./Ultimate.py --spec ../../sv-benchmarks/c/properties/valid-memsafety.prp --file ../../sv-benchmarks/c/array-memsafety/openbsd_cstpcpy-alloca-1.i --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for memory safety (deref-memtrack) Using default analysis Version 38b53e6a Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/config/TaipanMemDerefMemtrack.xml -i ../../sv-benchmarks/c/array-memsafety/openbsd_cstpcpy-alloca-1.i -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/config/svcomp-DerefFreeMemtrack-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G valid-free) ) CHECK( init(main()), LTL(G valid-deref) ) CHECK( init(main()), LTL(G valid-memtrack) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash f22afdea3888c472e42c0b4bee511704d4ceb9c1e2d9f4db0ce5ffbd6de758f0 --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-38b53e6 [2022-11-25 23:47:10,181 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-25 23:47:10,185 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-25 23:47:10,226 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-25 23:47:10,227 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-25 23:47:10,230 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-25 23:47:10,233 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-25 23:47:10,235 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-25 23:47:10,238 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-25 23:47:10,243 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-25 23:47:10,244 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-25 23:47:10,245 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-25 23:47:10,245 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-25 23:47:10,246 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-25 23:47:10,247 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-25 23:47:10,248 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-25 23:47:10,249 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-25 23:47:10,250 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-25 23:47:10,251 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-25 23:47:10,253 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-25 23:47:10,257 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-25 23:47:10,260 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-25 23:47:10,261 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-25 23:47:10,262 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-25 23:47:10,278 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-25 23:47:10,278 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-25 23:47:10,278 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-25 23:47:10,279 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-25 23:47:10,280 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-25 23:47:10,281 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-25 23:47:10,281 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-25 23:47:10,282 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-25 23:47:10,283 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-25 23:47:10,284 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-25 23:47:10,285 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-25 23:47:10,285 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-25 23:47:10,286 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-25 23:47:10,286 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-25 23:47:10,289 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-25 23:47:10,291 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-25 23:47:10,292 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-25 23:47:10,293 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/config/svcomp-DerefFreeMemtrack-32bit-Taipan_Default.epf [2022-11-25 23:47:10,332 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-25 23:47:10,333 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-25 23:47:10,333 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-25 23:47:10,334 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-25 23:47:10,335 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-25 23:47:10,335 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-25 23:47:10,335 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-25 23:47:10,336 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-25 23:47:10,336 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-25 23:47:10,336 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-25 23:47:10,337 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-25 23:47:10,338 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-25 23:47:10,338 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-25 23:47:10,338 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-25 23:47:10,338 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-25 23:47:10,339 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-25 23:47:10,339 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-25 23:47:10,339 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-25 23:47:10,340 INFO L136 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2022-11-25 23:47:10,340 INFO L138 SettingsManager]: * Create parallel compositions if possible=false [2022-11-25 23:47:10,340 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-25 23:47:10,341 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-25 23:47:10,341 INFO L138 SettingsManager]: * Check unreachability of error function in SV-COMP mode=false [2022-11-25 23:47:10,341 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-25 23:47:10,342 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-25 23:47:10,342 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-25 23:47:10,342 INFO L138 SettingsManager]: * Check for the main procedure if all allocated memory was freed=true [2022-11-25 23:47:10,343 INFO L138 SettingsManager]: * Bitprecise bitfields=true [2022-11-25 23:47:10,343 INFO L138 SettingsManager]: * SV-COMP memtrack compatibility mode=true [2022-11-25 23:47:10,343 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-25 23:47:10,344 INFO L138 SettingsManager]: * Adapt memory model on pointer casts if necessary=true [2022-11-25 23:47:10,344 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-25 23:47:10,344 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-25 23:47:10,344 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-25 23:47:10,345 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-25 23:47:10,345 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-25 23:47:10,345 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-25 23:47:10,345 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-25 23:47:10,346 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-25 23:47:10,346 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-25 23:47:10,346 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-25 23:47:10,346 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-25 23:47:10,347 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G valid-free) ) CHECK( init(main()), LTL(G valid-deref) ) CHECK( init(main()), LTL(G valid-memtrack) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> f22afdea3888c472e42c0b4bee511704d4ceb9c1e2d9f4db0ce5ffbd6de758f0 [2022-11-25 23:47:10,681 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-25 23:47:10,706 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-25 23:47:10,718 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-25 23:47:10,720 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-25 23:47:10,720 INFO L275 PluginConnector]: CDTParser initialized [2022-11-25 23:47:10,722 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/../../sv-benchmarks/c/array-memsafety/openbsd_cstpcpy-alloca-1.i [2022-11-25 23:47:13,743 INFO L500 CDTParser]: Created temporary CDT project at NULL [2022-11-25 23:47:14,025 INFO L351 CDTParser]: Found 1 translation units. [2022-11-25 23:47:14,026 INFO L172 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/sv-benchmarks/c/array-memsafety/openbsd_cstpcpy-alloca-1.i [2022-11-25 23:47:14,038 INFO L394 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/data/3a7ac3ecf/277ab0aeecbd4b55a7bdfcc045712607/FLAGe319141bb [2022-11-25 23:47:14,053 INFO L402 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/data/3a7ac3ecf/277ab0aeecbd4b55a7bdfcc045712607 [2022-11-25 23:47:14,057 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-25 23:47:14,060 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-25 23:47:14,063 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-25 23:47:14,063 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-25 23:47:14,068 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-25 23:47:14,069 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,070 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@70a6911c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14, skipping insertion in model container [2022-11-25 23:47:14,071 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,079 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-25 23:47:14,111 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-25 23:47:14,510 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-25 23:47:14,524 INFO L203 MainTranslator]: Completed pre-run [2022-11-25 23:47:14,556 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-25 23:47:14,580 INFO L208 MainTranslator]: Completed translation [2022-11-25 23:47:14,580 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14 WrapperNode [2022-11-25 23:47:14,580 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-25 23:47:14,581 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-25 23:47:14,582 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-25 23:47:14,582 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-25 23:47:14,590 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,608 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,633 INFO L138 Inliner]: procedures = 117, calls = 13, calls flagged for inlining = 3, calls inlined = 3, statements flattened = 64 [2022-11-25 23:47:14,633 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-25 23:47:14,635 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-25 23:47:14,638 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-25 23:47:14,639 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-25 23:47:14,648 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,649 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,654 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,655 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,660 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,666 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,669 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,670 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,673 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-25 23:47:14,673 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-25 23:47:14,674 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-25 23:47:14,674 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-25 23:47:14,675 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14" (1/1) ... [2022-11-25 23:47:14,682 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-25 23:47:14,695 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:14,707 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-25 23:47:14,729 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-25 23:47:14,768 INFO L130 BoogieDeclarations]: Found specification of procedure read~int [2022-11-25 23:47:14,768 INFO L130 BoogieDeclarations]: Found specification of procedure write~int [2022-11-25 23:47:14,768 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocOnStack [2022-11-25 23:47:14,769 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.dealloc [2022-11-25 23:47:14,769 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-25 23:47:14,769 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-25 23:47:14,912 INFO L235 CfgBuilder]: Building ICFG [2022-11-25 23:47:14,916 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-25 23:47:15,095 INFO L276 CfgBuilder]: Performing block encoding [2022-11-25 23:47:15,186 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-25 23:47:15,186 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-25 23:47:15,188 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 25.11 11:47:15 BoogieIcfgContainer [2022-11-25 23:47:15,189 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-25 23:47:15,192 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-25 23:47:15,210 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-25 23:47:15,214 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-25 23:47:15,215 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 25.11 11:47:14" (1/3) ... [2022-11-25 23:47:15,216 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@1805b9fb and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 25.11 11:47:15, skipping insertion in model container [2022-11-25 23:47:15,216 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 25.11 11:47:14" (2/3) ... [2022-11-25 23:47:15,216 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@1805b9fb and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 25.11 11:47:15, skipping insertion in model container [2022-11-25 23:47:15,217 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 25.11 11:47:15" (3/3) ... [2022-11-25 23:47:15,218 INFO L112 eAbstractionObserver]: Analyzing ICFG openbsd_cstpcpy-alloca-1.i [2022-11-25 23:47:15,259 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:false NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-25 23:47:15,259 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 9 error locations. [2022-11-25 23:47:15,332 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-25 23:47:15,343 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=false, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=All, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@3f63b497, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-25 23:47:15,343 INFO L358 AbstractCegarLoop]: Starting to check reachability of 9 error locations. [2022-11-25 23:47:15,348 INFO L276 IsEmpty]: Start isEmpty. Operand has 20 states, 10 states have (on average 2.3) internal successors, (23), 19 states have internal predecessors, (23), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:15,355 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 4 [2022-11-25 23:47:15,355 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:15,356 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1] [2022-11-25 23:47:15,357 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting ULTIMATE.startErr8ASSERT_VIOLATIONMEMORY_LEAK === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:15,363 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:15,363 INFO L85 PathProgramCache]: Analyzing trace with hash 105340, now seen corresponding path program 1 times [2022-11-25 23:47:15,374 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:15,375 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [500383673] [2022-11-25 23:47:15,375 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:15,376 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:15,500 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:15,579 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:15,579 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:15,580 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [500383673] [2022-11-25 23:47:15,581 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [500383673] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-25 23:47:15,581 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-25 23:47:15,582 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [1] imperfect sequences [] total 1 [2022-11-25 23:47:15,583 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [250047237] [2022-11-25 23:47:15,584 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-25 23:47:15,588 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-25 23:47:15,588 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:15,650 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-25 23:47:15,651 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-25 23:47:15,653 INFO L87 Difference]: Start difference. First operand has 20 states, 10 states have (on average 2.3) internal successors, (23), 19 states have internal predecessors, (23), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Second operand has 3 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:15,764 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:15,764 INFO L93 Difference]: Finished difference Result 21 states and 23 transitions. [2022-11-25 23:47:15,765 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-25 23:47:15,767 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 3 [2022-11-25 23:47:15,767 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:15,781 INFO L225 Difference]: With dead ends: 21 [2022-11-25 23:47:15,781 INFO L226 Difference]: Without dead ends: 19 [2022-11-25 23:47:15,783 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 1 GetRequests, 0 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-25 23:47:15,791 INFO L413 NwaCegarLoop]: 14 mSDtfsCounter, 1 mSDsluCounter, 6 mSDsCounter, 0 mSdLazyCounter, 21 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1 SdHoareTripleChecker+Valid, 20 SdHoareTripleChecker+Invalid, 22 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 21 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:15,792 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1 Valid, 20 Invalid, 22 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 21 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-25 23:47:15,817 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 19 states. [2022-11-25 23:47:15,833 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 19 to 19. [2022-11-25 23:47:15,835 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 19 states, 10 states have (on average 2.0) internal successors, (20), 18 states have internal predecessors, (20), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:15,835 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 19 states to 19 states and 20 transitions. [2022-11-25 23:47:15,837 INFO L78 Accepts]: Start accepts. Automaton has 19 states and 20 transitions. Word has length 3 [2022-11-25 23:47:15,837 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:15,837 INFO L495 AbstractCegarLoop]: Abstraction has 19 states and 20 transitions. [2022-11-25 23:47:15,837 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:15,837 INFO L276 IsEmpty]: Start isEmpty. Operand 19 states and 20 transitions. [2022-11-25 23:47:15,838 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 5 [2022-11-25 23:47:15,838 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:15,838 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1] [2022-11-25 23:47:15,839 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-25 23:47:15,839 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:15,840 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:15,840 INFO L85 PathProgramCache]: Analyzing trace with hash 3267810, now seen corresponding path program 1 times [2022-11-25 23:47:15,840 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:15,840 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1837001747] [2022-11-25 23:47:15,841 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:15,841 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:15,865 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:16,003 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:16,004 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:16,004 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1837001747] [2022-11-25 23:47:16,004 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1837001747] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-25 23:47:16,005 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-25 23:47:16,005 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-25 23:47:16,005 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1783489532] [2022-11-25 23:47:16,005 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-25 23:47:16,007 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-25 23:47:16,007 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:16,007 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-25 23:47:16,008 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-25 23:47:16,008 INFO L87 Difference]: Start difference. First operand 19 states and 20 transitions. Second operand has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:16,050 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:16,051 INFO L93 Difference]: Finished difference Result 17 states and 18 transitions. [2022-11-25 23:47:16,054 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-25 23:47:16,054 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 4 [2022-11-25 23:47:16,055 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:16,055 INFO L225 Difference]: With dead ends: 17 [2022-11-25 23:47:16,055 INFO L226 Difference]: Without dead ends: 17 [2022-11-25 23:47:16,056 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-25 23:47:16,057 INFO L413 NwaCegarLoop]: 6 mSDtfsCounter, 13 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 15 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 13 SdHoareTripleChecker+Valid, 6 SdHoareTripleChecker+Invalid, 16 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 15 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:16,058 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [13 Valid, 6 Invalid, 16 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 15 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-25 23:47:16,059 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 17 states. [2022-11-25 23:47:16,060 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 17 to 17. [2022-11-25 23:47:16,061 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 17 states, 10 states have (on average 1.8) internal successors, (18), 16 states have internal predecessors, (18), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:16,061 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 17 states to 17 states and 18 transitions. [2022-11-25 23:47:16,061 INFO L78 Accepts]: Start accepts. Automaton has 17 states and 18 transitions. Word has length 4 [2022-11-25 23:47:16,062 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:16,062 INFO L495 AbstractCegarLoop]: Abstraction has 17 states and 18 transitions. [2022-11-25 23:47:16,062 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:16,062 INFO L276 IsEmpty]: Start isEmpty. Operand 17 states and 18 transitions. [2022-11-25 23:47:16,063 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 5 [2022-11-25 23:47:16,063 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:16,063 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1] [2022-11-25 23:47:16,063 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-25 23:47:16,064 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:16,064 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:16,065 INFO L85 PathProgramCache]: Analyzing trace with hash 3267811, now seen corresponding path program 1 times [2022-11-25 23:47:16,065 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:16,065 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1868269531] [2022-11-25 23:47:16,065 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:16,066 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:16,090 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:16,268 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:16,268 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:16,268 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1868269531] [2022-11-25 23:47:16,269 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1868269531] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-25 23:47:16,269 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-25 23:47:16,269 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-25 23:47:16,269 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1370554509] [2022-11-25 23:47:16,269 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-25 23:47:16,270 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-25 23:47:16,270 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:16,271 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-25 23:47:16,271 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=6, Invalid=6, Unknown=0, NotChecked=0, Total=12 [2022-11-25 23:47:16,271 INFO L87 Difference]: Start difference. First operand 17 states and 18 transitions. Second operand has 4 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:16,324 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:16,324 INFO L93 Difference]: Finished difference Result 20 states and 21 transitions. [2022-11-25 23:47:16,325 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-25 23:47:16,325 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 4 [2022-11-25 23:47:16,325 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:16,326 INFO L225 Difference]: With dead ends: 20 [2022-11-25 23:47:16,326 INFO L226 Difference]: Without dead ends: 20 [2022-11-25 23:47:16,326 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=6, Invalid=6, Unknown=0, NotChecked=0, Total=12 [2022-11-25 23:47:16,328 INFO L413 NwaCegarLoop]: 8 mSDtfsCounter, 19 mSDsluCounter, 8 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 19 SdHoareTripleChecker+Valid, 16 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:16,328 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [19 Valid, 16 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-25 23:47:16,329 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 20 states. [2022-11-25 23:47:16,331 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 20 to 18. [2022-11-25 23:47:16,332 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 18 states, 11 states have (on average 1.7272727272727273) internal successors, (19), 17 states have internal predecessors, (19), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:16,332 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18 states to 18 states and 19 transitions. [2022-11-25 23:47:16,333 INFO L78 Accepts]: Start accepts. Automaton has 18 states and 19 transitions. Word has length 4 [2022-11-25 23:47:16,333 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:16,333 INFO L495 AbstractCegarLoop]: Abstraction has 18 states and 19 transitions. [2022-11-25 23:47:16,333 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 1.0) internal successors, (4), 3 states have internal predecessors, (4), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:16,333 INFO L276 IsEmpty]: Start isEmpty. Operand 18 states and 19 transitions. [2022-11-25 23:47:16,334 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 5 [2022-11-25 23:47:16,334 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:16,334 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1] [2022-11-25 23:47:16,334 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-25 23:47:16,335 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:16,335 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:16,336 INFO L85 PathProgramCache]: Analyzing trace with hash 3266345, now seen corresponding path program 1 times [2022-11-25 23:47:16,336 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:16,336 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [313858778] [2022-11-25 23:47:16,336 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:16,337 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:16,377 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:16,759 