18,496 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:41:18,496 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 26 interpolants. [2022-11-23 15:41:18,497 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=198, Invalid=2153, Unknown=5, NotChecked=94, Total=2450 [2022-11-23 15:41:18,498 INFO L87 Difference]: Start difference. First operand 281 states and 344 transitions. Second operand has 26 states, 23 states have (on average 1.826086956521739) internal successors, (42), 23 states have internal predecessors, (42), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 15:41:20,548 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:41:22,561 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:41:26,763 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:41:30,859 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:41:35,045 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:41:37,403 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:41:41,577 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:41:43,726 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:41:45,970 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:41:50,127 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:42:07,683 WARN L233 SmtUtils]: Spent 6.66s on a formula simplification that was a NOOP. DAG size: 45 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 15:42:14,402 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:42:17,518 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:42:19,556 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:42:21,993 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:42:24,086 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:42:24,087 INFO L93 Difference]: Finished difference Result 427 states and 524 transitions. [2022-11-23 15:42:24,087 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2022-11-23 15:42:24,087 INFO L78 Accepts]: Start accepts. Automaton has has 26 states, 23 states have (on average 1.826086956521739) internal successors, (42), 23 states have internal predecessors, (42), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) Word has length 98 [2022-11-23 15:42:24,088 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:42:24,090 INFO L225 Difference]: With dead ends: 427 [2022-11-23 15:42:24,090 INFO L226 Difference]: Without dead ends: 427 [2022-11-23 15:42:24,091 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 210 GetRequests, 143 SyntacticMatches, 6 SemanticMatches, 61 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 893 ImplicationChecksByTransitivity, 80.6s TimeCoverageRelationStatistics Valid=300, Invalid=3473, Unknown=13, NotChecked=120, Total=3906 [2022-11-23 15:42:24,092 INFO L413 NwaCegarLoop]: 59 mSDtfsCounter, 237 mSDsluCounter, 806 mSDsCounter, 0 mSdLazyCounter, 3951 mSolverCounterSat, 29 mSolverCounterUnsat, 14 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 34.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 245 SdHoareTripleChecker+Valid, 865 SdHoareTripleChecker+Invalid, 4250 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 29 IncrementalHoareTripleChecker+Valid, 3951 IncrementalHoareTripleChecker+Invalid, 14 IncrementalHoareTripleChecker+Unknown, 256 IncrementalHoareTripleChecker+Unchecked, 35.3s IncrementalHoareTripleChecker+Time [2022-11-23 15:42:24,092 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [245 Valid, 865 Invalid, 4250 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [29 Valid, 3951 Invalid, 14 Unknown, 256 Unchecked, 35.3s Time] [2022-11-23 15:42:24,093 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 427 states. [2022-11-23 15:42:24,101 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 427 to 279. [2022-11-23 15:42:24,102 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 279 states, 177 states have (on average 1.728813559322034) internal successors, (306), 256 states have internal predecessors, (306), 17 states have call successors, (17), 5 states have call predecessors, (17), 5 states have return successors, (17), 17 states have call predecessors, (17), 17 states have call successors, (17) [2022-11-23 15:42:24,103 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 279 states to 279 states and 340 transitions. [2022-11-23 15:42:24,104 INFO L78 Accepts]: Start accepts. Automaton has 279 states and 340 transitions. Word has length 98 [2022-11-23 15:42:24,104 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:42:24,104 INFO L495 AbstractCegarLoop]: Abstraction has 279 states and 340 transitions. [2022-11-23 15:42:24,105 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 26 states, 23 states have (on average 1.826086956521739) internal successors, (42), 23 states have internal predecessors, (42), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 15:42:24,105 INFO L276 IsEmpty]: Start isEmpty. Operand 279 states and 340 transitions. [2022-11-23 15:42:24,106 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 100 [2022-11-23 15:42:24,106 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:42:24,106 INFO L195 NwaCegarLoop]: trace histogram [50, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:42:24,143 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Forceful destruction successful, exit code 0 [2022-11-23 15:42:24,319 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,10 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:42:24,319 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:42:24,319 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:42:24,319 INFO L85 PathProgramCache]: Analyzing trace with hash -1737964160, now seen corresponding path program 1 times [2022-11-23 15:42:24,320 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:42:24,320 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [752028542] [2022-11-23 15:42:24,320 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:42:24,320 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:42:24,367 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:42:24,367 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [58590272] [2022-11-23 15:42:24,367 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:42:24,367 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:42:24,368 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:42:24,369 INFO L229 MonitoredProcess]: Starting monitored process 11 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:42:24,379 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Waiting until timeout for monitored process [2022-11-23 15:42:24,807 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:42:24,813 INFO L263 TraceCheckSpWp]: Trace formula consists of 1293 conjuncts, 33 conjunts are in the unsatisfiable core [2022-11-23 15:42:24,817 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:42:24,892 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_2349 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2349))) is different from true [2022-11-23 15:42:24,981 INFO L321 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2022-11-23 15:42:24,981 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2022-11-23 15:42:25,003 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_2350 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2350))) is different from true [2022-11-23 15:42:25,105 INFO L321 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2022-11-23 15:42:25,106 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2022-11-23 15:42:25,122 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 818 proven. 184 refuted. 0 times theorem prover too weak. 595 trivial. 3 not checked. [2022-11-23 15:42:25,122 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:42:25,518 INFO L321 Elim1Store]: treesize reduction 5, result has 37.5 percent of original size [2022-11-23 15:42:25,518 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 11 [2022-11-23 15:42:25,534 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 818 proven. 186 refuted. 0 times theorem prover too weak. 596 trivial. 0 not checked. [2022-11-23 15:42:25,534 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:42:25,534 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [752028542] [2022-11-23 15:42:25,534 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:42:25,534 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [58590272] [2022-11-23 15:42:25,534 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [58590272] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 15:42:25,534 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [579516115] [2022-11-23 15:42:25,536 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2022-11-23 15:42:25,537 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:42:25,537 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:42:25,537 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:42:25,537 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:42:25,562 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:42:25,571 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:42:25,589 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:42:25,602 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:42:25,640 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:42:25,699 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 15:42:25,699 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-23 15:42:25,730 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:42:25,730 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 15:42:25,757 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:42:25,757 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-23 15:42:25,853 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:42:25,873 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:42:25,901 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:42:25,936 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:42:25,942 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:42:26,010 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:42:26,016 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:42:27,052 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:42:27,073 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 15:42:27,086 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:42:27,203 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:42:27,273 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:42:27,306 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:42:27,386 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:42:27,441 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:42:27,485 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:42:27,522 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:42:27,533 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:42:27,543 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:42:27,553 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:42:34,384 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '8650#(and (not (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1)) (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 15:42:34,384 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:42:34,384 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-23 15:42:34,384 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 9] total 13 [2022-11-23 15:42:34,385 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1694152288] [2022-11-23 15:42:34,385 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-23 15:42:34,385 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-11-23 15:42:34,385 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:42:34,386 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-11-23 15:42:34,386 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=167, Invalid=1029, Unknown=2, NotChecked=134, Total=1332 [2022-11-23 15:42:34,386 INFO L87 Difference]: Start difference. First operand 279 states and 340 transitions. Second operand has 14 states, 12 states have (on average 2.9166666666666665) internal successors, (35), 12 states have internal predecessors, (35), 2 states have call successors, (8), 3 states have call predecessors, (8), 4 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2022-11-23 15:42:35,322 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:42:35,322 INFO L93 Difference]: Finished difference Result 413 states and 501 transitions. [2022-11-23 15:42:35,322 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-11-23 15:42:35,323 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 12 states have (on