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:16,759 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:16,760 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [313858778] [2022-11-25 23:47:16,760 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [313858778] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-25 23:47:16,760 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-25 23:47:16,760 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-25 23:47:16,761 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1406002916] [2022-11-25 23:47:16,761 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-25 23:47:16,761 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-25 23:47:16,762 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:16,762 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-25 23:47:16,762 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2022-11-25 23:47:16,763 INFO L87 Difference]: Start difference. First operand 18 states and 19 transitions. Second operand has 5 states, 4 states have (on average 1.0) internal successors, (4), 4 states have internal predecessors, (4), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:16,828 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:16,828 INFO L93 Difference]: Finished difference Result 19 states and 20 transitions. [2022-11-25 23:47:16,829 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-25 23:47:16,829 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 1.0) internal successors, (4), 4 states have internal predecessors, (4), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 4 [2022-11-25 23:47:16,829 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:16,830 INFO L225 Difference]: With dead ends: 19 [2022-11-25 23:47:16,830 INFO L226 Difference]: Without dead ends: 19 [2022-11-25 23:47:16,830 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 0 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=13, Invalid=17, Unknown=0, NotChecked=0, Total=30 [2022-11-25 23:47:16,832 INFO L413 NwaCegarLoop]: 9 mSDtfsCounter, 19 mSDsluCounter, 8 mSDsCounter, 0 mSdLazyCounter, 36 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 19 SdHoareTripleChecker+Valid, 17 SdHoareTripleChecker+Invalid, 36 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 36 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:16,833 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [19 Valid, 17 Invalid, 36 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 36 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-25 23:47:16,834 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 19 states. [2022-11-25 23:47:16,835 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 19 to 19. [2022-11-25 23:47:16,836 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 19 states, 12 states have (on average 1.6666666666666667) internal successors, (20), 18 states have internal predecessors, (20), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:16,836 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 19 states to 19 states and 20 transitions. [2022-11-25 23:47:16,837 INFO L78 Accepts]: Start accepts. Automaton has 19 states and 20 transitions. Word has length 4 [2022-11-25 23:47:16,837 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:16,837 INFO L495 AbstractCegarLoop]: Abstraction has 19 states and 20 transitions. [2022-11-25 23:47:16,838 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 1.0) internal successors, (4), 4 states have internal predecessors, (4), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:16,838 INFO L276 IsEmpty]: Start isEmpty. Operand 19 states and 20 transitions. [2022-11-25 23:47:16,838 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 7 [2022-11-25 23:47:16,838 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:16,839 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1] [2022-11-25 23:47:16,839 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-25 23:47:16,839 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:16,840 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:16,840 INFO L85 PathProgramCache]: Analyzing trace with hash -1155966095, now seen corresponding path program 1 times [2022-11-25 23:47:16,840 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:16,840 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [560902592] [2022-11-25 23:47:16,841 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:16,841 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:16,854 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:16,963 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:16,964 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:16,964 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [560902592] [2022-11-25 23:47:16,964 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [560902592] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:47:16,964 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1502062618] [2022-11-25 23:47:16,965 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:16,965 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:16,965 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:16,977 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:47:16,992 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-25 23:47:17,072 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:17,074 INFO L263 TraceCheckSpWp]: Trace formula consists of 66 conjuncts, 8 conjunts are in the unsatisfiable core [2022-11-25 23:47:17,080 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:47:17,319 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:17,319 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:47:17,445 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 23 treesize of output 19 [2022-11-25 23:47:17,505 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:17,506 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1502062618] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:47:17,506 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [947055052] [2022-11-25 23:47:17,530 INFO L159 IcfgInterpreter]: Started Sifa with 6 locations of interest [2022-11-25 23:47:17,531 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:47:17,536 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:47:17,545 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:47:17,545 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:47:17,681 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:17,694 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:17,780 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:17,883 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:17,930 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:18,037 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:47:18,656 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '234#(and (not (< |ULTIMATE.start_main_~i~0#1| |ULTIMATE.start_main_~length2~0#1|)) (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |#NULL.offset| 0) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.offset|) (<= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (not (<= (+ |ULTIMATE.start_main_~length2~0#1| |ULTIMATE.start_main_~nondetString~0#1.offset|) (select |#length| |ULTIMATE.start_main_~nondetString~0#1.base|))) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |#NULL.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (= |#NULL.base| 0))' at error location [2022-11-25 23:47:18,657 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:47:18,657 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:47:18,657 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [5, 5, 5] total 13 [2022-11-25 23:47:18,657 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [50061237] [2022-11-25 23:47:18,657 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:47:18,658 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-11-25 23:47:18,658 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:18,658 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-11-25 23:47:18,659 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=77, Invalid=265, Unknown=0, NotChecked=0, Total=342 [2022-11-25 23:47:18,659 INFO L87 Difference]: Start difference. First operand 19 states and 20 transitions. Second operand has 14 states, 13 states have (on average 1.2307692307692308) internal successors, (16), 14 states have internal predecessors, (16), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:18,843 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:18,843 INFO L93 Difference]: Finished difference Result 18 states and 19 transitions. [2022-11-25 23:47:18,843 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2022-11-25 23:47:18,844 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 13 states have (on average 1.2307692307692308) internal successors, (16), 14 states have internal predecessors, (16), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 6 [2022-11-25 23:47:18,844 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:18,844 INFO L225 Difference]: With dead ends: 18 [2022-11-25 23:47:18,844 INFO L226 Difference]: Without dead ends: 18 [2022-11-25 23:47:18,845 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 24 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 20 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 89 ImplicationChecksByTransitivity, 0.9s TimeCoverageRelationStatistics Valid=107, Invalid=355, Unknown=0, NotChecked=0, Total=462 [2022-11-25 23:47:18,846 INFO L413 NwaCegarLoop]: 5 mSDtfsCounter, 75 mSDsluCounter, 12 mSDsCounter, 0 mSdLazyCounter, 78 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 75 SdHoareTripleChecker+Valid, 17 SdHoareTripleChecker+Invalid, 83 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 78 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:18,846 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [75 Valid, 17 Invalid, 83 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 78 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-25 23:47:18,847 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 18 states. [2022-11-25 23:47:18,848 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 18 to 18. [2022-11-25 23:47:18,848 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 18 states, 12 states have (on average 1.5833333333333333) internal successors, (19), 17 states have internal predecessors, (19), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:18,849 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18 states to 18 states and 19 transitions. [2022-11-25 23:47:18,849 INFO L78 Accepts]: Start accepts. Automaton has 18 states and 19 transitions. Word has length 6 [2022-11-25 23:47:18,849 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:18,849 INFO L495 AbstractCegarLoop]: Abstraction has 18 states and 19 transitions. [2022-11-25 23:47:18,849 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 13 states have (on average 1.2307692307692308) internal successors, (16), 14 states have internal predecessors, (16), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:18,850 INFO L276 IsEmpty]: Start isEmpty. Operand 18 states and 19 transitions. [2022-11-25 23:47:18,850 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 7 [2022-11-25 23:47:18,850 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:18,850 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1] [2022-11-25 23:47:18,862 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-25 23:47:19,051 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:19,051 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:19,051 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:19,051 INFO L85 PathProgramCache]: Analyzing trace with hash -1155967561, now seen corresponding path program 1 times [2022-11-25 23:47:19,052 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:19,052 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1062225227] [2022-11-25 23:47:19,052 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:19,052 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:19,079 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:19,339 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:19,340 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:19,340 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1062225227] [2022-11-25 23:47:19,343 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1062225227] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:47:19,343 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1436272504] [2022-11-25 23:47:19,343 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:19,343 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:19,343 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:19,344 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:47:19,370 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-25 23:47:19,422 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:19,423 INFO L263 TraceCheckSpWp]: Trace formula consists of 68 conjuncts, 17 conjunts are in the unsatisfiable core [2022-11-25 23:47:19,426 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:47:19,489 INFO L321 Elim1Store]: treesize reduction 13, result has 40.9 percent of original size [2022-11-25 23:47:19,489 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 17 [2022-11-25 23:47:19,631 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:19,631 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:47:19,815 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:19,816 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1436272504] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:47:19,816 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1346246472] [2022-11-25 23:47:19,818 INFO L159 IcfgInterpreter]: Started Sifa with 5 locations of interest [2022-11-25 23:47:19,818 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:47:19,818 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:47:19,818 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:47:19,819 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:47:19,858 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:19,861 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:19,910 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:19,964 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:19,997 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:20,013 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:47:20,415 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '325#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= |ULTIMATE.start_main_#t~nondet10#1| 127) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 (+ 128 |ULTIMATE.start_main_#t~nondet10#1|)) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (not (<= (+ |ULTIMATE.start_main_~i~0#1| |ULTIMATE.start_main_~nondetString~0#1.offset| 1) (select |#length| |ULTIMATE.start_main_~nondetString~0#1.base|))) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (= |#NULL.base| 0))' at error location [2022-11-25 23:47:20,416 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:47:20,416 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:47:20,416 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4] total 12 [2022-11-25 23:47:20,416 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [587126459] [2022-11-25 23:47:20,416 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:47:20,417 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-11-25 23:47:20,417 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:20,417 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-11-25 23:47:20,417 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=69, Invalid=237, Unknown=0, NotChecked=0, Total=306 [2022-11-25 23:47:20,418 INFO L87 Difference]: Start difference. First operand 18 states and 19 transitions. Second operand has 14 states, 13 states have (on average 1.3846153846153846) internal successors, (18), 13 states have internal predecessors, (18), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:20,654 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:20,654 INFO L93 Difference]: Finished difference Result 17 states and 18 transitions. [2022-11-25 23:47:20,654 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2022-11-25 23:47:20,655 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 13 states have (on average 1.3846153846153846) internal successors, (18), 13 states have internal predecessors, (18), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 6 [2022-11-25 23:47:20,655 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:20,655 INFO L225 Difference]: With dead ends: 17 [2022-11-25 23:47:20,655 INFO L226 Difference]: Without dead ends: 17 [2022-11-25 23:47:20,656 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 25 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 21 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 80 ImplicationChecksByTransitivity, 0.8s TimeCoverageRelationStatistics Valid=126, Invalid=380, Unknown=0, NotChecked=0, Total=506 [2022-11-25 23:47:20,657 INFO L413 NwaCegarLoop]: 4 mSDtfsCounter, 83 mSDsluCounter, 8 mSDsCounter, 0 mSdLazyCounter, 44 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 83 SdHoareTripleChecker+Valid, 12 SdHoareTripleChecker+Invalid, 44 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 44 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:20,657 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [83 Valid, 12 Invalid, 44 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 44 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-25 23:47:20,658 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 17 states. [2022-11-25 23:47:20,659 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 17 to 16. [2022-11-25 23:47:20,659 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 16 states, 11 states have (on average 1.5454545454545454) internal successors, (17), 15 states have internal predecessors, (17), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:20,659 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 16 states to 16 states and 17 transitions. [2022-11-25 23:47:20,659 INFO L78 Accepts]: Start accepts. Automaton has 16 states and 17 transitions. Word has length 6 [2022-11-25 23:47:20,660 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:20,660 INFO L495 AbstractCegarLoop]: Abstraction has 16 states and 17 transitions. [2022-11-25 23:47:20,660 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 13 states have (on average 1.3846153846153846) internal successors, (18), 13 states have internal predecessors, (18), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:20,660 INFO L276 IsEmpty]: Start isEmpty. Operand 16 states and 17 transitions. [2022-11-25 23:47:20,660 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 8 [2022-11-25 23:47:20,660 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:20,660 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1] [2022-11-25 23:47:20,676 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2022-11-25 23:47:20,861 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:20,861 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting ULTIMATE.startErr4REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:20,862 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:20,862 INFO L85 PathProgramCache]: Analyzing trace with hash -1475209664, now seen corresponding path program 1 times [2022-11-25 23:47:20,862 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:20,862 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [26556084] [2022-11-25 23:47:20,862 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:20,862 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:20,875 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:20,912 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:20,914 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:20,916 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [26556084] [2022-11-25 23:47:20,916 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [26556084] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-25 23:47:20,916 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-25 23:47:20,916 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-25 23:47:20,917 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1653668847] [2022-11-25 23:47:20,917 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-25 23:47:20,917 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-25 23:47:20,917 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:20,918 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-25 23:47:20,918 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-25 23:47:20,919 INFO L87 Difference]: Start difference. First operand 16 states and 17 transitions. Second operand has 4 states, 3 states have (on average 2.3333333333333335) internal successors, (7), 4 states have internal predecessors, (7), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:20,948 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:20,948 INFO L93 Difference]: Finished difference Result 15 states and 16 transitions. [2022-11-25 23:47:20,948 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-25 23:47:20,948 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 2.3333333333333335) internal successors, (7), 4 states have internal predecessors, (7), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 7 [2022-11-25 23:47:20,949 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:20,949 INFO L225 Difference]: With dead ends: 15 [2022-11-25 23:47:20,949 INFO L226 Difference]: Without dead ends: 15 [2022-11-25 23:47:20,950 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-25 23:47:20,951 INFO L413 NwaCegarLoop]: 5 mSDtfsCounter, 15 mSDsluCounter, 1 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 15 SdHoareTripleChecker+Valid, 6 SdHoareTripleChecker+Invalid, 21 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:20,953 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [15 Valid, 6 Invalid, 21 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-25 23:47:20,954 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 15 states. [2022-11-25 23:47:20,958 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 15 to 15. [2022-11-25 23:47:20,958 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 15 states, 11 states have (on average 1.4545454545454546) internal successors, (16), 14 states have internal predecessors, (16), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:20,961 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 15 states to 15 states and 16 transitions. [2022-11-25 23:47:20,961 INFO L78 Accepts]: Start accepts. Automaton has 15 states and 16 transitions. Word has length 7 [2022-11-25 23:47:20,961 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:20,961 INFO L495 AbstractCegarLoop]: Abstraction has 15 states and 16 transitions. [2022-11-25 23:47:20,961 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 2.3333333333333335) internal successors, (7), 4 states have internal predecessors, (7), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:20,961 INFO L276 IsEmpty]: Start isEmpty. Operand 15 states and 16 transitions. [2022-11-25 23:47:20,962 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 8 [2022-11-25 23:47:20,962 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:20,962 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1] [2022-11-25 23:47:20,962 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-11-25 23:47:20,962 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:20,962 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:20,963 INFO L85 PathProgramCache]: Analyzing trace with hash -1475209663, now seen corresponding path program 1 times [2022-11-25 23:47:20,963 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:20,963 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [309338391] [2022-11-25 23:47:20,963 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:20,963 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:20,982 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:21,178 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:21,178 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:21,178 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [309338391] [2022-11-25 23:47:21,178 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [309338391] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:47:21,179 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [573927472] [2022-11-25 23:47:21,179 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:21,179 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:21,179 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:21,183 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:47:21,206 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-25 23:47:21,255 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:21,256 INFO L263 TraceCheckSpWp]: Trace formula consists of 90 conjuncts, 15 conjunts are in the unsatisfiable core [2022-11-25 23:47:21,258 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:47:21,314 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:21,314 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:47:21,335 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 17 [2022-11-25 23:47:21,352 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:21,352 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [573927472] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:47:21,352 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1534209966] [2022-11-25 23:47:21,355 INFO L159 IcfgInterpreter]: Started Sifa with 7 locations of interest [2022-11-25 23:47:21,355 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:47:21,356 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:47:21,356 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:47:21,356 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:47:21,399 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:21,403 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:21,444 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:47:21,504 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:21,532 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:21,595 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:21,616 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:47:22,257 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSifa [1534209966] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-25 23:47:22,257 INFO L184 FreeRefinementEngine]: Found 1 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:47:22,257 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [5, 4, 4] total 13 [2022-11-25 23:47:22,258 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1363446580] [2022-11-25 23:47:22,258 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-25 23:47:22,258 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2022-11-25 23:47:22,258 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:22,259 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2022-11-25 23:47:22,259 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=41, Invalid=141, Unknown=0, NotChecked=0, Total=182 [2022-11-25 23:47:22,259 INFO L87 Difference]: Start difference. First operand 15 states and 16 transitions. Second operand has 7 states, 6 states have (on average 1.1666666666666667) internal successors, (7), 6 states have internal predecessors, (7), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:22,329 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:22,330 INFO L93 Difference]: Finished difference Result 19 states and 20 transitions. [2022-11-25 23:47:22,330 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2022-11-25 23:47:22,330 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 6 states have (on average 1.1666666666666667) internal successors, (7), 6 states have internal predecessors, (7), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 7 [2022-11-25 23:47:22,331 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:22,331 INFO L225 Difference]: With dead ends: 19 [2022-11-25 23:47:22,331 INFO L226 Difference]: Without dead ends: 19 [2022-11-25 23:47:22,331 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 24 GetRequests, 10 SyntacticMatches, 2 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 35 ImplicationChecksByTransitivity, 0.7s TimeCoverageRelationStatistics Valid=41, Invalid=141, Unknown=0, NotChecked=0, Total=182 [2022-11-25 23:47:22,332 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 14 mSDsluCounter, 8 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 14 SdHoareTripleChecker+Valid, 11 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:22,332 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [14 Valid, 11 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-25 23:47:22,333 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 19 states. [2022-11-25 23:47:22,334 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 19 to 16. [2022-11-25 23:47:22,334 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 16 states, 12 states have (on average 1.4166666666666667) internal successors, (17), 15 states have internal predecessors, (17), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:22,335 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 16 states to 16 states and 17 transitions. [2022-11-25 23:47:22,335 INFO L78 Accepts]: Start accepts. Automaton has 16 states and 17 transitions. Word has length 7 [2022-11-25 23:47:22,335 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:22,335 INFO L495 AbstractCegarLoop]: Abstraction has 16 states and 17 transitions. [2022-11-25 23:47:22,336 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 6 states have (on average 1.1666666666666667) internal successors, (7), 6 states have internal predecessors, (7), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:22,336 INFO L276 IsEmpty]: Start isEmpty. Operand 16 states and 17 transitions. [2022-11-25 23:47:22,336 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 9 [2022-11-25 23:47:22,336 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:22,336 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1] [2022-11-25 23:47:22,347 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-25 23:47:22,542 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable7 [2022-11-25 23:47:22,543 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting ULTIMATE.startErr6REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:22,543 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:22,543 INFO L85 PathProgramCache]: Analyzing trace with hash 1513140689, now seen corresponding path program 1 times [2022-11-25 23:47:22,543 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:22,543 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1155912986] [2022-11-25 23:47:22,543 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:22,544 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:22,567 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:22,671 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-11-25 23:47:22,671 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:22,671 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1155912986] [2022-11-25 23:47:22,671 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1155912986] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-25 23:47:22,671 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-25 23:47:22,672 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-25 23:47:22,672 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1063801570] [2022-11-25 23:47:22,672 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-25 23:47:22,672 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-25 23:47:22,673 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:22,673 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-25 23:47:22,673 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2022-11-25 23:47:22,673 INFO L87 Difference]: Start difference. First operand 16 states and 17 transitions. Second operand has 5 states, 4 states have (on average 2.0) internal successors, (8), 5 states have internal predecessors, (8), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:22,705 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:22,705 INFO L93 Difference]: Finished difference Result 15 states and 16 transitions. [2022-11-25 23:47:22,706 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-25 23:47:22,706 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 2.0) internal successors, (8), 5 states have internal predecessors, (8), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 8 [2022-11-25 23:47:22,706 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:22,707 INFO L225 Difference]: With dead ends: 15 [2022-11-25 23:47:22,707 INFO L226 Difference]: Without dead ends: 15 [2022-11-25 23:47:22,707 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=13, Invalid=17, Unknown=0, NotChecked=0, Total=30 [2022-11-25 23:47:22,708 INFO L413 NwaCegarLoop]: 5 mSDtfsCounter, 11 mSDsluCounter, 2 mSDsCounter, 0 mSdLazyCounter, 24 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 11 SdHoareTripleChecker+Valid, 7 SdHoareTripleChecker+Invalid, 26 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 24 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:22,708 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [11 Valid, 7 Invalid, 26 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 24 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-25 23:47:22,709 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 15 states. [2022-11-25 23:47:22,709 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 15 to 15. [2022-11-25 23:47:22,710 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 15 states, 12 states have (on average 1.3333333333333333) internal successors, (16), 14 states have internal predecessors, (16), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:22,710 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 15 states to 15 states and 16 transitions. [2022-11-25 23:47:22,710 INFO L78 Accepts]: Start accepts. Automaton has 15 states and 16 transitions. Word has length 8 [2022-11-25 23:47:22,711 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:22,711 INFO L495 AbstractCegarLoop]: Abstraction has 15 states and 16 transitions. [2022-11-25 23:47:22,711 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 2.0) internal successors, (8), 5 states have internal predecessors, (8), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:22,711 INFO L276 IsEmpty]: Start isEmpty. Operand 15 states and 16 transitions. [2022-11-25 23:47:22,711 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 9 [2022-11-25 23:47:22,712 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:22,712 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1] [2022-11-25 23:47:22,712 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2022-11-25 23:47:22,712 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:22,712 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:22,713 INFO L85 PathProgramCache]: Analyzing trace with hash 1513140690, now seen corresponding path program 1 times [2022-11-25 23:47:22,713 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:22,713 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [574014221] [2022-11-25 23:47:22,713 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:22,713 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:22,727 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:22,947 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:22,947 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:22,948 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [574014221] [2022-11-25 23:47:22,948 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [574014221] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:47:22,948 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1561319058] [2022-11-25 23:47:22,948 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:22,948 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:22,949 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:22,950 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:47:22,975 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-11-25 23:47:23,022 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:23,023 INFO L263 TraceCheckSpWp]: Trace formula consists of 96 conjuncts, 43 conjunts are in the unsatisfiable core [2022-11-25 23:47:23,026 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:47:23,069 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:47:23,076 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:23,641 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:23,641 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:47:23,911 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:23,941 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:23,941 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1561319058] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:47:23,941 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1883036661] [2022-11-25 23:47:23,946 INFO L159 IcfgInterpreter]: Started Sifa with 8 locations of interest [2022-11-25 23:47:23,946 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:47:23,947 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:47:23,947 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:47:23,947 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:47:23,994 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:23,999 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:24,037 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:24,100 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:24,124 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:24,175 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:24,240 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:47:25,578 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '593#(and (not (< |ULTIMATE.start_main_~i~0#1| |ULTIMATE.start_main_~length2~0#1|)) (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (= (select (select |#memory_int| |ULTIMATE.start_main_~nondetString~0#1.base|) (+ (- 1) |ULTIMATE.start_main_~length2~0#1| |ULTIMATE.start_main_~nondetString~0#1.offset|)) 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (= |ULTIMATE.start_main_~nondetArea~0#1.base| |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= (+ |ULTIMATE.start_main_~length2~0#1| |ULTIMATE.start_main_~nondetString~0#1.offset|) (select |#length| |ULTIMATE.start_main_~nondetString~0#1.base|)) (= |ULTIMATE.start_cstpcpy_#in~from#1.offset| |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |#NULL.offset| 0) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (= |ULTIMATE.start_cstpcpy_#in~to#1.offset| |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.offset|) (<= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= 1 (+ |ULTIMATE.start_main_~length2~0#1| |ULTIMATE.start_main_~nondetString~0#1.offset|)) (= |ULTIMATE.start_cstpcpy_#in~from#1.offset| |ULTIMATE.start_cstpcpy_~from#1.offset|) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (= |ULTIMATE.start_cstpcpy_#in~to#1.offset| |ULTIMATE.start_main_~nondetArea~0#1.offset|) (= |ULTIMATE.start_cstpcpy_~to#1.base| |ULTIMATE.start_cstpcpy_#in~to#1.base|) (= |ULTIMATE.start_cstpcpy_#in~from#1.base| |ULTIMATE.start_main_~nondetString~0#1.base|) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |#NULL.offset|) (= |ULTIMATE.start_cstpcpy_~from#1.base| |ULTIMATE.start_cstpcpy_#in~from#1.base|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (= |#NULL.base| 0))' at error location [2022-11-25 23:47:25,578 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:47:25,578 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:47:25,578 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [5, 7, 7] total 19 [2022-11-25 23:47:25,578 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [787119411] [2022-11-25 23:47:25,578 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:47:25,579 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2022-11-25 23:47:25,579 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:25,579 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2022-11-25 23:47:25,580 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=138, Invalid=618, Unknown=0, NotChecked=0, Total=756 [2022-11-25 23:47:25,580 INFO L87 Difference]: Start difference. First operand 15 states and 16 transitions. Second operand has 21 states, 20 states have (on average 1.2) internal successors, (24), 20 states have internal predecessors, (24), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:26,270 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:26,270 INFO L93 Difference]: Finished difference Result 38 states and 40 transitions. [2022-11-25 23:47:26,270 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-11-25 23:47:26,270 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 20 states have (on average 1.2) internal successors, (24), 20 states have internal predecessors, (24), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 8 [2022-11-25 23:47:26,270 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:26,271 INFO L225 Difference]: With dead ends: 38 [2022-11-25 23:47:26,271 INFO L226 Difference]: Without dead ends: 38 [2022-11-25 23:47:26,271 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 36 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 35 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 330 ImplicationChecksByTransitivity, 2.4s TimeCoverageRelationStatistics Valid=275, Invalid=1057, Unknown=0, NotChecked=0, Total=1332 [2022-11-25 23:47:26,272 INFO L413 NwaCegarLoop]: 2 mSDtfsCounter, 135 mSDsluCounter, 20 mSDsCounter, 0 mSdLazyCounter, 106 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 135 SdHoareTripleChecker+Valid, 22 SdHoareTripleChecker+Invalid, 111 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 106 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:26,272 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [135 Valid, 22 Invalid, 111 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 106 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-25 23:47:26,273 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 38 states. [2022-11-25 23:47:26,274 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 38 to 16. [2022-11-25 23:47:26,275 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 16 states, 13 states have (on average 1.3076923076923077) internal successors, (17), 15 states have internal predecessors, (17), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:26,275 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 16 states to 16 states and 17 transitions. [2022-11-25 23:47:26,275 INFO L78 Accepts]: Start accepts. Automaton has 16 states and 17 transitions. Word has length 8 [2022-11-25 23:47:26,275 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:26,275 INFO L495 AbstractCegarLoop]: Abstraction has 16 states and 17 transitions. [2022-11-25 23:47:26,276 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 20 states have (on average 1.2) internal successors, (24), 20 states have internal predecessors, (24), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:26,276 INFO L276 IsEmpty]: Start isEmpty. Operand 16 states and 17 transitions. [2022-11-25 23:47:26,276 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 11 [2022-11-25 23:47:26,276 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:26,276 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-25 23:47:26,287 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-11-25 23:47:26,482 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:26,483 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:26,483 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:26,483 INFO L85 PathProgramCache]: Analyzing trace with hash -1865709960, now seen corresponding path program 1 times [2022-11-25 23:47:26,483 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:26,483 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1194526761] [2022-11-25 23:47:26,483 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:26,484 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:26,498 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:26,696 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:26,696 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:26,696 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1194526761] [2022-11-25 23:47:26,696 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1194526761] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:47:26,697 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [712625933] [2022-11-25 23:47:26,697 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:26,697 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:26,697 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:26,698 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:47:26,718 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2022-11-25 23:47:26,774 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:26,775 INFO L263 TraceCheckSpWp]: Trace formula consists of 113 conjuncts, 23 conjunts are in the unsatisfiable core [2022-11-25 23:47:26,776 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:47:26,860 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:26,904 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:26,907 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:47:26,907 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 18 treesize of output 10 [2022-11-25 23:47:26,913 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:26,913 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:47:26,945 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 11 [2022-11-25 23:47:26,949 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 22 treesize of output 20 [2022-11-25 23:47:27,118 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:27,118 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [712625933] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:47:27,118 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [52187195] [2022-11-25 23:47:27,120 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:47:27,120 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:47:27,120 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:47:27,121 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:47:27,121 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:47:27,157 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:27,163 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:27,197 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:47:27,250 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:27,278 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:27,354 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:27,401 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:27,434 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:47:27,434 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:47:27,531 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:27,532 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:27,535 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:27,537 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:27,568 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:47:27,569 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 50 treesize of output 54 [2022-11-25 23:47:27,641 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:47:27,641 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:47:27,732 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:47:29,417 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '743#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:47:29,417 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:47:29,417 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:47:29,417 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 8, 8] total 17 [2022-11-25 23:47:29,418 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1375037048] [2022-11-25 23:47:29,418 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:47:29,418 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 17 states [2022-11-25 23:47:29,418 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:29,419 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 17 interpolants. [2022-11-25 23:47:29,419 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=75, Invalid=525, Unknown=0, NotChecked=0, Total=600 [2022-11-25 23:47:29,419 INFO L87 Difference]: Start difference. First operand 16 states and 17 transitions. Second operand has 17 states, 17 states have (on average 1.2941176470588236) internal successors, (22), 17 states have internal predecessors, (22), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:29,730 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:29,730 INFO L93 Difference]: Finished difference Result 26 states and 27 transitions. [2022-11-25 23:47:29,731 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-11-25 23:47:29,731 INFO L78 Accepts]: Start accepts. Automaton has has 17 states, 17 states have (on average 1.2941176470588236) internal successors, (22), 17 states have internal predecessors, (22), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 10 [2022-11-25 23:47:29,731 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:29,731 INFO L225 Difference]: With dead ends: 26 [2022-11-25 23:47:29,731 INFO L226 Difference]: Without dead ends: 26 [2022-11-25 23:47:29,732 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 41 GetRequests, 12 SyntacticMatches, 0 SemanticMatches, 29 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 176 ImplicationChecksByTransitivity, 2.1s TimeCoverageRelationStatistics Valid=141, Invalid=789, Unknown=0, NotChecked=0, Total=930 [2022-11-25 23:47:29,733 INFO L413 NwaCegarLoop]: 4 mSDtfsCounter, 52 mSDsluCounter, 29 mSDsCounter, 0 mSdLazyCounter, 75 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 52 SdHoareTripleChecker+Valid, 33 SdHoareTripleChecker+Invalid, 80 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 75 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:29,733 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [52 Valid, 33 Invalid, 80 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 75 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-25 23:47:29,733 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 26 states. [2022-11-25 23:47:29,734 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 26 to 22. [2022-11-25 23:47:29,735 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 22 states, 19 states have (on average 1.263157894736842) internal successors, (24), 21 states have internal predecessors, (24), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:29,735 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 22 states to 22 states and 24 transitions. [2022-11-25 23:47:29,735 INFO L78 Accepts]: Start accepts. Automaton has 22 states and 24 transitions. Word has length 10 [2022-11-25 23:47:29,735 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:29,735 INFO L495 AbstractCegarLoop]: Abstraction has 22 states and 24 transitions. [2022-11-25 23:47:29,735 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 17 states, 17 states have (on average 1.2941176470588236) internal successors, (22), 17 states have internal predecessors, (22), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:29,736 INFO L276 IsEmpty]: Start isEmpty. Operand 22 states and 24 transitions. [2022-11-25 23:47:29,736 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 12 [2022-11-25 23:47:29,736 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:29,736 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-25 23:47:29,746 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2022-11-25 23:47:29,942 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2022-11-25 23:47:29,943 INFO L420 AbstractCegarLoop]: === Iteration 12 === Targeting ULTIMATE.startErr8ASSERT_VIOLATIONMEMORY_LEAK === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:29,943 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:29,943 INFO L85 PathProgramCache]: Analyzing trace with hash -2002450371, now seen corresponding path program 1 times [2022-11-25 23:47:29,943 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:29,943 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [430975507] [2022-11-25 23:47:29,943 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:29,943 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:29,956 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:30,072 INFO L134 CoverageAnalysis]: Checked inductivity of 1 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-11-25 23:47:30,072 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:30,072 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [430975507] [2022-11-25 23:47:30,072 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [430975507] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-25 23:47:30,072 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-25 23:47:30,072 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-25 23:47:30,073 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1150176495] [2022-11-25 23:47:30,073 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-25 23:47:30,074 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-25 23:47:30,074 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:30,074 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-25 23:47:30,075 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-25 23:47:30,075 INFO L87 Difference]: Start difference. First operand 22 states and 24 transitions. Second operand has 4 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:30,097 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:30,097 INFO L93 Difference]: Finished difference Result 21 states and 23 transitions. [2022-11-25 23:47:30,097 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-25 23:47:30,097 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 11 [2022-11-25 23:47:30,098 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:30,099 INFO L225 Difference]: With dead ends: 21 [2022-11-25 23:47:30,100 INFO L226 Difference]: Without dead ends: 15 [2022-11-25 23:47:30,100 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-25 23:47:30,101 INFO L413 NwaCegarLoop]: 4 mSDtfsCounter, 3 mSDsluCounter, 4 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 8 SdHoareTripleChecker+Invalid, 18 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:30,101 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 8 Invalid, 18 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-25 23:47:30,102 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 15 states. [2022-11-25 23:47:30,104 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 15 to 15. [2022-11-25 23:47:30,105 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 15 states, 13 states have (on average 1.2307692307692308) internal successors, (16), 14 states have internal predecessors, (16), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:30,105 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 15 states to 15 states and 16 transitions. [2022-11-25 23:47:30,105 INFO L78 Accepts]: Start accepts. Automaton has 15 states and 16 transitions. Word has length 11 [2022-11-25 23:47:30,105 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:30,105 INFO L495 AbstractCegarLoop]: Abstraction has 15 states and 16 transitions. [2022-11-25 23:47:30,106 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:30,106 INFO L276 IsEmpty]: Start isEmpty. Operand 15 states and 16 transitions. [2022-11-25 23:47:30,107 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 13 [2022-11-25 23:47:30,107 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:30,107 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-25 23:47:30,107 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2022-11-25 23:47:30,107 INFO L420 AbstractCegarLoop]: === Iteration 13 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:30,108 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:30,108 INFO L85 PathProgramCache]: Analyzing trace with hash -346987898, now seen corresponding path program 2 times [2022-11-25 23:47:30,108 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:30,108 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1434759432] [2022-11-25 23:47:30,108 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:30,108 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:30,125 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:30,348 INFO L134 CoverageAnalysis]: Checked inductivity of 5 backedges. 