average 2.9166666666666665) internal successors, (35), 12 states have internal predecessors, (35), 2 states have call successors, (8), 3 states have call predecessors, (8), 4 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) Word has length 99 [2022-11-23 15:42:35,323 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:42:35,325 INFO L225 Difference]: With dead ends: 413 [2022-11-23 15:42:35,325 INFO L226 Difference]: Without dead ends: 413 [2022-11-23 15:42:35,326 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 304 GetRequests, 249 SyntacticMatches, 14 SemanticMatches, 41 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 333 ImplicationChecksByTransitivity, 7.2s TimeCoverageRelationStatistics Valid=205, Invalid=1441, Unknown=2, NotChecked=158, Total=1806 [2022-11-23 15:42:35,327 INFO L413 NwaCegarLoop]: 164 mSDtfsCounter, 499 mSDsluCounter, 1033 mSDsCounter, 0 mSdLazyCounter, 948 mSolverCounterSat, 59 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 499 SdHoareTripleChecker+Valid, 1197 SdHoareTripleChecker+Invalid, 1539 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 59 IncrementalHoareTripleChecker+Valid, 948 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 532 IncrementalHoareTripleChecker+Unchecked, 0.7s IncrementalHoareTripleChecker+Time [2022-11-23 15:42:35,327 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [499 Valid, 1197 Invalid, 1539 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [59 Valid, 948 Invalid, 0 Unknown, 532 Unchecked, 0.7s Time] [2022-11-23 15:42:35,328 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 413 states. [2022-11-23 15:42:35,336 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 413 to 276. [2022-11-23 15:42:35,337 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 276 states, 177 states have (on average 1.694915254237288) internal successors, (300), 253 states have internal predecessors, (300), 17 states have call successors, (17), 5 states have call predecessors, (17), 5 states have return successors, (17), 17 states have call predecessors, (17), 17 states have call successors, (17) [2022-11-23 15:42:35,339 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 276 states to 276 states and 334 transitions. [2022-11-23 15:42:35,339 INFO L78 Accepts]: Start accepts. Automaton has 276 states and 334 transitions. Word has length 99 [2022-11-23 15:42:35,339 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:42:35,340 INFO L495 AbstractCegarLoop]: Abstraction has 276 states and 334 transitions. [2022-11-23 15:42:35,340 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 12 states have (on average 2.9166666666666665) internal successors, (35), 12 states have internal predecessors, (35), 2 states have call successors, (8), 3 states have call predecessors, (8), 4 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2022-11-23 15:42:35,340 INFO L276 IsEmpty]: Start isEmpty. Operand 276 states and 334 transitions. [2022-11-23 15:42:35,341 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 100 [2022-11-23 15:42:35,341 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:42:35,341 INFO L195 NwaCegarLoop]: trace histogram [50, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:42:35,351 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Forceful destruction successful, exit code 0 [2022-11-23 15:42:35,549 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10,11 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:42:35,549 INFO L420 AbstractCegarLoop]: === Iteration 12 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:42:35,550 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:42:35,550 INFO L85 PathProgramCache]: Analyzing trace with hash -1737964159, now seen corresponding path program 1 times [2022-11-23 15:42:35,550 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:42:35,550 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1124433910] [2022-11-23 15:42:35,550 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:42:35,550 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:42:35,597 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:42:35,597 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [723223843] [2022-11-23 15:42:35,598 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:42:35,598 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:42:35,598 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:42:35,599 INFO L229 MonitoredProcess]: Starting monitored process 12 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:42:35,614 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Waiting until timeout for monitored process [2022-11-23 15:42:36,094 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:42:36,102 INFO L263 TraceCheckSpWp]: Trace formula consists of 1293 conjuncts, 81 conjunts are in the unsatisfiable core [2022-11-23 15:42:36,107 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:42:36,150 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 15:42:43,393 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:42:43,394 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 15:42:43,410 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-23 15:42:43,411 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-23 15:42:44,264 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_2996 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2996) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 15:42:44,398 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:42:44,398 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 15:42:44,472 INFO L321 Elim1Store]: treesize reduction 8, result has 52.9 percent of original size [2022-11-23 15:42:44,472 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 3 select indices, 3 select index equivalence classes, 1 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 2 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 15:42:45,025 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 706 proven. 280 refuted. 0 times theorem prover too weak. 366 trivial. 248 not checked. [2022-11-23 15:42:45,025 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:42:45,267 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:42:45,267 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1124433910] [2022-11-23 15:42:45,267 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:42:45,267 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [723223843] [2022-11-23 15:42:45,267 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [723223843] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 15:42:45,267 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [994672934] [2022-11-23 15:42:45,269 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2022-11-23 15:42:45,270 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:42:45,270 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:42:45,270 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:42:45,270 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:42:45,305 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:42:45,311 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:42:45,357 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:42:45,370 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:42:45,407 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:42:45,442 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 15:42:45,454 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 15:42:45,465 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 15:42:45,508 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:42:45,515 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:42:45,522 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:42:45,573 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:42:45,579 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:42:45,610 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:42:45,617 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:42:46,680 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:42:46,695 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 15:42:46,713 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:42:46,823 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:42:46,863 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:42:46,882 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:42:46,986 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:42:47,007 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:42:47,032 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:42:47,075 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:42:47,084 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:42:47,093 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:42:47,105 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:43:19,392 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '9706#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (< (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 15:43:19,392 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:43:19,392 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 15:43:19,392 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [23] total 23 [2022-11-23 15:43:19,393 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [780564517] [2022-11-23 15:43:19,393 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 15:43:19,393 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 24 states [2022-11-23 15:43:19,393 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:43:19,394 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 24 interpolants. [2022-11-23 15:43:19,395 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=203, Invalid=2054, Unknown=3, NotChecked=92, Total=2352 [2022-11-23 15:43:19,395 INFO L87 Difference]: Start difference. First operand 276 states and 334 transitions. Second operand has 24 states, 21 states have (on average 2.0476190476190474) internal successors, (43), 22 states have internal predecessors, (43), 3 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 3 states have call successors, (6) [2022-11-23 15:43:21,423 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:43:23,438 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:43:27,719 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:43:29,926 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:43:34,140 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:43:36,419 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:43:38,578 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:43:53,210 WARN L233 SmtUtils]: Spent 8.80s on a formula simplification. DAG size of input: 57 DAG size of output: 48 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 15:44:16,231 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:44:16,319 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:44:16,320 INFO L93 Difference]: Finished difference Result 403 states and 489 transitions. [2022-11-23 15:44:16,320 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2022-11-23 15:44:16,320 INFO L78 Accepts]: Start accepts. Automaton has has 24 states, 21 states have (on average 2.0476190476190474) internal successors, (43), 22 states have internal predecessors, (43), 3 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 3 states have call successors, (6) Word has length 99 [2022-11-23 15:44:16,320 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:44:16,330 INFO L225 Difference]: With dead ends: 403 [2022-11-23 15:44:16,331 INFO L226 Difference]: Without dead ends: 403 [2022-11-23 15:44:16,332 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 214 GetRequests, 148 SyntacticMatches, 8 SemanticMatches, 58 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 826 ImplicationChecksByTransitivity, 72.2s TimeCoverageRelationStatistics Valid=295, Invalid=3127, Unknown=4, NotChecked=114, Total=3540 [2022-11-23 15:44:16,332 INFO L413 NwaCegarLoop]: 50 mSDtfsCounter, 478 mSDsluCounter, 489 mSDsCounter, 0 mSdLazyCounter, 2968 mSolverCounterSat, 66 mSolverCounterUnsat, 8 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 24.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 486 SdHoareTripleChecker+Valid, 539 SdHoareTripleChecker+Invalid, 3394 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 66 IncrementalHoareTripleChecker+Valid, 2968 IncrementalHoareTripleChecker+Invalid, 8 IncrementalHoareTripleChecker+Unknown, 352 IncrementalHoareTripleChecker+Unchecked, 24.6s IncrementalHoareTripleChecker+Time [2022-11-23 15:44:16,333 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [486 Valid, 539 Invalid, 3394 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [66 Valid, 2968 Invalid, 8 Unknown, 352 Unchecked, 24.6s Time] [2022-11-23 15:44:16,334 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 403 states. [2022-11-23 15:44:16,342 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 403 to 274. [2022-11-23 15:44:16,345 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 274 states, 177 states have (on average 1.6723163841807909) internal successors, (296), 251 states have internal predecessors, (296), 17 states have call successors, (17), 5 states have call predecessors, (17), 5 states have return successors, (17), 17 states have call predecessors, (17), 17 states have call successors, (17) [2022-11-23 15:44:16,350 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 274 states to 274 states and 330 transitions. [2022-11-23 15:44:16,352 INFO L78 Accepts]: Start accepts. Automaton has 274 states and 330 transitions. Word has length 99 [2022-11-23 15:44:16,352 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:44:16,352 INFO L495 AbstractCegarLoop]: Abstraction has 274 states and 330 transitions. [2022-11-23 15:44:16,353 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 24 states, 21 states have (on average 2.0476190476190474) internal successors, (43), 22 states have internal predecessors, (43), 3 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 3 states have call successors, (6) [2022-11-23 15:44:16,353 INFO L276 IsEmpty]: Start isEmpty. Operand 274 states and 330 transitions. [2022-11-23 15:44:16,354 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 104 [2022-11-23 15:44:16,354 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:44:16,354 INFO L195 NwaCegarLoop]: trace histogram [50, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:44:16,365 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Forceful destruction successful, exit code 0 [2022-11-23 15:44:16,564 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 12 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable11 [2022-11-23 15:44:16,565 INFO L420 AbstractCegarLoop]: === Iteration 13 === Targeting ULTIMATE.startErr8REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:44:16,565 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:44:16,565 INFO L85 PathProgramCache]: Analyzing trace with hash 72029363, now seen corresponding path program 1 times [2022-11-23 15:44:16,565 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:44:16,565 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1526785472] [2022-11-23 15:44:16,565 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:44:16,565 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:44:16,622 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:44:16,623 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1942781005] [2022-11-23 15:44:16,623 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:44:16,623 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:44:16,624 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:44:16,625 INFO L229 MonitoredProcess]: Starting monitored process 13 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:44:16,629 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Waiting until timeout for monitored process [2022-11-23 15:44:17,239 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:44:17,247 INFO L263 TraceCheckSpWp]: Trace formula consists of 1337 conjuncts, 40 conjunts are in the unsatisfiable core [2022-11-23 15:44:17,251 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:44:17,342 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (v_ArrVal_3660 Int)) (and (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_3660)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 15:44:17,422 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-23 15:44:17,422 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-23 15:44:17,446 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_3661 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_3661)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 15:44:17,526 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-23 15:44:17,526 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-23 15:44:17,540 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_3662 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_3662))) is different from true [2022-11-23 15:44:17,671 INFO L321 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2022-11-23 15:44:17,672 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2022-11-23 15:44:17,704 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 717 proven. 101 refuted. 0 times theorem prover too weak. 325 trivial. 457 not checked. [2022-11-23 15:44:17,704 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:44:18,018 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:44:18,018 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1526785472] [2022-11-23 15:44:18,018 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:44:18,018 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1942781005] [2022-11-23 15:44:18,018 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1942781005] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 15:44:18,018 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1189572385] [2022-11-23 15:44:18,021 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-23 15:44:18,021 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:44:18,022 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:44:18,022 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:44:18,022 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:44:18,063 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:44:18,071 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:44:18,128 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:44:18,143 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:44:18,190 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:44:18,262 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 15:44:18,278 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 15:44:18,293 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 15:44:18,347 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:44:18,356 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:44:18,367 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:44:18,397 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:44:18,405 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:44:18,460 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:44:18,487 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:44:19,739 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 15:44:19,759 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:44:19,780 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:44:19,847 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 15:44:19,863 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:44:19,864 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:44:19,880 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 15:44:19,881 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 15:44:19,908 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:44:19,909 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:44:19,924 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 15:44:19,924 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 15:44:19,976 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:44:19,979 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:44:19,980 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:44:19,998 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 15:44:19,998 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 15:44:20,025 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:44:20,027 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:44:20,028 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:44:20,045 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 15:44:20,045 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 15:44:20,063 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 15:44:20,214 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:44:20,245 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:44:20,264 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:44:20,378 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:44:20,399 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:44:20,426 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:44:20,489 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:44:20,499 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:44:20,509 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:44:20,521 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:44:32,493 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10825#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (not (= (select |#valid| |ULTIMATE.start_l3_insert_~list#1.base|) 1)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 15:44:32,493 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:44:32,494 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 15:44:32,494 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12] total 12 [2022-11-23 15:44:32,494 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1862013024] [2022-11-23 15:44:32,494 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 15:44:32,494 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 13 states [2022-11-23 15:44:32,495 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:44:32,495 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 13 interpolants. [2022-11-23 15:44:32,496 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=222, Invalid=1347, Unknown=3, NotChecked=234, Total=1806 [2022-11-23 15:44:32,496 INFO L87 Difference]: Start difference. First operand 274 states and 330 transitions. Second operand has 13 states, 11 states have (on average 3.8181818181818183) internal successors, (42), 11 states have internal predecessors, (42), 2 states have call successors, (6), 2 states have call predecessors, (6), 5 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 15:44:34,052 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:44:34,052 INFO L93 Difference]: Finished difference Result 433 states and 523 transitions. [2022-11-23 15:44:34,052 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2022-11-23 15:44:34,052 INFO L78 Accepts]: Start accepts. Automaton has has 13 states, 11 states have (on average 3.8181818181818183) internal successors, (42), 11 states have internal predecessors, (42), 2 states have call successors, (6), 2 states have call predecessors, (6), 5 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) Word has length 103 [2022-11-23 15:44:34,053 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:44:34,056 INFO L225 Difference]: With dead ends: 433 [2022-11-23 15:44:34,057 INFO L226 Difference]: Without dead ends: 433 [2022-11-23 15:44:34,058 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 238 GetRequests, 181 SyntacticMatches, 9 SemanticMatches, 48 ConstructedPredicates, 3 IntricatePredicates, 0 DeprecatedPredicates, 474 ImplicationChecksByTransitivity, 12.5s TimeCoverageRelationStatistics Valid=272, Invalid=1899, Unknown=3, NotChecked=276, Total=2450 [2022-11-23 15:44:34,059 INFO L413 NwaCegarLoop]: 162 mSDtfsCounter, 398 mSDsluCounter, 1026 mSDsCounter, 0 mSdLazyCounter, 912 mSolverCounterSat, 43 mSolverCounterUnsat, 37 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 398 SdHoareTripleChecker+Valid, 1188 SdHoareTripleChecker+Invalid, 2022 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 43 IncrementalHoareTripleChecker+Valid, 912 IncrementalHoareTripleChecker+Invalid, 37 IncrementalHoareTripleChecker+Unknown, 1030 IncrementalHoareTripleChecker+Unchecked, 1.2s IncrementalHoareTripleChecker+Time [2022-11-23 15:44:34,059 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [398 Valid, 1188 Invalid, 2022 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [43 Valid, 912 Invalid, 37 Unknown, 1030 Unchecked, 1.2s Time] [2022-11-23 15:44:34,060 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 433 states. [2022-11-23 15:44:34,072 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 433 to 333. [2022-11-23 15:44:34,073 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 333 states, 233 states have (on average 1.7124463519313304) internal successors, (399), 305 states have internal predecessors, (399), 21 states have call successors, (21), 6 states have call predecessors, (21), 