0 proven. 5 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:30,349 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:30,349 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1434759432] [2022-11-25 23:47:30,349 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1434759432] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:47:30,349 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2104633581] [2022-11-25 23:47:30,349 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-25 23:47:30,350 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:30,350 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:30,351 INFO L229 MonitoredProcess]: Starting monitored process 7 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:47:30,378 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2022-11-25 23:47:30,437 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2022-11-25 23:47:30,438 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:47:30,439 INFO L263 TraceCheckSpWp]: Trace formula consists of 113 conjuncts, 25 conjunts are in the unsatisfiable core [2022-11-25 23:47:30,442 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:47:30,476 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:30,523 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:47:30,523 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 18 treesize of output 19 [2022-11-25 23:47:30,608 INFO L134 CoverageAnalysis]: Checked inductivity of 5 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2022-11-25 23:47:30,608 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:47:30,717 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 11 [2022-11-25 23:47:30,723 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 22 treesize of output 20 [2022-11-25 23:47:30,731 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 31 treesize of output 23 [2022-11-25 23:47:30,757 INFO L134 CoverageAnalysis]: Checked inductivity of 5 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2022-11-25 23:47:30,757 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2104633581] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:47:30,757 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1734575772] [2022-11-25 23:47:30,764 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:47:30,764 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:47:30,764 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:47:30,764 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:47:30,764 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:47:30,801 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:30,809 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:30,853 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:47:30,901 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:30,930 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:31,012 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:31,067 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:31,092 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:47:31,093 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:47:31,161 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:31,165 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:31,166 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:31,168 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:31,200 INFO L321 Elim1Store]: treesize reduction 95, result has 15.9 percent of original size [2022-11-25 23:47:31,200 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 54 treesize of output 56 [2022-11-25 23:47:31,279 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:47:31,280 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:47:31,368 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:47:33,059 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '931#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:47:33,059 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:47:33,060 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:47:33,060 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [6, 5, 5] total 13 [2022-11-25 23:47:33,060 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2698974] [2022-11-25 23:47:33,060 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:47:33,061 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-11-25 23:47:33,061 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:33,061 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-11-25 23:47:33,062 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=73, Invalid=389, Unknown=0, NotChecked=0, Total=462 [2022-11-25 23:47:33,062 INFO L87 Difference]: Start difference. First operand 15 states and 16 transitions. Second operand has 14 states, 13 states have (on average 2.0) internal successors, (26), 14 states have internal predecessors, (26), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:33,315 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:33,315 INFO L93 Difference]: Finished difference Result 21 states and 22 transitions. [2022-11-25 23:47:33,316 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-11-25 23:47:33,316 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 13 states have (on average 2.0) internal successors, (26), 14 states have internal predecessors, (26), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 12 [2022-11-25 23:47:33,316 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:33,316 INFO L225 Difference]: With dead ends: 21 [2022-11-25 23:47:33,317 INFO L226 Difference]: Without dead ends: 21 [2022-11-25 23:47:33,317 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 45 GetRequests, 19 SyntacticMatches, 1 SemanticMatches, 25 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 109 ImplicationChecksByTransitivity, 2.0s TimeCoverageRelationStatistics Valid=121, Invalid=581, Unknown=0, NotChecked=0, Total=702 [2022-11-25 23:47:33,318 INFO L413 NwaCegarLoop]: 1 mSDtfsCounter, 50 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 90 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 50 SdHoareTripleChecker+Valid, 1 SdHoareTripleChecker+Invalid, 92 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 90 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:33,318 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [50 Valid, 1 Invalid, 92 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 90 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-25 23:47:33,318 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 21 states. [2022-11-25 23:47:33,319 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 21 to 17. [2022-11-25 23:47:33,319 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 17 states, 15 states have (on average 1.2) internal successors, (18), 16 states have internal predecessors, (18), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:33,320 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 17 states to 17 states and 18 transitions. [2022-11-25 23:47:33,320 INFO L78 Accepts]: Start accepts. Automaton has 17 states and 18 transitions. Word has length 12 [2022-11-25 23:47:33,320 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:33,320 INFO L495 AbstractCegarLoop]: Abstraction has 17 states and 18 transitions. [2022-11-25 23:47:33,320 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 13 states have (on average 2.0) internal successors, (26), 14 states have internal predecessors, (26), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:33,320 INFO L276 IsEmpty]: Start isEmpty. Operand 17 states and 18 transitions. [2022-11-25 23:47:33,321 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 14 [2022-11-25 23:47:33,321 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:33,321 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 1, 1, 1, 1, 1, 1, 1] [2022-11-25 23:47:33,332 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2022-11-25 23:47:33,521 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 7 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2022-11-25 23:47:33,522 INFO L420 AbstractCegarLoop]: === Iteration 14 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:33,522 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:33,522 INFO L85 PathProgramCache]: Analyzing trace with hash 2128277037, now seen corresponding path program 1 times [2022-11-25 23:47:33,522 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:33,522 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [457389492] [2022-11-25 23:47:33,523 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:33,523 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:33,539 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:33,893 INFO L134 CoverageAnalysis]: Checked inductivity of 6 backedges. 0 proven. 6 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:33,893 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:33,893 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [457389492] [2022-11-25 23:47:33,893 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [457389492] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:47:33,893 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1155839114] [2022-11-25 23:47:33,894 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:33,894 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:33,894 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:33,899 INFO L229 MonitoredProcess]: Starting monitored process 8 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:47:33,922 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2022-11-25 23:47:33,986 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:33,988 INFO L263 TraceCheckSpWp]: Trace formula consists of 132 conjuncts, 32 conjunts are in the unsatisfiable core [2022-11-25 23:47:33,990 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:47:34,036 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:34,037 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 9 treesize of output 11 [2022-11-25 23:47:34,041 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:47:34,212 INFO L134 CoverageAnalysis]: Checked inductivity of 6 backedges. 1 proven. 5 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:34,212 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:47:34,438 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:34,469 INFO L134 CoverageAnalysis]: Checked inductivity of 6 backedges. 4 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:34,469 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1155839114] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:47:34,469 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1074170728] [2022-11-25 23:47:34,471 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:47:34,472 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:47:34,472 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:47:34,472 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:47:34,472 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:47:34,508 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:34,511 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:34,556 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:34,597 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:34,624 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:34,689 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:34,736 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:34,769 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:47:34,770 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:47:34,894 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:34,895 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:34,897 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:34,900 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:34,931 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:47:34,932 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 50 treesize of output 54 [2022-11-25 23:47:35,005 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:47:35,005 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:47:35,086 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:47:36,883 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '1081#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:47:36,884 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:47:36,884 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:47:36,884 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 7, 7] total 20 [2022-11-25 23:47:36,884 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1819472697] [2022-11-25 23:47:36,884 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:47:36,885 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2022-11-25 23:47:36,885 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:36,885 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2022-11-25 23:47:36,886 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=119, Invalid=751, Unknown=0, NotChecked=0, Total=870 [2022-11-25 23:47:36,886 INFO L87 Difference]: Start difference. First operand 17 states and 18 transitions. Second operand has 22 states, 21 states have (on average 1.8571428571428572) internal successors, (39), 21 states have internal predecessors, (39), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:37,364 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:37,364 INFO L93 Difference]: Finished difference Result 19 states and 20 transitions. [2022-11-25 23:47:37,364 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-11-25 23:47:37,365 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 21 states have (on average 1.8571428571428572) internal successors, (39), 21 states have internal predecessors, (39), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 13 [2022-11-25 23:47:37,365 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:37,365 INFO L225 Difference]: With dead ends: 19 [2022-11-25 23:47:37,365 INFO L226 Difference]: Without dead ends: 19 [2022-11-25 23:47:37,366 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 50 GetRequests, 15 SyntacticMatches, 1 SemanticMatches, 34 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 222 ImplicationChecksByTransitivity, 2.5s TimeCoverageRelationStatistics Valid=208, Invalid=1052, Unknown=0, NotChecked=0, Total=1260 [2022-11-25 23:47:37,367 INFO L413 NwaCegarLoop]: 0 mSDtfsCounter, 86 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 145 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 86 SdHoareTripleChecker+Valid, 0 SdHoareTripleChecker+Invalid, 150 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 145 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:37,367 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [86 Valid, 0 Invalid, 150 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 145 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-25 23:47:37,367 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 19 states. [2022-11-25 23:47:37,368 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 19 to 18. [2022-11-25 23:47:37,369 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 18 states, 16 states have (on average 1.1875) internal successors, (19), 17 states have internal predecessors, (19), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:37,369 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18 states to 18 states and 19 transitions. [2022-11-25 23:47:37,369 INFO L78 Accepts]: Start accepts. Automaton has 18 states and 19 transitions. Word has length 13 [2022-11-25 23:47:37,369 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:37,370 INFO L495 AbstractCegarLoop]: Abstraction has 18 states and 19 transitions. [2022-11-25 23:47:37,370 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 21 states have (on average 1.8571428571428572) internal successors, (39), 21 states have internal predecessors, (39), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:37,370 INFO L276 IsEmpty]: Start isEmpty. Operand 18 states and 19 transitions. [2022-11-25 23:47:37,370 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 16 [2022-11-25 23:47:37,370 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:37,370 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 1, 1, 1, 1, 1] [2022-11-25 23:47:37,379 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Forceful destruction successful, exit code 0 [2022-11-25 23:47:37,571 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 8 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable13 [2022-11-25 23:47:37,571 INFO L420 AbstractCegarLoop]: === Iteration 15 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:37,572 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:37,572 INFO L85 PathProgramCache]: Analyzing trace with hash 869799955, now seen corresponding path program 3 times [2022-11-25 23:47:37,572 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:37,572 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [436405356] [2022-11-25 23:47:37,572 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:37,572 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:37,592 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:38,022 INFO L134 CoverageAnalysis]: Checked inductivity of 9 backedges. 2 proven. 7 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:38,023 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:38,023 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [436405356] [2022-11-25 23:47:38,023 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [436405356] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:47:38,024 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [592150995] [2022-11-25 23:47:38,024 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-25 23:47:38,024 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:38,024 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:38,027 INFO L229 MonitoredProcess]: Starting monitored process 9 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:47:38,059 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2022-11-25 23:47:38,136 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-25 23:47:38,136 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:47:38,138 INFO L263 TraceCheckSpWp]: Trace formula consists of 149 conjuncts, 48 conjunts are in the unsatisfiable core [2022-11-25 23:47:38,140 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:47:38,287 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:47:38,387 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:38,397 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-25 23:47:38,397 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 1 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-25 23:47:38,506 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:38,509 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:47:38,509 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 17 treesize of output 10 [2022-11-25 23:47:38,514 INFO L134 CoverageAnalysis]: Checked inductivity of 9 backedges. 2 proven. 7 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:38,514 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:47:38,654 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 174 treesize of output 162 [2022-11-25 23:47:38,663 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:47:38,663 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 163 treesize of output 147 [2022-11-25 23:47:38,912 INFO L134 CoverageAnalysis]: Checked inductivity of 9 backedges. 2 proven. 7 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:38,913 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [592150995] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:47:38,913 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [567446951] [2022-11-25 23:47:38,914 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:47:38,914 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:47:38,915 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:47:38,915 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:47:38,915 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:47:38,954 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:38,960 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:39,001 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:47:39,053 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:39,076 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:39,127 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:39,198 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:39,222 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:47:39,223 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:47:39,336 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:39,337 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:39,339 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:39,342 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:39,373 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:47:39,374 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 52 treesize of output 54 [2022-11-25 23:47:39,453 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:47:39,454 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:47:39,542 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:47:41,215 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '1250#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:47:41,216 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:47:41,216 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:47:41,216 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 12, 12] total 28 [2022-11-25 23:47:41,216 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [799039294] [2022-11-25 23:47:41,216 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:47:41,217 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 28 states [2022-11-25 23:47:41,217 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:41,218 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2022-11-25 23:47:41,218 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=118, Invalid=1142, Unknown=0, NotChecked=0, Total=1260 [2022-11-25 23:47:41,218 INFO L87 Difference]: Start difference. First operand 18 states and 19 transitions. Second operand has 28 states, 28 states have (on average 1.2857142857142858) internal successors, (36), 28 states have internal predecessors, (36), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:41,965 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:41,965 INFO L93 Difference]: Finished difference Result 28 states and 29 transitions. [2022-11-25 23:47:41,966 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2022-11-25 23:47:41,966 INFO L78 Accepts]: Start accepts. Automaton has has 28 states, 28 states have (on average 1.2857142857142858) internal successors, (36), 28 states have internal predecessors, (36), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 15 [2022-11-25 23:47:41,966 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:41,966 INFO L225 Difference]: With dead ends: 28 [2022-11-25 23:47:41,966 INFO L226 Difference]: Without dead ends: 21 [2022-11-25 23:47:41,967 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 66 GetRequests, 20 SyntacticMatches, 0 SemanticMatches, 46 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 552 ImplicationChecksByTransitivity, 2.8s TimeCoverageRelationStatistics Valid=271, Invalid=1985, Unknown=0, NotChecked=0, Total=2256 [2022-11-25 23:47:41,968 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 35 mSDsluCounter, 42 mSDsCounter, 0 mSdLazyCounter, 226 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 35 SdHoareTripleChecker+Valid, 45 SdHoareTripleChecker+Invalid, 237 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 226 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:41,968 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [35 Valid, 45 Invalid, 237 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 226 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-25 23:47:41,969 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 21 states. [2022-11-25 23:47:41,970 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 21 to 20. [2022-11-25 23:47:41,970 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 20 states, 18 states have (on average 1.1666666666666667) internal successors, (21), 19 states have internal predecessors, (21), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:41,970 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 20 states to 20 states and 21 transitions. [2022-11-25 23:47:41,971 INFO L78 Accepts]: Start accepts. Automaton has 20 states and 21 transitions. Word has length 15 [2022-11-25 23:47:41,971 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:41,971 INFO L495 AbstractCegarLoop]: Abstraction has 20 states and 21 transitions. [2022-11-25 23:47:41,971 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 28 states, 28 states have (on average 1.2857142857142858) internal successors, (36), 28 states have internal predecessors, (36), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:41,971 INFO L276 IsEmpty]: Start isEmpty. Operand 20 states and 21 transitions. [2022-11-25 23:47:41,972 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2022-11-25 23:47:41,972 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:41,972 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 2, 2, 2, 1, 1, 1, 1, 1] [2022-11-25 23:47:41,986 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Forceful destruction successful, exit code 0 [2022-11-25 23:47:42,178 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 9 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable14 [2022-11-25 23:47:42,178 INFO L420 AbstractCegarLoop]: === Iteration 16 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:42,179 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:42,179 INFO L85 PathProgramCache]: Analyzing trace with hash 645895365, now seen corresponding path program 4 times [2022-11-25 23:47:42,179 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:42,179 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [5243162] [2022-11-25 23:47:42,179 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:42,179 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:42,198 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:42,485 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 2 proven. 12 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:42,485 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:42,486 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [5243162] [2022-11-25 23:47:42,486 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [5243162] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:47:42,486 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1966359073] [2022-11-25 23:47:42,486 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-25 23:47:42,486 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:42,486 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:42,491 INFO L229 MonitoredProcess]: Starting monitored process 10 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:47:42,514 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2022-11-25 23:47:42,586 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:42,588 INFO L263 TraceCheckSpWp]: Trace formula consists of 162 conjuncts, 22 conjunts are in the unsatisfiable core [2022-11-25 23:47:42,589 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:47:42,708 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 6 proven. 8 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:42,708 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:47:42,861 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 5 [2022-11-25 23:47:42,899 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 6 proven. 8 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:42,900 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1966359073] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:47:42,900 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2008911581] [2022-11-25 23:47:42,902 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:47:42,902 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:47:42,902 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:47:42,902 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:47:42,903 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:47:42,936 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:42,940 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:42,977 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:47:43,021 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:43,046 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:43,098 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:43,152 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:43,203 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:47:43,203 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:47:43,284 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:43,288 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:43,289 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:43,290 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:43,323 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:47:43,323 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 52 treesize of output 54 [2022-11-25 23:47:43,404 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:47:43,405 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:47:43,497 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:47:45,178 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '1446#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:47:45,179 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:47:45,179 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:47:45,179 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8, 9, 9] total 19 [2022-11-25 23:47:45,179 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [79438237] [2022-11-25 23:47:45,179 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:47:45,179 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2022-11-25 23:47:45,179 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:45,180 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2022-11-25 23:47:45,182 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=107, Invalid=649, Unknown=0, NotChecked=0, Total=756 [2022-11-25 23:47:45,183 INFO L87 Difference]: Start difference. First operand 20 states and 21 transitions. Second operand has 20 states, 19 states have (on average 2.0526315789473686) internal successors, (39), 20 states have internal predecessors, (39), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:45,420 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:45,420 INFO L93 Difference]: Finished difference Result 26 states and 27 transitions. [2022-11-25 23:47:45,420 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2022-11-25 23:47:45,421 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 19 states have (on average 2.0526315789473686) internal successors, (39), 20 states have internal predecessors, (39), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 17 [2022-11-25 23:47:45,421 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:45,421 INFO L225 Difference]: With dead ends: 26 [2022-11-25 23:47:45,421 INFO L226 Difference]: Without dead ends: 26 [2022-11-25 23:47:45,422 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 62 GetRequests, 28 SyntacticMatches, 3 SemanticMatches, 31 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 284 ImplicationChecksByTransitivity, 2.1s TimeCoverageRelationStatistics Valid=177, Invalid=879, Unknown=0, NotChecked=0, Total=1056 [2022-11-25 23:47:45,422 INFO L413 NwaCegarLoop]: 1 mSDtfsCounter, 110 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 154 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 110 SdHoareTripleChecker+Valid, 1 SdHoareTripleChecker+Invalid, 155 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 154 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:45,423 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [110 Valid, 1 Invalid, 155 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 154 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-25 23:47:45,423 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 26 states. [2022-11-25 23:47:45,424 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 26 to 22. [2022-11-25 23:47:45,425 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 22 states, 20 states have (on average 1.15) internal successors, (23), 21 states have internal predecessors, (23), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:45,425 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 22 states to 22 states and 23 transitions. [2022-11-25 23:47:45,425 INFO L78 Accepts]: Start accepts. Automaton has 22 states and 23 transitions. Word has length 17 [2022-11-25 23:47:45,425 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:45,425 INFO L495 AbstractCegarLoop]: Abstraction has 22 states and 23 transitions. [2022-11-25 23:47:45,426 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 19 states have (on average 2.0526315789473686) internal successors, (39), 20 states have internal predecessors, (39), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:45,426 INFO L276 IsEmpty]: Start isEmpty. Operand 22 states and 23 transitions. [2022-11-25 23:47:45,426 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2022-11-25 23:47:45,426 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:45,426 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 2, 2, 1, 1, 1, 1, 1] [2022-11-25 23:47:45,433 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Forceful destruction successful, exit code 0 [2022-11-25 23:47:45,632 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 10 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable15 [2022-11-25 23:47:45,632 INFO L420 AbstractCegarLoop]: === Iteration 17 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:45,632 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:45,633 INFO L85 PathProgramCache]: Analyzing trace with hash -1452080178, now seen corresponding path program 2 times [2022-11-25 23:47:45,633 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:45,633 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [788352334] [2022-11-25 23:47:45,633 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:45,633 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:45,664 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:46,077 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 1 proven. 15 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:46,077 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:46,077 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [788352334] [2022-11-25 23:47:46,078 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [788352334] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:47:46,078 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2137436385] [2022-11-25 23:47:46,078 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-25 23:47:46,078 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:46,078 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:46,079 INFO L229 MonitoredProcess]: Starting monitored process 11 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:47:46,112 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Waiting until timeout for monitored process [2022-11-25 23:47:46,192 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 3 check-sat command(s) [2022-11-25 23:47:46,192 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:47:46,194 INFO L263 TraceCheckSpWp]: Trace formula consists of 155 conjuncts, 66 conjunts are in the unsatisfiable core [2022-11-25 23:47:46,197 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:47:46,250 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:47:46,259 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 9 treesize of output 11 [2022-11-25 23:47:46,459 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-25 23:47:46,641 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 26 treesize of output 26 [2022-11-25 23:47:46,782 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:46,801 INFO L321 Elim1Store]: treesize reduction 4, result has 85.2 percent of original size [2022-11-25 23:47:46,802 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 2 case distinctions, treesize of input 30 treesize of output 33 [2022-11-25 23:47:47,231 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 0 proven. 7 refuted. 0 times theorem prover too weak. 9 trivial. 0 not checked. [2022-11-25 23:47:47,231 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:47:47,712 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:47:47,713 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 37 treesize of output 36 [2022-11-25 23:47:47,737 INFO L321 Elim1Store]: treesize reduction 17, result has 54.1 percent of original size [2022-11-25 23:47:47,737 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 31 [2022-11-25 23:47:47,744 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:47,752 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:47:47,752 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 1 case distinctions, treesize of input 44 treesize of output 35 [2022-11-25 23:47:47,757 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:47:48,064 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:48,073 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:47:48,123 INFO L134 CoverageAnalysis]: Checked inductivity of 16 backedges. 0 proven. 7 refuted. 0 times theorem prover too weak. 9 trivial. 0 not checked. [2022-11-25 23:47:48,123 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2137436385] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:47:48,123 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1659416544] [2022-11-25 23:47:48,124 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:47:48,125 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:47:48,125 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:47:48,125 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:47:48,125 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:47:48,153 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:48,157 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:48,201 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:47:48,243 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:48,265 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:48,319 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:48,374 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:48,397 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:47:48,397 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:47:48,466 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:48,470 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:48,471 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:48,472 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:48,474 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:48,502 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:47:48,503 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 1 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 50 treesize of output 54 [2022-11-25 23:47:48,573 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:47:48,573 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:47:48,646 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:47:50,711 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '1644#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:47:50,711 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:47:50,711 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:47:50,711 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 9, 10] total 28 [2022-11-25 23:47:50,711 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [532511207] [2022-11-25 23:47:50,711 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:47:50,712 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 30 states [2022-11-25 23:47:50,712 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:50,713 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 30 interpolants. [2022-11-25 23:47:50,713 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=165, Invalid=1240, Unknown=1, NotChecked=0, Total=1406 [2022-11-25 23:47:50,713 INFO L87 Difference]: Start difference. First operand 22 states and 23 transitions. Second operand has 30 states, 29 states have (on average 1.5862068965517242) internal successors, (46), 29 states have internal predecessors, (46), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:53,786 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:53,787 INFO L93 Difference]: Finished difference Result 35 states and 36 transitions. [2022-11-25 23:47:53,791 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2022-11-25 23:47:53,791 INFO L78 Accepts]: Start accepts. Automaton has has 30 states, 29 states have (on average 1.5862068965517242) internal successors, (46), 29 states have internal predecessors, (46), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 18 [2022-11-25 23:47:53,791 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:53,792 INFO L225 Difference]: With dead ends: 35 [2022-11-25 23:47:53,792 INFO L226 Difference]: Without dead ends: 35 [2022-11-25 23:47:53,793 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 77 GetRequests, 25 SyntacticMatches, 0 SemanticMatches, 52 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 484 ImplicationChecksByTransitivity, 5.8s TimeCoverageRelationStatistics Valid=499, Invalid=2362, Unknown=1, NotChecked=0, Total=2862 [2022-11-25 23:47:53,793 INFO L413 NwaCegarLoop]: 0 mSDtfsCounter, 232 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 261 mSolverCounterSat, 17 mSolverCounterUnsat, 3 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 232 SdHoareTripleChecker+Valid, 0 SdHoareTripleChecker+Invalid, 281 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 17 IncrementalHoareTripleChecker+Valid, 261 IncrementalHoareTripleChecker+Invalid, 3 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:53,793 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [232 Valid, 0 Invalid, 281 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [17 Valid, 261 Invalid, 3 Unknown, 0 Unchecked, 0.3s Time] [2022-11-25 23:47:53,794 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 35 states. [2022-11-25 23:47:53,795 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 35 to 32. [2022-11-25 23:47:53,796 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 32 states, 30 states have (on average 1.2) internal successors, (36), 31 states have internal predecessors, (36), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:53,796 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 32 states to 32 states and 36 transitions. [2022-11-25 23:47:53,796 INFO L78 Accepts]: Start accepts. Automaton has 32 states and 36 transitions. Word has length 18 [2022-11-25 23:47:53,796 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:53,797 INFO L495 AbstractCegarLoop]: Abstraction has 32 states and 36 transitions. [2022-11-25 23:47:53,797 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 30 states, 29 states have (on average 1.5862068965517242) internal successors, (46), 29 states have internal predecessors, (46), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:53,797 INFO L276 IsEmpty]: Start isEmpty. Operand 32 states and 36 transitions. [2022-11-25 23:47:53,797 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2022-11-25 23:47:53,798 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:53,798 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 1, 1, 1, 1, 1] [2022-11-25 23:47:53,804 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Forceful destruction successful, exit code 0 [2022-11-25 23:47:54,003 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 11 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable16 [2022-11-25 23:47:54,004 INFO L420 AbstractCegarLoop]: === Iteration 18 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:54,004 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:54,004 INFO L85 PathProgramCache]: Analyzing trace with hash 415320436, now seen corresponding path program 5 times [2022-11-25 23:47:54,004 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:54,004 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1954864743] [2022-11-25 23:47:54,004 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:54,005 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:54,023 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:54,554 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 3 proven. 18 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:54,555 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:54,555 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1954864743] [2022-11-25 23:47:54,555 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1954864743] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:47:54,555 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1484043500] [2022-11-25 23:47:54,555 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-25 23:47:54,555 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:54,555 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:54,557 INFO L229 MonitoredProcess]: Starting monitored process 12 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:47:54,582 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Waiting until timeout for monitored process [2022-11-25 23:47:54,709 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 4 check-sat command(s) [2022-11-25 23:47:54,710 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:47:54,712 INFO L263 TraceCheckSpWp]: Trace formula consists of 185 conjuncts, 56 conjunts are in the unsatisfiable core [2022-11-25 23:47:54,715 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:47:54,724 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:47:54,865 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:47:54,883 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 16 [2022-11-25 23:47:54,928 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 16 [2022-11-25 23:47:54,982 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 7 [2022-11-25 23:47:54,996 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 3 proven. 18 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:54,997 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:47:55,024 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_350 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_350) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 1)) 0)) is different from false [2022-11-25 23:47:55,033 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_350 (Array Int Int))) (= 0 (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_350) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 2 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)))) is different from false [2022-11-25 23:47:55,049 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:47:55,049 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-25 23:47:55,057 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:47:55,057 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-25 23:47:55,067 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:47:55,273 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 3 proven. 10 refuted. 0 times theorem prover too weak. 0 trivial. 8 not checked. [2022-11-25 23:47:55,273 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1484043500] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:47:55,273 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [799111603] [2022-11-25 23:47:55,275 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:47:55,275 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:47:55,275 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:47:55,276 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:47:55,276 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:47:55,317 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:55,321 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:55,349 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:47:55,403 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:55,426 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:55,486 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:55,532 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:55,568 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:47:55,568 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:47:55,637 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:55,640 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:55,642 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:55,643 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:55,673 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:47:55,674 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 50 treesize of output 54 [2022-11-25 23:47:55,755 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:47:55,755 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:47:55,846 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:47:57,582 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '1892#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:47:57,582 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:47:57,583 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:47:57,583 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 13, 13] total 27 [2022-11-25 23:47:57,583 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [885549056] [2022-11-25 23:47:57,583 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:47:57,583 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 27 states [2022-11-25 23:47:57,583 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:47:57,584 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 27 interpolants. [2022-11-25 23:47:57,584 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=111, Invalid=951, Unknown=2, NotChecked=126, Total=1190 [2022-11-25 23:47:57,585 INFO L87 Difference]: Start difference. First operand 32 states and 36 transitions. Second operand has 27 states, 27 states have (on average 1.6296296296296295) internal successors, (44), 27 states have internal predecessors, (44), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:57,966 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:47:57,966 INFO L93 Difference]: Finished difference Result 45 states and 49 transitions. [2022-11-25 23:47:57,967 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2022-11-25 23:47:57,967 INFO L78 Accepts]: Start accepts. Automaton has has 27 states, 27 states have (on average 1.6296296296296295) internal successors, (44), 27 states have internal predecessors, (44), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 20 [2022-11-25 23:47:57,967 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:47:57,968 INFO L225 Difference]: With dead ends: 45 [2022-11-25 23:47:57,969 INFO L226 Difference]: Without dead ends: 35 [2022-11-25 23:47:57,969 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 78 GetRequests, 37 SyntacticMatches, 3 SemanticMatches, 38 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 360 ImplicationChecksByTransitivity, 2.3s TimeCoverageRelationStatistics Valid=148, Invalid=1264, Unknown=2, NotChecked=146, Total=1560 [2022-11-25 23:47:57,970 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 13 mSDsluCounter, 47 mSDsCounter, 0 mSdLazyCounter, 284 mSolverCounterSat, 6 mSolverCounterUnsat, 5 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 13 SdHoareTripleChecker+Valid, 50 SdHoareTripleChecker+Invalid, 339 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 284 IncrementalHoareTripleChecker+Invalid, 5 IncrementalHoareTripleChecker+Unknown, 44 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-25 23:47:57,970 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [13 Valid, 50 Invalid, 339 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 284 Invalid, 5 Unknown, 44 Unchecked, 0.2s Time] [2022-11-25 23:47:57,970 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 35 states. [2022-11-25 23:47:57,972 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 35 to 34. [2022-11-25 23:47:57,972 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 34 states, 32 states have (on average 1.1875) internal successors, (38), 33 states have internal predecessors, (38), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:57,973 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 34 states to 34 states and 38 transitions. [2022-11-25 23:47:57,973 INFO L78 Accepts]: Start accepts. Automaton has 34 states and 38 transitions. Word has length 20 [2022-11-25 23:47:57,973 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:47:57,973 INFO L495 AbstractCegarLoop]: Abstraction has 34 states and 38 transitions. [2022-11-25 23:47:57,973 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 27 states, 27 states have (on average 1.6296296296296295) internal successors, (44), 27 states have internal predecessors, (44), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:47:57,973 INFO L276 IsEmpty]: Start isEmpty. Operand 34 states and 38 transitions. [2022-11-25 23:47:57,974 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 23 [2022-11-25 23:47:57,974 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:47:57,974 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 3, 3, 3, 1, 1, 1, 1, 1] [2022-11-25 23:47:57,985 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Forceful destruction successful, exit code 0 [2022-11-25 23:47:58,174 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17,12 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:58,175 INFO L420 AbstractCegarLoop]: === Iteration 19 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:47:58,175 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:47:58,175 INFO L85 PathProgramCache]: Analyzing trace with hash 2133191682, now seen corresponding path program 6 times [2022-11-25 23:47:58,175 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:47:58,175 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1916931078] [2022-11-25 23:47:58,175 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:47:58,175 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:47:58,194 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:47:58,558 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 6 proven. 