7 states have return successors, (34), 21 states have call predecessors, (34), 21 states have call successors, (34) [2022-11-23 15:44:34,094 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 333 states to 333 states and 454 transitions. [2022-11-23 15:44:34,095 INFO L78 Accepts]: Start accepts. Automaton has 333 states and 454 transitions. Word has length 103 [2022-11-23 15:44:34,095 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:44:34,096 INFO L495 AbstractCegarLoop]: Abstraction has 333 states and 454 transitions. [2022-11-23 15:44:34,096 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 13 states, 11 states have (on average 3.8181818181818183) internal successors, (42), 11 states have internal predecessors, (42), 2 states have call successors, (6), 2 states have call predecessors, (6), 5 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 15:44:34,096 INFO L276 IsEmpty]: Start isEmpty. Operand 333 states and 454 transitions. [2022-11-23 15:44:34,097 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 104 [2022-11-23 15:44:34,097 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:44:34,098 INFO L195 NwaCegarLoop]: trace histogram [50, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:44:34,108 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Forceful destruction successful, exit code 0 [2022-11-23 15:44:34,307 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 13 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2022-11-23 15:44:34,307 INFO L420 AbstractCegarLoop]: === Iteration 14 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:44:34,308 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:44:34,308 INFO L85 PathProgramCache]: Analyzing trace with hash 72029364, now seen corresponding path program 1 times [2022-11-23 15:44:34,308 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:44:34,308 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1396137110] [2022-11-23 15:44:34,308 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:44:34,309 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:44:34,368 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:44:34,368 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [884280217] [2022-11-23 15:44:34,368 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:44:34,368 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:44:34,369 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:44:34,370 INFO L229 MonitoredProcess]: Starting monitored process 14 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:44:34,402 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Waiting until timeout for monitored process [2022-11-23 15:44:35,034 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:44:35,044 INFO L263 TraceCheckSpWp]: Trace formula consists of 1337 conjuncts, 128 conjunts are in the unsatisfiable core [2022-11-23 15:44:35,051 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:44:35,171 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 15:44:55,253 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (v_ArrVal_4330 Int) (v_ArrVal_4331 Int)) (and (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_4330)) (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_4331) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 15:44:55,465 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:44:55,466 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 15:44:55,540 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-23 15:44:55,541 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-23 15:44:55,763 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_4332 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_4332) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 15:44:55,933 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:44:55,934 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 15:44:55,943 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-23 15:44:55,944 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-23 15:44:56,950 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~size#1| Int) (v_ArrVal_4333 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (|zalloc_or_die_calloc_model_~nmemb#1| Int)) (let ((.cse0 (* |zalloc_or_die_calloc_model_~nmemb#1| |zalloc_or_die_calloc_model_~size#1|))) (and (<= (mod .cse0 4294967296) v_ArrVal_4333) (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_4333) |c_#length|) (= |c_zalloc_or_die_#Ultimate.C_memset_#amount#1| .cse0)))) is different from true [2022-11-23 15:44:58,978 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~size#1| Int) (v_ArrVal_4333 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (|zalloc_or_die_calloc_model_~nmemb#1| Int)) (let ((.cse0 (mod (* |zalloc_or_die_calloc_model_~nmemb#1| |zalloc_or_die_calloc_model_~size#1|) 4294967296))) (and (<= .cse0 v_ArrVal_4333) (< 8 .cse0) (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_4333) |c_#length|)))) is different from true [2022-11-23 15:44:59,453 INFO L321 Elim1Store]: treesize reduction 11, result has 45.0 percent of original size [2022-11-23 15:44:59,453 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 16 treesize of output 22 [2022-11-23 15:45:05,343 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 391 proven. 418 refuted. 0 times theorem prover too weak. 116 trivial. 675 not checked. [2022-11-23 15:45:05,343 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:45:09,027 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:45:09,028 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1396137110] [2022-11-23 15:45:09,028 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:45:09,028 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [884280217] [2022-11-23 15:45:09,028 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [884280217] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 15:45:09,028 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1254535708] [2022-11-23 15:45:09,030 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-23 15:45:09,030 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:45:09,031 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:45:09,031 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:45:09,031 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:45:09,064 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:45:09,074 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:45:09,138 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:45:09,159 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:45:09,212 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:45:09,335 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:45:09,335 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 182 treesize of output 185 [2022-11-23 15:45:09,377 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:45:09,377 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 15:45:09,468 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 15:45:09,469 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 176 treesize of output 179 [2022-11-23 15:45:09,615 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:45:09,623 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:45:09,633 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:45:09,672 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:45:09,679 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:45:09,742 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:45:09,771 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:45:11,129 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:45:11,156 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 15:45:11,172 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:45:11,253 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 15:45:11,277 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:45:11,278 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:45:11,297 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 15:45:11,297 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 15:45:11,331 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:45:11,332 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:45:11,351 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 15:45:11,351 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 15:45:11,415 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:45:11,416 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:45:11,417 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:45:11,439 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 15:45:11,439 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 15:45:11,473 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 15:45:11,497 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:45:11,498 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:45:11,500 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:45:11,522 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 15:45:11,522 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 15:45:11,686 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:45:11,727 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:45:11,768 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:45:11,904 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:45:12,009 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:45:12,070 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:45:12,131 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:45:12,144 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:45:12,156 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:45:12,172 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:46:04,387 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '12006#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 15:46:04,388 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:46:04,388 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 15:46:04,388 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [42] total 42 [2022-11-23 15:46:04,388 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1085535535] [2022-11-23 15:46:04,388 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 15:46:04,389 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 43 states [2022-11-23 15:46:04,389 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:46:04,389 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 43 interpolants. [2022-11-23 15:46:04,391 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=309, Invalid=4233, Unknown=30, NotChecked=540, Total=5112 [2022-11-23 15:46:04,392 INFO L87 Difference]: Start difference. First operand 333 states and 454 transitions. Second operand has 43 states, 41 states have (on average 1.6585365853658536) internal successors, (68), 40 states have internal predecessors, (68), 3 states have call successors, (6), 3 states have call predecessors, (6), 5 states have return successors, (6), 5 states have call predecessors, (6), 3 states have call successors, (6) [2022-11-23 15:46:06,482 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:46:10,820 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.04s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:46:12,876 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:46:17,235 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:46:21,532 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:46:26,065 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:46:30,445 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:46:34,816 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:46:39,245 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:46:43,657 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:47:27,987 WARN L233 SmtUtils]: Spent 12.82s on a formula simplification. DAG size of input: 52 DAG size of output: 47 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 15:47:42,034 WARN L233 SmtUtils]: Spent 10.98s on a formula simplification. DAG size of input: 67 DAG size of output: 60 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 15:48:04,547 WARN L233 SmtUtils]: Spent 16.32s on a formula simplification. DAG size of input: 61 DAG size of output: 56 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 15:48:08,382 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:48:20,345 WARN L233 SmtUtils]: Spent 10.40s on a formula simplification. DAG size of input: 46 DAG size of output: 38 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 15:48:22,470 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:48:24,566 