22 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:58,558 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:47:58,559 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1916931078] [2022-11-25 23:47:58,559 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1916931078] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:47:58,559 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1037506695] [2022-11-25 23:47:58,559 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-25 23:47:58,559 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:47:58,559 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:47:58,567 INFO L229 MonitoredProcess]: Starting monitored process 13 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:47:58,592 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Waiting until timeout for monitored process [2022-11-25 23:47:58,690 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-25 23:47:58,690 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:47:58,692 INFO L263 TraceCheckSpWp]: Trace formula consists of 198 conjuncts, 28 conjunts are in the unsatisfiable core [2022-11-25 23:47:58,694 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:47:58,711 INFO L321 Elim1Store]: treesize reduction 11, result has 45.0 percent of original size [2022-11-25 23:47:58,711 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 1 case distinctions, treesize of input 9 treesize of output 15 [2022-11-25 23:47:58,866 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 12 proven. 16 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:58,867 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:47:59,162 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 12 proven. 16 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:47:59,162 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1037506695] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:47:59,162 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1848493998] [2022-11-25 23:47:59,163 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:47:59,164 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:47:59,164 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:47:59,164 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:47:59,164 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:47:59,198 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:59,202 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:47:59,238 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:47:59,279 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:59,300 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:59,353 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:47:59,401 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:59,424 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:47:59,424 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:47:59,489 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:59,494 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:47:59,495 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:59,496 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:47:59,527 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:47:59,527 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 52 treesize of output 54 [2022-11-25 23:47:59,609 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:47:59,609 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:47:59,697 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:48:01,411 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '2144#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:48:01,411 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:48:01,411 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:48:01,411 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 11, 11] total 27 [2022-11-25 23:48:01,412 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1303478552] [2022-11-25 23:48:01,412 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:48:01,412 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 28 states [2022-11-25 23:48:01,412 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:48:01,413 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2022-11-25 23:48:01,413 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=175, Invalid=1085, Unknown=0, NotChecked=0, Total=1260 [2022-11-25 23:48:01,413 INFO L87 Difference]: Start difference. First operand 34 states and 38 transitions. Second operand has 28 states, 27 states have (on average 2.111111111111111) internal successors, (57), 28 states have internal predecessors, (57), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:48:01,777 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:48:01,777 INFO L93 Difference]: Finished difference Result 35 states and 38 transitions. [2022-11-25 23:48:01,778 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-11-25 23:48:01,778 INFO L78 Accepts]: Start accepts. Automaton has has 28 states, 27 states have (on average 2.111111111111111) internal successors, (57), 28 states have internal predecessors, (57), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 22 [2022-11-25 23:48:01,778 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:48:01,778 INFO L225 Difference]: With dead ends: 35 [2022-11-25 23:48:01,778 INFO L226 Difference]: Without dead ends: 35 [2022-11-25 23:48:01,779 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 80 GetRequests, 40 SyntacticMatches, 0 SemanticMatches, 40 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 474 ImplicationChecksByTransitivity, 2.3s TimeCoverageRelationStatistics Valid=298, Invalid=1424, Unknown=0, NotChecked=0, Total=1722 [2022-11-25 23:48:01,779 INFO L413 NwaCegarLoop]: 1 mSDtfsCounter, 137 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 262 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 137 SdHoareTripleChecker+Valid, 1 SdHoareTripleChecker+Invalid, 263 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 262 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-25 23:48:01,780 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [137 Valid, 1 Invalid, 263 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 262 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-25 23:48:01,780 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 35 states. [2022-11-25 23:48:01,781 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 35 to 34. [2022-11-25 23:48:01,781 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 34 states, 32 states have (on average 1.15625) internal successors, (37), 33 states have internal predecessors, (37), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:48:01,782 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 34 states to 34 states and 37 transitions. [2022-11-25 23:48:01,782 INFO L78 Accepts]: Start accepts. Automaton has 34 states and 37 transitions. Word has length 22 [2022-11-25 23:48:01,782 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:48:01,782 INFO L495 AbstractCegarLoop]: Abstraction has 34 states and 37 transitions. [2022-11-25 23:48:01,782 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 28 states, 27 states have (on average 2.111111111111111) internal successors, (57), 28 states have internal predecessors, (57), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:48:01,782 INFO L276 IsEmpty]: Start isEmpty. Operand 34 states and 37 transitions. [2022-11-25 23:48:01,783 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2022-11-25 23:48:01,783 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:48:01,783 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 1, 1, 1, 1, 1] [2022-11-25 23:48:01,798 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Forceful destruction successful, exit code 0 [2022-11-25 23:48:01,984 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18,13 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:48:01,984 INFO L420 AbstractCegarLoop]: === Iteration 20 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:48:01,984 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:48:01,984 INFO L85 PathProgramCache]: Analyzing trace with hash 1577274647, now seen corresponding path program 7 times [2022-11-25 23:48:01,985 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:48:01,985 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2090622136] [2022-11-25 23:48:01,985 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:48:01,985 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:48:02,017 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:48:02,666 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 4 proven. 34 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:48:02,667 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:48:02,667 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2090622136] [2022-11-25 23:48:02,667 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2090622136] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:48:02,667 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1531236960] [2022-11-25 23:48:02,667 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-25 23:48:02,667 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:48:02,667 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:48:02,668 INFO L229 MonitoredProcess]: Starting monitored process 14 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:48:02,695 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Waiting until timeout for monitored process [2022-11-25 23:48:02,788 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:48:02,790 INFO L263 TraceCheckSpWp]: Trace formula consists of 221 conjuncts, 59 conjunts are in the unsatisfiable core [2022-11-25 23:48:02,793 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:48:02,802 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:48:02,993 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:48:03,064 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:48:03,114 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:48:03,134 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:48:03,165 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 7 [2022-11-25 23:48:03,169 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 4 proven. 34 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:48:03,169 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:48:03,232 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_448 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_448) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 2 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:48:03,244 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_448 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_448) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 3)) 0)) is different from false [2022-11-25 23:48:03,257 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:48:03,257 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-25 23:48:03,264 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:48:03,264 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-25 23:48:03,422 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 4 proven. 19 refuted. 0 times theorem prover too weak. 0 trivial. 15 not checked. [2022-11-25 23:48:03,422 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1531236960] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:48:03,423 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [813587136] [2022-11-25 23:48:03,424 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:48:03,424 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:48:03,424 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:48:03,424 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:48:03,425 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:48:03,463 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:03,467 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:48:03,502 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:48:03,544 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:48:03,563 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:48:03,615 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:48:03,663 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:48:03,688 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:48:03,688 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:48:03,743 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:03,746 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:03,747 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:48:03,748 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:48:03,779 INFO L321 Elim1Store]: treesize reduction 95, result has 15.9 percent of original size [2022-11-25 23:48:03,779 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 54 treesize of output 56 [2022-11-25 23:48:03,852 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:48:03,853 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:48:03,914 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:48:05,550 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '2405#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:48:05,550 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:48:05,550 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:48:05,550 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 15, 15] total 28 [2022-11-25 23:48:05,550 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [549746494] [2022-11-25 23:48:05,550 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:48:05,550 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 28 states [2022-11-25 23:48:05,551 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:48:05,551 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2022-11-25 23:48:05,551 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=104, Invalid=1018, Unknown=8, NotChecked=130, Total=1260 [2022-11-25 23:48:05,552 INFO L87 Difference]: Start difference. First operand 34 states and 37 transitions. Second operand has 28 states, 28 states have (on average 1.8928571428571428) internal successors, (53), 28 states have internal predecessors, (53), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:48:06,161 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:48:06,161 INFO L93 Difference]: Finished difference Result 50 states and 53 transitions. [2022-11-25 23:48:06,161 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2022-11-25 23:48:06,161 INFO L78 Accepts]: Start accepts. Automaton has has 28 states, 28 states have (on average 1.8928571428571428) internal successors, (53), 28 states have internal predecessors, (53), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 25 [2022-11-25 23:48:06,162 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:48:06,162 INFO L225 Difference]: With dead ends: 50 [2022-11-25 23:48:06,162 INFO L226 Difference]: Without dead ends: 37 [2022-11-25 23:48:06,163 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 101 GetRequests, 53 SyntacticMatches, 5 SemanticMatches, 43 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 381 ImplicationChecksByTransitivity, 2.5s TimeCoverageRelationStatistics Valid=170, Invalid=1636, Unknown=8, NotChecked=166, Total=1980 [2022-11-25 23:48:06,163 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 7 mSDsluCounter, 35 mSDsCounter, 0 mSdLazyCounter, 374 mSolverCounterSat, 8 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 7 SdHoareTripleChecker+Valid, 38 SdHoareTripleChecker+Invalid, 430 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 374 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 47 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-25 23:48:06,164 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [7 Valid, 38 Invalid, 430 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 374 Invalid, 1 Unknown, 47 Unchecked, 0.3s Time] [2022-11-25 23:48:06,164 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 37 states. [2022-11-25 23:48:06,165 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 37 to 36. [2022-11-25 23:48:06,166 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 36 states, 34 states have (on average 1.1470588235294117) internal successors, (39), 35 states have internal predecessors, (39), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:48:06,166 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 36 states to 36 states and 39 transitions. [2022-11-25 23:48:06,166 INFO L78 Accepts]: Start accepts. Automaton has 36 states and 39 transitions. Word has length 25 [2022-11-25 23:48:06,166 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:48:06,167 INFO L495 AbstractCegarLoop]: Abstraction has 36 states and 39 transitions. [2022-11-25 23:48:06,167 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 28 states, 28 states have (on average 1.8928571428571428) internal successors, (53), 28 states have internal predecessors, (53), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:48:06,167 INFO L276 IsEmpty]: Start isEmpty. Operand 36 states and 39 transitions. [2022-11-25 23:48:06,167 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 28 [2022-11-25 23:48:06,168 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:48:06,168 INFO L195 NwaCegarLoop]: trace histogram [5, 5, 4, 4, 4, 1, 1, 1, 1, 1] [2022-11-25 23:48:06,174 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Forceful destruction successful, exit code 0 [2022-11-25 23:48:06,374 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19,14 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:48:06,374 INFO L420 AbstractCegarLoop]: === Iteration 21 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:48:06,374 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:48:06,375 INFO L85 PathProgramCache]: Analyzing trace with hash -1182526647, now seen corresponding path program 8 times [2022-11-25 23:48:06,375 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:48:06,375 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [885600620] [2022-11-25 23:48:06,375 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:48:06,375 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:48:06,402 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:48:06,768 INFO L134 CoverageAnalysis]: Checked inductivity of 47 backedges. 12 proven. 35 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:48:06,769 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:48:06,769 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [885600620] [2022-11-25 23:48:06,769 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [885600620] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:48:06,769 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1403614522] [2022-11-25 23:48:06,769 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-25 23:48:06,769 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:48:06,769 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:48:06,783 INFO L229 MonitoredProcess]: Starting monitored process 15 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:48:06,806 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Waiting until timeout for monitored process [2022-11-25 23:48:06,938 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 5 check-sat command(s) [2022-11-25 23:48:06,938 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:48:06,941 INFO L263 TraceCheckSpWp]: Trace formula consists of 221 conjuncts, 85 conjunts are in the unsatisfiable core [2022-11-25 23:48:06,944 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:48:06,954 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:48:07,235 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:48:07,304 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:48:07,445 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 23 treesize of output 23 [2022-11-25 23:48:07,611 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 31 [2022-11-25 23:48:07,764 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:07,767 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:07,788 INFO L321 Elim1Store]: treesize reduction 8, result has 72.4 percent of original size [2022-11-25 23:48:07,789 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 4 select indices, 4 select index equivalence classes, 3 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 3 case distinctions, treesize of input 37 treesize of output 35 [2022-11-25 23:48:07,894 INFO L134 CoverageAnalysis]: Checked inductivity of 47 backedges. 7 proven. 34 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2022-11-25 23:48:07,894 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:48:08,715 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:48:08,716 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 70 treesize of output 48 [2022-11-25 23:48:08,735 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:48:08,735 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 4 select indices, 4 select index equivalence classes, 3 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 3 case distinctions, treesize of input 87 treesize of output 86 [2022-11-25 23:48:08,740 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:48:08,764 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:48:08,769 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:48:08,959 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 13 [2022-11-25 23:48:09,382 INFO L134 CoverageAnalysis]: Checked inductivity of 47 backedges. 1 proven. 40 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2022-11-25 23:48:09,382 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1403614522] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:48:09,382 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1642896667] [2022-11-25 23:48:09,383 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:48:09,384 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:48:09,384 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:48:09,384 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:48:09,384 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:48:09,421 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:09,426 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:48:09,460 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:48:09,503 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:48:09,525 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:48:09,569 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:48:09,618 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:48:09,642 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:48:09,643 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:48:09,711 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:09,715 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:09,717 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:09,717 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:48:09,719 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:48:09,750 INFO L321 Elim1Store]: treesize reduction 99, result has 15.4 percent of original size [2022-11-25 23:48:09,750 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 1 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 48 treesize of output 52 [2022-11-25 23:48:09,820 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:48:09,821 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:48:09,894 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:48:11,862 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '2720#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:48:11,862 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:48:11,863 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:48:11,866 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 16, 18] total 44 [2022-11-25 23:48:11,867 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1790826067] [2022-11-25 23:48:11,867 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:48:11,867 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 45 states [2022-11-25 23:48:11,867 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:48:11,868 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 45 interpolants. [2022-11-25 23:48:11,869 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=237, Invalid=2508, Unknown=11, NotChecked=0, Total=2756 [2022-11-25 23:48:11,869 INFO L87 Difference]: Start difference. First operand 36 states and 39 transitions. Second operand has 45 states, 44 states have (on average 1.6590909090909092) internal successors, (73), 45 states have internal predecessors, (73), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:48:19,990 WARN L233 SmtUtils]: Spent 6.39s on a formula simplification. DAG size of input: 93 DAG size of output: 79 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-25 23:48:21,317 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:48:21,317 INFO L93 Difference]: Finished difference Result 42 states and 43 transitions. [2022-11-25 23:48:21,317 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 30 states. [2022-11-25 23:48:21,317 INFO L78 Accepts]: Start accepts. Automaton has has 45 states, 44 states have (on average 1.6590909090909092) internal successors, (73), 45 states have internal predecessors, (73), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 27 [2022-11-25 23:48:21,318 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:48:21,318 INFO L225 Difference]: With dead ends: 42 [2022-11-25 23:48:21,318 INFO L226 Difference]: Without dead ends: 42 [2022-11-25 23:48:21,320 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 118 GetRequests, 40 SyntacticMatches, 0 SemanticMatches, 78 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1231 ImplicationChecksByTransitivity, 12.5s TimeCoverageRelationStatistics Valid=921, Invalid=5385, Unknown=14, NotChecked=0, Total=6320 [2022-11-25 23:48:21,321 INFO L413 NwaCegarLoop]: 1 mSDtfsCounter, 285 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 493 mSolverCounterSat, 14 mSolverCounterUnsat, 7 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 285 SdHoareTripleChecker+Valid, 1 SdHoareTripleChecker+Invalid, 514 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 14 IncrementalHoareTripleChecker+Valid, 493 IncrementalHoareTripleChecker+Invalid, 7 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2022-11-25 23:48:21,322 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [285 Valid, 1 Invalid, 514 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [14 Valid, 493 Invalid, 7 Unknown, 0 Unchecked, 0.5s Time] [2022-11-25 23:48:21,322 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 42 states. [2022-11-25 23:48:21,324 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 42 to 38. [2022-11-25 23:48:21,324 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 38 states, 36 states have (on average 1.0833333333333333) internal successors, (39), 37 states have internal predecessors, (39), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:48:21,324 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 38 states to 38 states and 39 transitions. [2022-11-25 23:48:21,324 INFO L78 Accepts]: Start accepts. Automaton has 38 states and 39 transitions. Word has length 27 [2022-11-25 23:48:21,325 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:48:21,325 INFO L495 AbstractCegarLoop]: Abstraction has 38 states and 39 transitions. [2022-11-25 23:48:21,325 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 45 states, 44 states have (on average 1.6590909090909092) internal successors, (73), 45 states have internal predecessors, (73), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:48:21,325 INFO L276 IsEmpty]: Start isEmpty. Operand 38 states and 39 transitions. [2022-11-25 23:48:21,326 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2022-11-25 23:48:21,326 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:48:21,326 INFO L195 NwaCegarLoop]: trace histogram [7, 6, 6, 5, 5, 1, 1, 1, 1, 1] [2022-11-25 23:48:21,332 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Forceful destruction successful, exit code 0 [2022-11-25 23:48:21,530 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 15 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable20 [2022-11-25 23:48:21,531 INFO L420 AbstractCegarLoop]: === Iteration 22 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:48:21,531 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:48:21,531 INFO L85 PathProgramCache]: Analyzing trace with hash -94422, now seen corresponding path program 3 times [2022-11-25 23:48:21,531 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:48:21,531 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [482673695] [2022-11-25 23:48:21,531 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:48:21,532 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:48:21,559 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:48:22,285 INFO L134 CoverageAnalysis]: Checked inductivity of 82 backedges. 41 proven. 41 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:48:22,285 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:48:22,285 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [482673695] [2022-11-25 23:48:22,285 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [482673695] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:48:22,286 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [572368250] [2022-11-25 23:48:22,286 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-25 23:48:22,286 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:48:22,286 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:48:22,287 INFO L229 MonitoredProcess]: Starting monitored process 16 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:48:22,314 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (16)] Waiting until timeout for monitored process [2022-11-25 23:48:22,567 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-25 23:48:22,568 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:48:22,571 INFO L263 TraceCheckSpWp]: Trace formula consists of 286 conjuncts, 84 conjunts are in the unsatisfiable core [2022-11-25 23:48:22,576 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:48:22,975 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:48:23,055 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:23,055 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:48:23,165 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:23,166 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:48:23,272 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:23,273 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:48:23,382 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:48:23,383 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:48:23,459 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:48:23,461 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:48:23,461 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 17 treesize of output 10 [2022-11-25 23:48:23,501 INFO L134 CoverageAnalysis]: Checked inductivity of 82 backedges. 25 proven. 55 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-25 23:48:23,501 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:48:24,432 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12770 treesize of output 12674 [2022-11-25 23:52:14,480 INFO L134 CoverageAnalysis]: Checked inductivity of 82 backedges. 25 proven. 55 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-25 23:52:14,480 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [572368250] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:52:14,480 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [789940296] [2022-11-25 23:52:14,482 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:52:14,482 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:52:14,482 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:52:14,483 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:52:14,483 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:52:14,517 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:14,521 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:52:14,559 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:14,610 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:14,633 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:14,685 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:14,734 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:14,761 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:52:14,761 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:52:14,817 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:14,822 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:14,822 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:14,823 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:14,864 INFO L321 Elim1Store]: treesize reduction 95, result has 15.9 percent of original size [2022-11-25 23:52:14,864 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 54 treesize of output 56 [2022-11-25 23:52:14,931 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:52:14,931 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:52:14,982 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:52:17,265 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '3108#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:52:17,265 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:52:17,266 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:52:17,266 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [17, 16, 20] total 48 [2022-11-25 23:52:17,266 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1553008555] [2022-11-25 23:52:17,266 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:52:17,266 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 48 states [2022-11-25 23:52:17,266 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:52:17,267 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 48 interpolants. [2022-11-25 23:52:17,268 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=168, Invalid=2912, Unknown=0, NotChecked=0, Total=3080 [2022-11-25 23:52:17,268 INFO L87 Difference]: Start difference. First operand 38 states and 39 transitions. Second operand has 48 states, 48 states have (on average 1.8958333333333333) internal successors, (91), 48 states have internal predecessors, (91), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:52:19,565 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:52:19,566 INFO L93 Difference]: Finished difference Result 57 states and 58 transitions. [2022-11-25 23:52:19,569 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2022-11-25 23:52:19,569 INFO L78 Accepts]: Start accepts. Automaton has has 48 states, 48 states have (on average 1.8958333333333333) internal successors, (91), 48 states have internal predecessors, (91), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 34 [2022-11-25 23:52:19,569 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:52:19,569 INFO L225 Difference]: With dead ends: 57 [2022-11-25 23:52:19,570 INFO L226 Difference]: Without dead ends: 41 [2022-11-25 23:52:19,571 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 135 GetRequests, 63 SyntacticMatches, 0 SemanticMatches, 72 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1110 ImplicationChecksByTransitivity, 6.1s TimeCoverageRelationStatistics Valid=380, Invalid=5022, Unknown=0, NotChecked=0, Total=5402 [2022-11-25 23:52:19,572 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 81 mSDsluCounter, 43 mSDsCounter, 0 mSdLazyCounter, 881 mSolverCounterSat, 15 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 81 SdHoareTripleChecker+Valid, 46 SdHoareTripleChecker+Invalid, 896 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 15 IncrementalHoareTripleChecker+Valid, 881 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.8s IncrementalHoareTripleChecker+Time [2022-11-25 23:52:19,572 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [81 Valid, 46 Invalid, 896 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [15 Valid, 881 Invalid, 0 Unknown, 0 Unchecked, 0.8s Time] [2022-11-25 23:52:19,572 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 41 states. [2022-11-25 23:52:19,574 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 41 to 40. [2022-11-25 23:52:19,574 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 40 states, 38 states have (on average 1.0789473684210527) internal successors, (41), 39 states have internal predecessors, (41), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:52:19,574 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 40 states to 40 states and 41 transitions. [2022-11-25 23:52:19,574 INFO L78 Accepts]: Start accepts. Automaton has 40 states and 41 transitions. Word has length 34 [2022-11-25 23:52:19,579 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:52:19,579 INFO L495 AbstractCegarLoop]: Abstraction has 40 states and 41 transitions. [2022-11-25 23:52:19,580 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 48 states, 48 states have (on average 1.8958333333333333) internal successors, (91), 48 states have internal predecessors, (91), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:52:19,580 INFO L276 IsEmpty]: Start isEmpty. Operand 40 states and 41 transitions. [2022-11-25 23:52:19,580 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 37 [2022-11-25 23:52:19,582 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:52:19,583 INFO L195 NwaCegarLoop]: trace histogram [7, 6, 6, 6, 6, 1, 1, 1, 1, 1] [2022-11-25 23:52:19,595 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (16)] Forceful destruction successful, exit code 0 [2022-11-25 23:52:19,789 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 16 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable21 [2022-11-25 23:52:19,789 INFO L420 AbstractCegarLoop]: === Iteration 23 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:52:19,790 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:52:19,790 INFO L85 PathProgramCache]: Analyzing trace with hash 408199480, now seen corresponding path program 4 times [2022-11-25 23:52:19,790 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:52:19,790 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1132811617] [2022-11-25 23:52:19,790 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:52:19,790 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:52:19,840 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:52:20,729 INFO L134 CoverageAnalysis]: Checked inductivity of 93 backedges. 41 proven. 52 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:52:20,729 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:52:20,730 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1132811617] [2022-11-25 23:52:20,730 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1132811617] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:52:20,730 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [367703766] [2022-11-25 23:52:20,730 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-25 23:52:20,730 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:52:20,730 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:52:20,732 INFO L229 MonitoredProcess]: Starting monitored process 17 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:52:20,764 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (17)] Waiting until timeout for monitored process [2022-11-25 23:52:20,891 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:52:20,893 INFO L263 TraceCheckSpWp]: Trace formula consists of 299 conjuncts, 75 conjunts are in the unsatisfiable core [2022-11-25 23:52:20,896 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:52:20,905 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:52:21,299 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:21,387 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:52:21,493 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:52:21,606 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:52:21,714 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:52:21,815 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:52:21,973 INFO L321 Elim1Store]: treesize reduction 5, result has 37.5 percent of original size [2022-11-25 23:52:21,973 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 18 treesize of output 10 [2022-11-25 23:52:22,018 INFO L134 CoverageAnalysis]: Checked inductivity of 93 backedges. 12 proven. 81 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:52:22,018 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:52:22,217 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_643 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_643) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 2 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:52:22,228 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_643 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_643) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 3)) 0)) is different from false [2022-11-25 23:52:22,330 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_643 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_643) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 5 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:52:22,353 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:52:22,353 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-25 23:52:22,362 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:52:22,363 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-25 23:52:22,632 INFO L134 CoverageAnalysis]: Checked inductivity of 93 backedges. 12 proven. 45 refuted. 0 times theorem prover too weak. 0 trivial. 36 not checked. [2022-11-25 23:52:22,632 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [367703766] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:52:22,633 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1026840562] [2022-11-25 23:52:22,634 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:52:22,634 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:52:22,634 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:52:22,635 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:52:22,635 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:52:22,661 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:22,665 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:52:22,699 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:22,740 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:22,765 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:22,814 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:22,866 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:22,893 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:52:22,893 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:52:22,945 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:22,949 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:22,950 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:22,952 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:22,991 INFO L321 Elim1Store]: treesize reduction 95, result has 15.9 percent of original size [2022-11-25 23:52:22,992 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 54 treesize of output 56 [2022-11-25 23:52:23,051 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:52:23,051 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:52:23,108 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:52:25,358 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '3503#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:52:25,358 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:52:25,358 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:52:25,358 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 19, 19] total 44 [2022-11-25 23:52:25,358 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [413580596] [2022-11-25 23:52:25,358 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:52:25,359 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 44 states [2022-11-25 23:52:25,359 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:52:25,363 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 44 interpolants. [2022-11-25 23:52:25,364 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=146, Invalid=2180, Unknown=38, NotChecked=288, Total=2652 [2022-11-25 23:52:25,364 INFO L87 Difference]: Start difference. First operand 40 states and 41 transitions. Second operand has 44 states, 44 states have (on average 2.0454545454545454) internal successors, (90), 44 states have internal predecessors, (90), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:52:28,182 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:52:28,182 INFO L93 Difference]: Finished difference Result 62 states and 63 transitions. [2022-11-25 23:52:28,182 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 24 states. [2022-11-25 23:52:28,183 INFO L78 Accepts]: Start accepts. Automaton has has 44 states, 44 states have (on average 2.0454545454545454) internal successors, (90), 44 states have internal predecessors, (90), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 36 [2022-11-25 23:52:28,183 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:52:28,183 INFO L225 Difference]: With dead ends: 62 [2022-11-25 23:52:28,183 INFO L226 Difference]: Without dead ends: 43 [2022-11-25 23:52:28,185 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 145 GetRequests, 72 SyntacticMatches, 2 SemanticMatches, 71 ConstructedPredicates, 3 IntricatePredicates, 2 DeprecatedPredicates, 856 ImplicationChecksByTransitivity, 5.8s TimeCoverageRelationStatistics Valid=377, Invalid=4426, Unknown=39, NotChecked=414, Total=5256 [2022-11-25 23:52:28,185 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 78 mSDsluCounter, 43 mSDsCounter, 0 mSdLazyCounter, 886 mSolverCounterSat, 20 mSolverCounterUnsat, 56 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 78 SdHoareTripleChecker+Valid, 46 SdHoareTripleChecker+Invalid, 1076 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 20 IncrementalHoareTripleChecker+Valid, 886 IncrementalHoareTripleChecker+Invalid, 56 IncrementalHoareTripleChecker+Unknown, 114 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2022-11-25 23:52:28,186 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [78 Valid, 46 Invalid, 1076 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [20 Valid, 886 Invalid, 56 Unknown, 114 Unchecked, 1.0s Time] [2022-11-25 23:52:28,186 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 43 states. [2022-11-25 23:52:28,188 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 43 to 42. [2022-11-25 23:52:28,188 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 42 states, 40 states have (on average 1.075) internal successors, (43), 41 states have internal predecessors, (43), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:52:28,188 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 42 states to 42 states and 43 transitions. [2022-11-25 23:52:28,189 INFO L78 Accepts]: Start accepts. Automaton has 42 states and 43 transitions. Word has length 36 [2022-11-25 23:52:28,189 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:52:28,189 INFO L495 AbstractCegarLoop]: Abstraction has 42 states and 43 transitions. [2022-11-25 23:52:28,189 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 44 states, 44 states have (on average 2.0454545454545454) internal successors, (90), 44 states have internal predecessors, (90), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:52:28,189 INFO L276 IsEmpty]: Start isEmpty. Operand 42 states and 43 transitions. [2022-11-25 23:52:28,190 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 39 [2022-11-25 23:52:28,190 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:52:28,190 INFO L195 NwaCegarLoop]: trace histogram [7, 7, 7, 6, 6, 1, 1, 1, 1, 1] [2022-11-25 23:52:28,199 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (17)] Ended with exit code 0 [2022-11-25 23:52:28,396 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 17 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable22 [2022-11-25 23:52:28,396 INFO L420 AbstractCegarLoop]: === Iteration 24 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:52:28,396 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:52:28,396 INFO L85 PathProgramCache]: Analyzing trace with hash 1936615366, now seen corresponding path program 5 times [2022-11-25 23:52:28,397 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:52:28,397 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1326383319] [2022-11-25 23:52:28,397 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:52:28,397 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:52:28,424 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:52:29,394 INFO L134 CoverageAnalysis]: Checked inductivity of 106 backedges. 25 proven. 81 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:52:29,394 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:52:29,394 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1326383319] [2022-11-25 23:52:29,395 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1326383319] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:52:29,395 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2009506705] [2022-11-25 23:52:29,395 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-25 23:52:29,395 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:52:29,395 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:52:29,396 INFO L229 MonitoredProcess]: Starting monitored process 18 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:52:29,432 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (18)] Waiting until timeout for monitored process [2022-11-25 23:52:29,704 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 7 check-sat command(s) [2022-11-25 23:52:29,704 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:52:29,708 INFO L263 TraceCheckSpWp]: Trace formula consists of 299 conjuncts, 120 conjunts are in the unsatisfiable core [2022-11-25 23:52:29,714 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:52:29,789 INFO L321 Elim1Store]: treesize reduction 11, result has 50.0 percent of original size [2022-11-25 23:52:29,790 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 17 [2022-11-25 23:52:29,827 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:52:30,654 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:52:30,778 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:52:30,962 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:52:31,249 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 23 treesize of output 23 [2022-11-25 23:52:31,548 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 31 [2022-11-25 23:52:31,876 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 43 treesize of output 39 [2022-11-25 23:52:32,108 INFO L321 Elim1Store]: treesize reduction 12, result has 63.6 percent of original size [2022-11-25 23:52:32,108 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 5 select indices, 5 select index equivalence classes, 7 disjoint index pairs (out of 10 index pairs), introduced 5 new quantified variables, introduced 4 case distinctions, treesize of input 41 treesize of output 39 [2022-11-25 23:52:32,411 INFO L134 CoverageAnalysis]: Checked inductivity of 106 backedges. 12 proven. 82 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2022-11-25 23:52:32,411 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:52:34,371 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:52:34,372 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 93 treesize of output 60 [2022-11-25 23:52:34,403 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:52:34,403 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 5 select indices, 5 select index equivalence classes, 0 disjoint index pairs (out of 10 index pairs), introduced 5 new quantified variables, introduced 10 case distinctions, treesize of input 112 treesize of output 113 [2022-11-25 23:52:34,408 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:52:34,413 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:52:34,450 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:52:34,457 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:52:36,151 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:36,161 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:52:36,261 INFO L134 CoverageAnalysis]: Checked inductivity of 106 backedges. 16 proven. 