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:48:34,772 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:48:39,608 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:48:41,707 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:48:43,814 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:48:48,706 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:49:00,859 WARN L233 SmtUtils]: Spent 10.70s on a formula simplification. DAG size of input: 46 DAG size of output: 38 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 15:49:03,691 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:49:06,340 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:49:10,451 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:49:10,451 INFO L93 Difference]: Finished difference Result 437 states and 558 transitions. [2022-11-23 15:49:10,452 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 27 states. [2022-11-23 15:49:10,452 INFO L78 Accepts]: Start accepts. Automaton has has 43 states, 41 states have (on average 1.6585365853658536) internal successors, (68), 40 states have internal predecessors, (68), 3 states have call successors, (6), 3 states have call predecessors, (6), 5 states have return successors, (6), 5 states have call predecessors, (6), 3 states have call successors, (6) Word has length 103 [2022-11-23 15:49:10,452 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:49:10,455 INFO L225 Difference]: With dead ends: 437 [2022-11-23 15:49:10,455 INFO L226 Difference]: Without dead ends: 437 [2022-11-23 15:49:10,457 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 233 GetRequests, 138 SyntacticMatches, 6 SemanticMatches, 89 ConstructedPredicates, 4 IntricatePredicates, 0 DeprecatedPredicates, 2088 ImplicationChecksByTransitivity, 211.0s TimeCoverageRelationStatistics Valid=465, Invalid=6977, Unknown=56, NotChecked=692, Total=8190 [2022-11-23 15:49:10,457 INFO L413 NwaCegarLoop]: 68 mSDtfsCounter, 498 mSDsluCounter, 1224 mSDsCounter, 0 mSdLazyCounter, 5892 mSolverCounterSat, 95 mSolverCounterUnsat, 20 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 54.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 506 SdHoareTripleChecker+Valid, 1292 SdHoareTripleChecker+Invalid, 7578 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.1s SdHoareTripleChecker+Time, 95 IncrementalHoareTripleChecker+Valid, 5892 IncrementalHoareTripleChecker+Invalid, 20 IncrementalHoareTripleChecker+Unknown, 1571 IncrementalHoareTripleChecker+Unchecked, 55.1s IncrementalHoareTripleChecker+Time [2022-11-23 15:49:10,457 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [506 Valid, 1292 Invalid, 7578 Unknown, 0 Unchecked, 0.1s Time], IncrementalHoareTripleChecker [95 Valid, 5892 Invalid, 20 Unknown, 1571 Unchecked, 55.1s Time] [2022-11-23 15:49:10,458 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 437 states. [2022-11-23 15:49:10,471 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 437 to 330. [2022-11-23 15:49:10,472 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 330 states, 233 states have (on average 1.6866952789699572) internal successors, (393), 302 states have internal predecessors, (393), 21 states have call successors, (21), 6 states have call predecessors, (21), 7 states have return successors, (34), 21 states have call predecessors, (34), 21 states have call successors, (34) [2022-11-23 15:49:10,475 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 330 states to 330 states and 448 transitions. [2022-11-23 15:49:10,475 INFO L78 Accepts]: Start accepts. Automaton has 330 states and 448 transitions. Word has length 103 [2022-11-23 15:49:10,476 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:49:10,476 INFO L495 AbstractCegarLoop]: Abstraction has 330 states and 448 transitions. [2022-11-23 15:49:10,476 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 43 states, 41 states have (on average 1.6585365853658536) internal successors, (68), 40 states have internal predecessors, (68), 3 states have call successors, (6), 3 states have call predecessors, (6), 5 states have return successors, (6), 5 states have call predecessors, (6), 3 states have call successors, (6) [2022-11-23 15:49:10,477 INFO L276 IsEmpty]: Start isEmpty. Operand 330 states and 448 transitions. [2022-11-23 15:49:10,478 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 105 [2022-11-23 15:49:10,478 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:49:10,478 INFO L195 NwaCegarLoop]: trace histogram [50, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:49:10,489 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Forceful destruction successful, exit code 0 [2022-11-23 15:49:10,689 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13,14 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:49:10,689 INFO L420 AbstractCegarLoop]: === Iteration 15 === Targeting ULTIMATE.startErr11REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:49:10,689 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:49:10,690 INFO L85 PathProgramCache]: Analyzing trace with hash -2062057009, now seen corresponding path program 1 times [2022-11-23 15:49:10,690 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:49:10,690 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1413497630] [2022-11-23 15:49:10,690 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:49:10,690 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:49:10,738 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:49:10,739 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [2108064581] [2022-11-23 15:49:10,739 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:49:10,739 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:49:10,739 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:49:10,740 INFO L229 MonitoredProcess]: Starting monitored process 15 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:49:10,752 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Waiting until timeout for monitored process [2022-11-23 15:49:15,381 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:49:15,391 INFO L263 TraceCheckSpWp]: Trace formula consists of 1345 conjuncts, 90 conjunts are in the unsatisfiable core [2022-11-23 15:49:15,396 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:49:15,470 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 15:49:26,127 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-23 15:49:26,128 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-23 15:49:26,187 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 15:49:27,333 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (v_ArrVal_5000 Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_5000) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 15:49:27,515 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:49:27,516 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 15:49:27,531 INFO L321 Elim1Store]: treesize reduction 8, result has 52.9 percent of original size [2022-11-23 15:49:27,531 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 3 select indices, 3 select index equivalence classes, 1 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 2 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 15:49:28,747 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 622 proven. 400 refuted. 0 times theorem prover too weak. 297 trivial. 281 not checked. [2022-11-23 15:49:28,748 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:49:29,353 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:49:29,353 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1413497630] [2022-11-23 15:49:29,353 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:49:29,353 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2108064581] [2022-11-23 15:49:29,353 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2108064581] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 15:49:29,354 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1309264731] [2022-11-23 15:49:29,355 INFO L159 IcfgInterpreter]: Started Sifa with 30 locations of interest [2022-11-23 15:49:29,356 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:49:29,356 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:49:29,356 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:49:29,357 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:49:29,387 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:49:29,394 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:49:29,512 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:49:29,521 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:49:29,531 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:49:29,587 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 15:49:29,588 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-23 15:49:29,618 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:49:29,618 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 15:49:29,659 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:49:29,659 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-23 15:49:29,780 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:49:29,787 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:49:29,795 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:49:29,838 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:49:29,845 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:49:29,899 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:49:29,906 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:49:31,181 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:49:31,209 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:49:31,229 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 15:49:31,301 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:49:31,302 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:49:31,319 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 15:49:31,320 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 15:49:31,358 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:49:31,359 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:49:31,377 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 15:49:31,378 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 15:49:31,397 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 15:49:31,451 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:49:31,453 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:49:31,454 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:49:31,473 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 15:49:31,474 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 15:49:31,492 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 15:49:31,512 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:49:31,514 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:49:31,515 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:49:31,534 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 15:49:31,534 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 15:49:31,710 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:49:31,757 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:49:31,788 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:49:31,856 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:49:31,886 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:49:31,915 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:49:31,963 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:49:31,972 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:49:31,980 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:49:31,995 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:50:15,473 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '13204#(and (<= (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4) (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|)) (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (select |#valid| |ULTIMATE.start_l3_insert_~list#1.base|) 1) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (< (select |#length| |ULTIMATE.start_l3_insert_~item~1#1.base|) (+ |ULTIMATE.start_l3_insert_~item~1#1.offset| 8)) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l3_insert_~list#1.base|) |ULTIMATE.start_l3_insert_~list#1.offset|) |ULTIMATE.start_l3_insert_#t~mem11#1.base|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= |ULTIMATE.start_l3_insert_#t~mem11#1.offset| (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l3_insert_~list#1.base|) |ULTIMATE.start_l3_insert_~list#1.offset|)) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 15:50:15,473 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:50:15,473 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 15:50:15,474 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [28] total 28 [2022-11-23 15:50:15,474 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1791424968] [2022-11-23 15:50:15,474 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 15:50:15,474 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 29 states [2022-11-23 15:50:15,474 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:50:15,475 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 29 interpolants. [2022-11-23 15:50:15,475 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=283, Invalid=3023, Unknown=4, NotChecked=112, Total=3422 [2022-11-23 15:50:15,475 INFO L87 Difference]: Start difference. First operand 330 states and 448 transitions. Second operand has 29 states, 27 states have (on average 1.962962962962963) internal successors, (53), 27 states have internal predecessors, (53), 3 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 3 states have call successors, (6) [2022-11-23 15:50:17,510 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:50:19,533 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:50:23,723 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:50:27,909 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:50:32,143 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:50:34,376 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:50:38,603 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:50:42,817 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:50:45,008 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:50:49,213 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:51:05,683 WARN L233 SmtUtils]: Spent 6.11s on a formula simplification. DAG size of input: 48 DAG size of output: 41 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 15:51:17,509 WARN L233 SmtUtils]: Spent 10.63s on a formula simplification. DAG size of input: 57 DAG size of output: 50 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-23 15:51:27,708 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:51:27,778 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:51:27,778 INFO L93 Difference]: Finished difference Result 411 states and 505 transitions. [2022-11-23 15:51:27,778 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2022-11-23 15:51:27,779 INFO L78 Accepts]: Start accepts. Automaton has has 29 states, 27 states have (on average 1.962962962962963) internal successors, (53), 27 states have internal predecessors, (53), 3 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 3 states have call successors, (6) Word has length 104 [2022-11-23 15:51:27,779 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:51:27,780 INFO L225 Difference]: With dead ends: 411 [2022-11-23 15:51:27,781 INFO L226 Difference]: Without dead ends: 411 [2022-11-23 15:51:27,782 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 228 GetRequests, 152 SyntacticMatches, 8 SemanticMatches, 68 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 1174 ImplicationChecksByTransitivity, 96.3s TimeCoverageRelationStatistics Valid=378, Invalid=4304, Unknown=14, NotChecked=134, Total=4830 [2022-11-23 15:51:27,782 INFO L413 NwaCegarLoop]: 61 mSDtfsCounter, 238 mSDsluCounter, 800 mSDsCounter, 0 mSdLazyCounter, 4014 mSolverCounterSat, 28 mSolverCounterUnsat, 11 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 30.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 246 SdHoareTripleChecker+Valid, 861 SdHoareTripleChecker+Invalid, 4415 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 28 IncrementalHoareTripleChecker+Valid, 4014 IncrementalHoareTripleChecker+Invalid, 11 IncrementalHoareTripleChecker+Unknown, 362 IncrementalHoareTripleChecker+Unchecked, 31.2s IncrementalHoareTripleChecker+Time [2022-11-23 15:51:27,783 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [246 Valid, 861 Invalid, 4415 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [28 Valid, 4014 Invalid, 11 Unknown, 362 Unchecked, 31.2s Time] [2022-11-23 15:51:27,784 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 411 states. [2022-11-23 15:51:27,792 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 411 to 329. [2022-11-23 15:51:27,793 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 329 states, 233 states have (on average 1.6781115879828326) internal successors, (391), 301 states have internal predecessors, (391), 21 states have call successors, (21), 6 states have call predecessors, (21), 7 states have return successors, (34), 21 states have call predecessors, (34), 21 states have call successors, (34) [2022-11-23 15:51:27,795 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 329 states to 329 states and 446 transitions. [2022-11-23 15:51:27,796 INFO L78 Accepts]: Start accepts. Automaton has 329 states and 446 transitions. Word has length 104 [2022-11-23 15:51:27,796 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:51:27,796 INFO L495 AbstractCegarLoop]: Abstraction has 329 states and 446 transitions. [2022-11-23 15:51:27,797 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 29 states, 27 states have (on average 1.962962962962963) internal successors, (53), 27 states have internal predecessors, (53), 3 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 3 states have call successors, (6) [2022-11-23 15:51:27,797 INFO L276 IsEmpty]: Start isEmpty. Operand 329 states and 446 transitions. [2022-11-23 15:51:27,798 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 108 [2022-11-23 15:51:27,798 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:51:27,798 INFO L195 NwaCegarLoop]: trace histogram [50, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:51:27,832 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Forceful destruction successful, exit code 0 [2022-11-23 15:51:28,015 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 15 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable14 [2022-11-23 15:51:28,015 INFO L420 AbstractCegarLoop]: === Iteration 16 === Targeting ULTIMATE.startErr14REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:51:28,016 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:51:28,016 INFO L85 PathProgramCache]: Analyzing trace with hash 188340011, now seen corresponding path program 1 times [2022-11-23 15:51:28,016 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:51:28,016 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [342178779] [2022-11-23 15:51:28,016 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:51:28,016 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:51:28,070 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:51:28,070 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [222101720] [2022-11-23 15:51:28,070 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:51:28,070 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:51:28,071 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:51:28,072 INFO L229 MonitoredProcess]: Starting monitored process 16 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:51:28,103 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (16)] Waiting until timeout for monitored process [2022-11-23 15:51:28,721 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:51:28,729 INFO L263 TraceCheckSpWp]: Trace formula consists of 1381 conjuncts, 65 conjunts are in the unsatisfiable core [2022-11-23 15:51:28,734 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:51:28,841 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_5688 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_5688)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 15:51:28,929 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-23 15:51:28,929 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-23 15:51:28,945 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_5689 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_calloc_model_~ptr~0#1.base| v_ArrVal_5689))) is different from true [2022-11-23 15:51:28,978 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_5689 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#res#1.base| v_ArrVal_5689))) is different from true [2022-11-23 15:51:28,998 INFO L321 Elim1Store]: treesize reduction 11, result has 45.0 percent of original size [2022-11-23 15:51:28,998 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 18 [2022-11-23 15:51:29,059 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_5690 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_calloc_model_~ptr~0#1.base| v_ArrVal_5690))) is different from true [2022-11-23 15:51:29,093 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_5690 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#res#1.base| v_ArrVal_5690))) is different from true [2022-11-23 15:51:29,112 INFO L321 Elim1Store]: treesize reduction 11, result has 45.0 percent of original size [2022-11-23 15:51:29,112 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 16 treesize of output 22 [2022-11-23 15:51:29,189 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_5691 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_5691))) is different from true [2022-11-23 15:51:29,323 INFO L321 Elim1Store]: treesize reduction 11, result has 45.0 percent of original size [2022-11-23 15:51:29,324 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 25 [2022-11-23 15:51:29,524 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 446 proven. 101 refuted. 0 times theorem prover too weak. 242 trivial. 811 not checked. [2022-11-23 15:51:29,525 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:51:29,679 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:51:29,679 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [342178779] [2022-11-23 15:51:29,679 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:51:29,679 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [222101720] [2022-11-23 15:51:29,679 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [222101720] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 15:51:29,679 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [457289071] [2022-11-23 15:51:29,681 INFO L159 IcfgInterpreter]: Started Sifa with 33 locations of interest [2022-11-23 15:51:29,681 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:51:29,682 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:51:29,682 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:51:29,682 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:51:29,735 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:51:29,741 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:51:29,815 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:51:29,827 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:51:29,869 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-23 15:51:29,931 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-23 15:51:29,932 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-23 15:51:29,964 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:51:29,964 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-23 15:51:29,995 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-23 15:51:29,996 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-23 15:51:30,097 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:51:30,104 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:51:30,111 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:51:30,138 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:51:30,144 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:51:30,204 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:51:30,210 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:51:31,297 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:51:31,316 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:51:31,329 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 15:51:31,394 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:51:31,394 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:51:31,409 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 15:51:31,409 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 15:51:31,432 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 15:51:31,457 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:51:31,458 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:51:31,473 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 15:51:31,474 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 15:51:31,534 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:51:31,535 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:51:31,536 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:51:31,553 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 15:51:31,553 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 15:51:31,577 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:51:31,579 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:51:31,579 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:51:31,597 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 15:51:31,597 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 15:51:31,624 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 15:51:31,704 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:51:31,706 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:51:31,707 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:51:31,745 INFO L321 Elim1Store]: treesize reduction 30, result has 49.2 percent of original size [2022-11-23 15:51:31,745 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 3 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 5 case distinctions, treesize of input 35 treesize of output 52 [2022-11-23 15:51:31,776 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 15:51:31,829 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:51:31,831 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:51:31,832 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:51:31,870 INFO L321 Elim1Store]: treesize reduction 30, result has 49.2 percent of original size [2022-11-23 15:51:31,871 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 3 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 5 case distinctions, treesize of input 34 treesize of output 51 [2022-11-23 15:51:31,944 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:51:31,945 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:51:31,946 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:51:31,947 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:51:31,990 INFO L321 Elim1Store]: treesize reduction 56, result has 29.1 percent of original size [2022-11-23 15:51:31,990 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 3 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 57 treesize of output 58 [2022-11-23 15:51:32,025 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:51:32,026 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:51:32,027 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:51:32,028 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:51:32,072 INFO L321 Elim1Store]: treesize reduction 44, result has 44.3 percent of original size [2022-11-23 15:51:32,073 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 3 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 78 treesize of output 81 [2022-11-23 15:51:32,157 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 15:51:32,328 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:51:32,364 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:51:32,405 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:51:32,532 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:51:32,564 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:51:32,594 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:51:32,656 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:51:32,666 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:51:32,675 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:51:32,686 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:51:49,508 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '14372#(and (<= (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4) (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|)) (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (or (= |ULTIMATE.start_l4_insert_~item~0#1.base| |ULTIMATE.start_l3_insert_~item~1#1.base|) (and (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l3_insert_~item~1#1.base|) (+ |ULTIMATE.start_l3_insert_~item~1#1.offset| 4)) 0)) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (and (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (not (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l4_insert_~item~0#1.base|)))) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l3_insert_~list#1.base|) |ULTIMATE.start_l3_insert_~list#1.offset|)) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (select |#valid| |ULTIMATE.start_l3_insert_~list#1.base|) 1) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= (+ |ULTIMATE.start_l3_insert_~item~1#1.offset| 8) (select |#length| |ULTIMATE.start_l3_insert_~item~1#1.base|)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (not (= (select |#valid| |ULTIMATE.start_l2_insert_~list#1.base|) 1)) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (or (not (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l3_insert_~item~1#1.base|) (+ |ULTIMATE.start_l3_insert_~item~1#1.offset| 4)) 0)) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l3_insert_~list#1.base|) |ULTIMATE.start_l3_insert_~list#1.offset|) |ULTIMATE.start_l3_insert_~item~1#1.base|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (or (= |ULTIMATE.start_l4_insert_~item~0#1.base| |ULTIMATE.start_l3_insert_~item~1#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= (select |#valid| |ULTIMATE.start_l3_insert_~item~1#1.base|) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-23 15:51:49,509 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:51:49,509 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 15:51:49,509 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [21] total 21 [2022-11-23 15:51:49,509 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1833796817] [2022-11-23 15:51:49,509 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 15:51:49,510 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2022-11-23 15:51:49,510 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:51:49,510 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2022-11-23 15:51:49,511 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=308, Invalid=2133, Unknown=33, NotChecked=606, Total=3080 [2022-11-23 15:51:49,512 INFO L87 Difference]: Start difference. First operand 329 states and 446 transitions. Second operand has 22 states, 17 states have (on average 3.0) internal successors, (51), 17 states have internal predecessors, (51), 4 states have call successors, (6), 2 states have call predecessors, (6), 6 states have return successors, (6), 6 states have call predecessors, (6), 4 states have call successors, (6) [2022-11-23 15:51:51,203 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:51:51,204 INFO L93 Difference]: Finished difference Result 409 states and 498 transitions. [2022-11-23 15:51:51,204 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-11-23 15:51:51,204 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 17 states have (on average 3.0) internal successors, (51), 17 states have internal predecessors, (51), 4 states have call successors, (6), 2 states have call predecessors, (6), 6 states have return successors, (6), 6 states have call predecessors, (6), 4 states have call successors, (6) Word has length 107 [2022-11-23 15:51:51,205 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:51:51,207 INFO L225 Difference]: With dead ends: 409 [2022-11-23 15:51:51,207 INFO L226 Difference]: Without dead ends: 409 [2022-11-23 15:51:51,208 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 233 GetRequests, 165 SyntacticMatches, 8 SemanticMatches, 60 ConstructedPredicates, 6 IntricatePredicates, 0 DeprecatedPredicates, 939 ImplicationChecksByTransitivity, 17.5s TimeCoverageRelationStatistics Valid=356, Invalid=2715, Unknown=33, NotChecked=678, Total=3782 [2022-11-23 15:51:51,209 INFO L413 NwaCegarLoop]: 150 mSDtfsCounter, 449 mSDsluCounter, 1230 mSDsCounter, 0 mSdLazyCounter, 1073 mSolverCounterSat, 64 mSolverCounterUnsat, 39 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 449 SdHoareTripleChecker+Valid, 1380 SdHoareTripleChecker+Invalid, 2604 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 64 IncrementalHoareTripleChecker+Valid, 1073 IncrementalHoareTripleChecker+Invalid, 39 IncrementalHoareTripleChecker+Unknown, 1428 IncrementalHoareTripleChecker+Unchecked, 1.4s IncrementalHoareTripleChecker+Time [2022-11-23 15:51:51,209 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [449 Valid, 1380 Invalid, 2604 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [64 Valid, 1073 Invalid, 39 Unknown, 1428 Unchecked, 1.4s Time] [2022-11-23 15:51:51,210 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 409 states. [2022-11-23 15:51:51,221 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 409 to 326. [2022-11-23 15:51:51,222 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 326 states, 233 states have (on average 1.6523605150214593) internal successors, (385), 298 states have internal predecessors, (385), 21 states have call successors, (21), 6 states have call predecessors, (21), 7 states have return successors, (34), 21 states have call predecessors, (34), 21 states have call successors, (34) [2022-11-23 15:51:51,225 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 326 states to 326 states and 440 transitions. [2022-11-23 15:51:51,225 INFO L78 Accepts]: Start accepts. Automaton has 326 states and 440 transitions. Word has length 107 [2022-11-23 15:51:51,226 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:51:51,226 INFO L495 AbstractCegarLoop]: Abstraction has 326 states and 440 transitions. [2022-11-23 15:51:51,226 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 17 states have (on average 3.0) internal successors, (51), 17 states have internal predecessors, (51), 4 states have call successors, (6), 2 states have call predecessors, (6), 6 states have return successors, (6), 6 states have call predecessors, (6), 4 states have call successors, (6) [2022-11-23 15:51:51,226 INFO L276 IsEmpty]: Start isEmpty. Operand 326 states and 440 transitions. [2022-11-23 15:51:51,227 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 108 [2022-11-23 15:51:51,227 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:51:51,228 INFO L195 NwaCegarLoop]: trace histogram [50, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:51:51,246 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (16)] Forceful destruction successful, exit code 0 [2022-11-23 15:51:51,439 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 16 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable15 [2022-11-23 15:51:51,439 INFO L420 AbstractCegarLoop]: === Iteration 17 === Targeting ULTIMATE.startErr15REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 82 more)] === [2022-11-23 15:51:51,439 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:51:51,440 INFO L85 PathProgramCache]: Analyzing trace with hash 188340012, now seen corresponding path program 1 times [2022-11-23 15:51:51,440 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:51:51,440 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1346636637] [2022-11-23 15:51:51,440 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:51:51,440 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:51:51,515 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-23 15:51:51,516 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1022843135] [2022-11-23 15:51:51,516 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:51:51,516 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:51:51,517 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:51:51,518 INFO L229 MonitoredProcess]: Starting monitored process 17 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:51:51,548 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_9d1e1320-b48d-4844-998a-72ea57d508e0/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (17)] Waiting until timeout for monitored process [2022-11-23 15:51:52,522 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:51:52,534 INFO L263 TraceCheckSpWp]: Trace formula consists of 1381 conjuncts, 136 conjunts are in the unsatisfiable core [2022-11-23 15:51:52,541 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:51:52,681 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-23 15:52:04,701 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_6381 Int) (v_ArrVal_6380 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= |c_#length| (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6381)) (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6380)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 15:52:04,995 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:04,996 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 15:52:05,134 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-23 15:52:05,134 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-23 15:52:05,344 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_6383 Int) (v_ArrVal_6382 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6382)) (= |c_#length| (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6383)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 15:52:05,577 INFO L217 Elim1Store]: Index analysis took 107 ms [2022-11-23 15:52:05,704 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-23 15:52:05,704 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-23 15:52:05,770 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 15:52:06,169 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_6384 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= |c_#length| (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6384)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-23 15:52:06,346 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:06,347 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-23 15:52:06,429 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-23 15:52:06,429 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-23 15:52:07,245 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~size#1| Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (|zalloc_or_die_calloc_model_~nmemb#1| Int) (v_ArrVal_6385 Int)) (let ((.cse0 (* |zalloc_or_die_calloc_model_~nmemb#1| |zalloc_or_die_calloc_model_~size#1|))) (and (<= (mod .cse0 4294967296) v_ArrVal_6385) (= |c_#length| (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6385)) (= |c_zalloc_or_die_#Ultimate.C_memset_#amount#1| .cse0)))) is different from true [2022-11-23 15:52:09,294 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~size#1| Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (|zalloc_or_die_calloc_model_~nmemb#1| Int) (v_ArrVal_6385 Int)) (let ((.cse0 (mod (* |zalloc_or_die_calloc_model_~nmemb#1| |zalloc_or_die_calloc_model_~size#1|) 4294967296))) (and (< 8 .cse0) (<= .cse0 v_ArrVal_6385) (= |c_#length| (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6385))))) is different from true [2022-11-23 15:52:09,651 INFO L321 Elim1Store]: treesize reduction 11, result has 45.0 percent of original size [2022-11-23 15:52:09,651 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 16 treesize of output 22 [2022-11-23 15:52:17,387 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 37 proven. 339 refuted. 0 times theorem prover too weak. 114 trivial. 1110 not checked. [2022-11-23 15:52:17,388 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:52:22,001 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:52:22,001 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1346636637] [2022-11-23 15:52:22,001 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-23 15:52:22,001 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1022843135] [2022-11-23 15:52:22,001 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1022843135] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 15:52:22,001 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2049806657] [2022-11-23 15:52:22,003 INFO L159 IcfgInterpreter]: Started Sifa with 33 locations of interest [2022-11-23 15:52:22,004 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:52:22,004 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:52:22,004 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:52:22,004 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:52:22,062 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:52:22,072 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:52:22,096 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:52:22,111 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:52:22,129 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:52:22,180 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-23 15:52:22,194 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 15:52:22,211 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-23 15:52:22,264 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:52:22,273 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:52:22,282 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:52:22,319 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:52:22,344 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:52:22,383 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:52:22,392 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-23 15:52:23,639 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:52:23,663 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 15:52:23,682 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-23 15:52:23,767 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:23,769 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:52:23,787 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 15:52:23,787 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-23 15:52:23,808 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 15:52:23,828 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:23,829 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:52:23,847 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-23 15:52:23,848 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-23 15:52:23,914 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:23,915 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:23,916 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:52:23,938 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 15:52:23,938 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-23 15:52:23,971 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:23,973 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:23,973 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:52:23,995 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-23 15:52:23,996 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-23 15:52:24,019 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 15:52:24,115 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:24,116 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:52:24,117 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:52:24,164 INFO L321 Elim1Store]: treesize reduction 30, result has 49.2 percent of original size [2022-11-23 15:52:24,164 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 3 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 5 case distinctions, treesize of input 35 treesize of output 52 [2022-11-23 15:52:24,218 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:24,220 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:52:24,221 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:52:24,266 INFO L321 Elim1Store]: treesize reduction 30, result has 49.2 percent of original size [2022-11-23 15:52:24,266 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 3 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 5 case distinctions, treesize of input 34 treesize of output 51 [2022-11-23 15:52:24,295 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-23 15:52:24,385 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-23 15:52:24,408 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:24,410 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:24,411 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:52:24,411 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:52:24,455 INFO L321 Elim1Store]: treesize reduction 56, result has 29.1 percent of original size [2022-11-23 15:52:24,456 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 3 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 59 treesize of output 58 [2022-11-23 15:52:24,498 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:24,499 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:52:24,500 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-23 15:52:24,501 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-23 15:52:24,550 INFO L321 Elim1Store]: treesize reduction 44, result has 44.3 percent of original size [2022-11-23 15:52:24,551 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 3 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 79 treesize of output 82 [2022-11-23 15:52:24,820 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-23 15:52:24,854 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-23 15:52:24,894 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-23 15:52:25,002 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:52:25,048 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:52:25,069 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:52:25,113 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-23 15:52:25,124 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:52:25,135 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-23 15:52:25,145 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:53:14,462 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '15549#(and (<= |~#list~0.base| 3) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (<= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (<= 0 |#NULL.base|) (<= 0 |ULTIMATE.start_l2_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (<= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (<= 4 |ULTIMATE.start_l3_insert_#in~list#1.offset|) (< (select |#length| |ULTIMATE.start_l2_insert_~list#1.base|) (+ |ULTIMATE.start_l2_insert_~list#1.offset| 4)) (<= |ULTIMATE.start_l0_insert_#in~list#1.offset| 0) (<= 4 |ULTIMATE.start_l1_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~item~2#1.offset|) (<= |ULTIMATE.start_l2_insert_#in~list#1.offset| 0) (<= 0 |ULTIMATE.start_l0_insert_~list#1.offset|) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (<= |ULTIMATE.start_l0_insert_#in~list#1.base| 3) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= |#NULL.offset| 0) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (<= 0 |ULTIMATE.start_l3_insert_~item~1#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_#in~list#1.base|) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 0 |ULTIMATE.start_l0_insert_~item~4#1.offset|) (<= |#NULL.base| 0) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (<= |ULTIMATE.start_l1_insert_#in~list#1.offset| 4) (<= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (<= |ULTIMATE.start_l3_insert_#in~list#1.offset| 4) (<= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (<= 0 |ULTIMATE.start_l1_insert_~item~3#1.offset|) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (<= 0 |~#list~0.offset|) (<= 3 |~#list~0.base|) (<= 0 |#NULL.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (<= 0 |#StackHeapBarrier|) (<= 0 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |~#list~0.offset| 0))' at error location [2022-11-23 15:53:14,462 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:53:14,462 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-23 15:53:14,462 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [42] total 42 [2022-11-23 15:53:14,462 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [468631943] [2022-11-23 15:53:14,462 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-23 15:53:14,463 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 43 states [2022-11-23 15:53:14,463 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:53:14,463 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 43 interpolants. [2022-11-23 15:53:14,465 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=334, Invalid=4632, Unknown=24, NotChecked=710, Total=5700 [2022-11-23 15:53:14,465 INFO L87 Difference]: Start difference. First operand 326 states and 440 transitions. Second operand has 43 states, 41 states have (on average 1.8048780487804879) internal successors, (74), 40 states have internal predecessors, (74), 3 states have call successors, (6), 3 states have call predecessors, (6), 6 states have return successors, (6), 5 states have call predecessors, (6), 3 states have call successors, (6) [2022-11-23 15:53:16,526 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:53:18,544 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:53:26,189 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:53:30,560 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:53:34,931 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:53:39,355 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:53:41,757 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-23 15:53:46,880 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0]