86 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2022-11-25 23:52:36,261 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2009506705] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:52:36,261 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1967913866] [2022-11-25 23:52:36,262 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:52:36,262 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:52:36,263 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:52:36,263 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:52:36,263 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:52:36,290 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:36,293 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:52:36,327 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:52:36,373 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:36,398 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:36,447 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:36,489 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:36,523 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:52:36,523 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:52:36,594 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:36,598 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:36,601 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:36,603 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:36,645 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:52:36,646 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 52 treesize of output 54 [2022-11-25 23:52:36,707 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:52:36,707 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:52:36,777 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:52:39,594 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '3942#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:52:39,594 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:52:39,595 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:52:39,595 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [17, 19, 25] total 61 [2022-11-25 23:52:39,595 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1715368384] [2022-11-25 23:52:39,595 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:52:39,595 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 63 states [2022-11-25 23:52:39,596 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:52:39,596 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 63 interpolants. [2022-11-25 23:52:39,598 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=453, Invalid=4512, Unknown=5, NotChecked=0, Total=4970 [2022-11-25 23:52:39,599 INFO L87 Difference]: Start difference. First operand 42 states and 43 transitions. Second operand has 63 states, 62 states have (on average 1.7258064516129032) internal successors, (107), 62 states have internal predecessors, (107), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:52:48,880 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:52:48,880 INFO L93 Difference]: Finished difference Result 56 states and 57 transitions. [2022-11-25 23:52:48,880 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 39 states. [2022-11-25 23:52:48,880 INFO L78 Accepts]: Start accepts. Automaton has has 63 states, 62 states have (on average 1.7258064516129032) internal successors, (107), 62 states have internal predecessors, (107), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 38 [2022-11-25 23:52:48,881 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:52:48,881 INFO L225 Difference]: With dead ends: 56 [2022-11-25 23:52:48,881 INFO L226 Difference]: Without dead ends: 56 [2022-11-25 23:52:48,884 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 165 GetRequests, 58 SyntacticMatches, 2 SemanticMatches, 105 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2347 ImplicationChecksByTransitivity, 15.5s TimeCoverageRelationStatistics Valid=1748, Invalid=9579, Unknown=15, NotChecked=0, Total=11342 [2022-11-25 23:52:48,884 INFO L413 NwaCegarLoop]: 0 mSDtfsCounter, 311 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 985 mSolverCounterSat, 31 mSolverCounterUnsat, 8 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 311 SdHoareTripleChecker+Valid, 0 SdHoareTripleChecker+Invalid, 1024 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 31 IncrementalHoareTripleChecker+Valid, 985 IncrementalHoareTripleChecker+Invalid, 8 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.3s IncrementalHoareTripleChecker+Time [2022-11-25 23:52:48,885 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [311 Valid, 0 Invalid, 1024 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [31 Valid, 985 Invalid, 8 Unknown, 0 Unchecked, 1.3s Time] [2022-11-25 23:52:48,885 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 56 states. [2022-11-25 23:52:48,886 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 56 to 52. [2022-11-25 23:52:48,887 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 52 states, 50 states have (on average 1.12) internal successors, (56), 51 states have internal predecessors, (56), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:52:48,887 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 52 states to 52 states and 56 transitions. [2022-11-25 23:52:48,887 INFO L78 Accepts]: Start accepts. Automaton has 52 states and 56 transitions. Word has length 38 [2022-11-25 23:52:48,888 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:52:48,888 INFO L495 AbstractCegarLoop]: Abstraction has 52 states and 56 transitions. [2022-11-25 23:52:48,888 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 63 states, 62 states have (on average 1.7258064516129032) internal successors, (107), 62 states have internal predecessors, (107), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:52:48,888 INFO L276 IsEmpty]: Start isEmpty. Operand 52 states and 56 transitions. [2022-11-25 23:52:48,889 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 41 [2022-11-25 23:52:48,889 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:52:48,889 INFO L195 NwaCegarLoop]: trace histogram [7, 7, 7, 7, 7, 1, 1, 1, 1, 1] [2022-11-25 23:52:48,895 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (18)] Forceful destruction successful, exit code 0 [2022-11-25 23:52:49,094 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 18 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable23 [2022-11-25 23:52:49,095 INFO L420 AbstractCegarLoop]: === Iteration 25 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:52:49,095 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:52:49,095 INFO L85 PathProgramCache]: Analyzing trace with hash 1366527852, now seen corresponding path program 9 times [2022-11-25 23:52:49,095 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:52:49,095 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [269248639] [2022-11-25 23:52:49,095 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:52:49,095 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:52:49,151 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:52:50,240 INFO L134 CoverageAnalysis]: Checked inductivity of 119 backedges. 7 proven. 112 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:52:50,241 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:52:50,241 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [269248639] [2022-11-25 23:52:50,241 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [269248639] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:52:50,241 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1735990205] [2022-11-25 23:52:50,241 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-25 23:52:50,241 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:52:50,241 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:52:50,242 INFO L229 MonitoredProcess]: Starting monitored process 19 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:52:50,244 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (19)] Waiting until timeout for monitored process [2022-11-25 23:52:50,537 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-25 23:52:50,537 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:52:50,541 INFO L263 TraceCheckSpWp]: Trace formula consists of 329 conjuncts, 90 conjunts are in the unsatisfiable core [2022-11-25 23:52:50,544 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:52:50,552 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:52:50,812 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:52:50,828 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 16 [2022-11-25 23:52:50,890 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 16 [2022-11-25 23:52:50,947 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 16 [2022-11-25 23:52:51,004 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 16 [2022-11-25 23:52:51,063 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 16 [2022-11-25 23:52:51,117 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 16 [2022-11-25 23:52:51,186 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 7 [2022-11-25 23:52:51,189 INFO L134 CoverageAnalysis]: Checked inductivity of 119 backedges. 7 proven. 112 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:52:51,189 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:52:51,290 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_800 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_800) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 2 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:52:51,301 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_800 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_800) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 3)) 0)) is different from false [2022-11-25 23:52:51,536 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:52:51,536 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-25 23:52:51,543 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:52:51,543 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-25 23:52:51,553 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:52:52,091 INFO L134 CoverageAnalysis]: Checked inductivity of 119 backedges. 7 proven. 79 refuted. 0 times theorem prover too weak. 0 trivial. 33 not checked. [2022-11-25 23:52:52,091 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1735990205] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:52:52,091 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [251630840] [2022-11-25 23:52:52,093 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:52:52,093 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:52:52,093 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:52:52,093 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:52:52,093 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:52:52,123 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:52,127 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:52:52,164 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:52:52,205 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:52,228 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:52,269 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:52,326 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:52,356 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:52:52,357 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:52:52,416 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:52,419 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:52,421 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:52,424 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:52,469 INFO L321 Elim1Store]: treesize reduction 99, result has 15.4 percent of original size [2022-11-25 23:52:52,469 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 48 treesize of output 52 [2022-11-25 23:52:52,545 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:52:52,546 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:52:52,625 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:52:54,781 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4411#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:52:54,781 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:52:54,781 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:52:54,781 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [20, 21, 21] total 47 [2022-11-25 23:52:54,782 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1871281976] [2022-11-25 23:52:54,782 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:52:54,782 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 47 states [2022-11-25 23:52:54,782 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:52:54,782 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 47 interpolants. [2022-11-25 23:52:54,783 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=166, Invalid=2566, Unknown=32, NotChecked=206, Total=2970 [2022-11-25 23:52:54,784 INFO L87 Difference]: Start difference. First operand 52 states and 56 transitions. Second operand has 47 states, 47 states have (on average 2.0425531914893615) internal successors, (96), 47 states have internal predecessors, (96), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:52:56,464 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:52:56,464 INFO L93 Difference]: Finished difference Result 77 states and 81 transitions. [2022-11-25 23:52:56,464 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 27 states. [2022-11-25 23:52:56,465 INFO L78 Accepts]: Start accepts. Automaton has has 47 states, 47 states have (on average 2.0425531914893615) internal successors, (96), 47 states have internal predecessors, (96), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 40 [2022-11-25 23:52:56,465 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:52:56,465 INFO L225 Difference]: With dead ends: 77 [2022-11-25 23:52:56,465 INFO L226 Difference]: Without dead ends: 55 [2022-11-25 23:52:56,466 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 159 GetRequests, 89 SyntacticMatches, 2 SemanticMatches, 68 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 954 ImplicationChecksByTransitivity, 4.4s TimeCoverageRelationStatistics Valid=314, Invalid=4212, Unknown=38, NotChecked=266, Total=4830 [2022-11-25 23:52:56,467 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 67 mSDsluCounter, 63 mSDsCounter, 0 mSdLazyCounter, 1024 mSolverCounterSat, 10 mSolverCounterUnsat, 9 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 67 SdHoareTripleChecker+Valid, 66 SdHoareTripleChecker+Invalid, 1127 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 1024 IncrementalHoareTripleChecker+Invalid, 9 IncrementalHoareTripleChecker+Unknown, 84 IncrementalHoareTripleChecker+Unchecked, 0.8s IncrementalHoareTripleChecker+Time [2022-11-25 23:52:56,467 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [67 Valid, 66 Invalid, 1127 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 1024 Invalid, 9 Unknown, 84 Unchecked, 0.8s Time] [2022-11-25 23:52:56,468 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 55 states. [2022-11-25 23:52:56,469 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 55 to 54. [2022-11-25 23:52:56,469 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 54 states, 52 states have (on average 1.1153846153846154) internal successors, (58), 53 states have internal predecessors, (58), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:52:56,470 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 54 states to 54 states and 58 transitions. [2022-11-25 23:52:56,470 INFO L78 Accepts]: Start accepts. Automaton has 54 states and 58 transitions. Word has length 40 [2022-11-25 23:52:56,470 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:52:56,470 INFO L495 AbstractCegarLoop]: Abstraction has 54 states and 58 transitions. [2022-11-25 23:52:56,471 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 47 states, 47 states have (on average 2.0425531914893615) internal successors, (96), 47 states have internal predecessors, (96), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:52:56,471 INFO L276 IsEmpty]: Start isEmpty. Operand 54 states and 58 transitions. [2022-11-25 23:52:56,471 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 43 [2022-11-25 23:52:56,471 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:52:56,472 INFO L195 NwaCegarLoop]: trace histogram [8, 8, 7, 7, 7, 1, 1, 1, 1, 1] [2022-11-25 23:52:56,479 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (19)] Forceful destruction successful, exit code 0 [2022-11-25 23:52:56,678 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable24,19 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:52:56,679 INFO L420 AbstractCegarLoop]: === Iteration 26 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:52:56,679 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:52:56,679 INFO L85 PathProgramCache]: Analyzing trace with hash 1712021242, now seen corresponding path program 10 times [2022-11-25 23:52:56,679 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:52:56,679 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [844566435] [2022-11-25 23:52:56,679 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:52:56,679 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:52:56,704 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:52:57,340 INFO L134 CoverageAnalysis]: Checked inductivity of 134 backedges. 42 proven. 92 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:52:57,340 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:52:57,340 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [844566435] [2022-11-25 23:52:57,340 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [844566435] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:52:57,341 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [944855201] [2022-11-25 23:52:57,341 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-25 23:52:57,341 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:52:57,341 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:52:57,343 INFO L229 MonitoredProcess]: Starting monitored process 20 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:52:57,361 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (20)] Waiting until timeout for monitored process [2022-11-25 23:52:57,504 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:52:57,507 INFO L263 TraceCheckSpWp]: Trace formula consists of 342 conjuncts, 47 conjunts are in the unsatisfiable core [2022-11-25 23:52:57,509 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:52:57,889 INFO L134 CoverageAnalysis]: Checked inductivity of 134 backedges. 56 proven. 78 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:52:57,889 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:52:58,327 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 5 [2022-11-25 23:52:58,504 INFO L134 CoverageAnalysis]: Checked inductivity of 134 backedges. 56 proven. 78 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:52:58,505 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [944855201] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:52:58,505 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1295609908] [2022-11-25 23:52:58,506 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:52:58,506 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:52:58,507 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:52:58,507 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:52:58,507 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:52:58,533 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:58,536 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:52:58,571 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:58,610 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:58,633 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:58,674 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:52:58,727 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:58,760 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:52:58,760 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:52:58,824 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:58,828 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:52:58,829 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:58,830 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:52:58,868 INFO L321 Elim1Store]: treesize reduction 95, result has 15.9 percent of original size [2022-11-25 23:52:58,869 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 54 treesize of output 56 [2022-11-25 23:52:58,944 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:52:58,944 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:52:59,016 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:53:00,945 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4866#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:53:00,945 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:53:00,945 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:53:00,945 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 19, 19] total 39 [2022-11-25 23:53:00,946 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [120621057] [2022-11-25 23:53:00,946 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:53:00,946 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 40 states [2022-11-25 23:53:00,946 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:53:00,947 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 40 interpolants. [2022-11-25 23:53:00,948 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=262, Invalid=1994, Unknown=0, NotChecked=0, Total=2256 [2022-11-25 23:53:00,948 INFO L87 Difference]: Start difference. First operand 54 states and 58 transitions. Second operand has 40 states, 39 states have (on average 2.282051282051282) internal successors, (89), 40 states have internal predecessors, (89), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:01,754 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:53:01,755 INFO L93 Difference]: Finished difference Result 55 states and 58 transitions. [2022-11-25 23:53:01,756 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 20 states. [2022-11-25 23:53:01,756 INFO L78 Accepts]: Start accepts. Automaton has has 40 states, 39 states have (on average 2.282051282051282) internal successors, (89), 40 states have internal predecessors, (89), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 42 [2022-11-25 23:53:01,756 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:53:01,757 INFO L225 Difference]: With dead ends: 55 [2022-11-25 23:53:01,757 INFO L226 Difference]: Without dead ends: 55 [2022-11-25 23:53:01,757 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 152 GetRequests, 88 SyntacticMatches, 8 SemanticMatches, 56 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1129 ImplicationChecksByTransitivity, 3.1s TimeCoverageRelationStatistics Valid=527, Invalid=2779, Unknown=0, NotChecked=0, Total=3306 [2022-11-25 23:53:01,758 INFO L413 NwaCegarLoop]: 1 mSDtfsCounter, 221 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 770 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 221 SdHoareTripleChecker+Valid, 1 SdHoareTripleChecker+Invalid, 771 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 770 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2022-11-25 23:53:01,758 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [221 Valid, 1 Invalid, 771 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 770 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2022-11-25 23:53:01,758 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 55 states. [2022-11-25 23:53:01,760 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 55 to 54. [2022-11-25 23:53:01,760 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 54 states, 52 states have (on average 1.0961538461538463) internal successors, (57), 53 states have internal predecessors, (57), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:01,760 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 54 states to 54 states and 57 transitions. [2022-11-25 23:53:01,760 INFO L78 Accepts]: Start accepts. Automaton has 54 states and 57 transitions. Word has length 42 [2022-11-25 23:53:01,760 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:53:01,760 INFO L495 AbstractCegarLoop]: Abstraction has 54 states and 57 transitions. [2022-11-25 23:53:01,761 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 40 states, 39 states have (on average 2.282051282051282) internal successors, (89), 40 states have internal predecessors, (89), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:01,761 INFO L276 IsEmpty]: Start isEmpty. Operand 54 states and 57 transitions. [2022-11-25 23:53:01,761 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 46 [2022-11-25 23:53:01,761 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:53:01,761 INFO L195 NwaCegarLoop]: trace histogram [8, 8, 8, 8, 8, 1, 1, 1, 1, 1] [2022-11-25 23:53:01,775 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (20)] Forceful destruction successful, exit code 0 [2022-11-25 23:53:01,975 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable25,20 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:53:01,975 INFO L420 AbstractCegarLoop]: === Iteration 27 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:53:01,975 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:53:01,976 INFO L85 PathProgramCache]: Analyzing trace with hash 88168223, now seen corresponding path program 11 times [2022-11-25 23:53:01,976 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:53:01,976 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2092756628] [2022-11-25 23:53:01,976 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:53:01,976 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:53:02,010 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:53:03,251 INFO L134 CoverageAnalysis]: Checked inductivity of 156 backedges. 8 proven. 148 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:53:03,251 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:53:03,251 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2092756628] [2022-11-25 23:53:03,251 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2092756628] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:53:03,251 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [626262809] [2022-11-25 23:53:03,252 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-25 23:53:03,252 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:53:03,252 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:53:03,253 INFO L229 MonitoredProcess]: Starting monitored process 21 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:53:03,255 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (21)] Waiting until timeout for monitored process [2022-11-25 23:53:03,663 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 9 check-sat command(s) [2022-11-25 23:53:03,663 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:53:03,668 INFO L263 TraceCheckSpWp]: Trace formula consists of 365 conjuncts, 123 conjunts are in the unsatisfiable core [2022-11-25 23:53:03,672 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:53:03,679 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:53:04,294 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:53:04,405 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:04,512 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:04,618 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:04,730 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:04,855 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:04,977 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:05,094 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:05,185 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:05,188 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:53:05,189 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 17 treesize of output 10 [2022-11-25 23:53:05,195 INFO L134 CoverageAnalysis]: Checked inductivity of 156 backedges. 8 proven. 148 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:53:05,195 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:53:05,364 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_962 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_962) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 2 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:53:05,595 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_962 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_962) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 5 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:53:05,607 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_962 (Array Int Int))) (= 0 (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_962) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 6)))) is different from false [2022-11-25 23:53:05,722 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:53:05,722 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-25 23:53:05,730 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:53:05,730 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-25 23:53:05,740 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:53:06,437 INFO L134 CoverageAnalysis]: Checked inductivity of 156 backedges. 8 proven. 94 refuted. 0 times theorem prover too weak. 0 trivial. 54 not checked. [2022-11-25 23:53:06,438 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [626262809] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:53:06,438 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1430783349] [2022-11-25 23:53:06,439 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:53:06,439 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:53:06,440 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:53:06,440 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:53:06,440 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:53:06,473 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:06,477 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:53:06,507 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:53:06,563 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:06,590 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:06,633 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:06,676 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:06,712 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:53:06,712 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:53:06,782 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:06,789 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:06,790 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:06,791 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:06,823 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:53:06,824 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 52 treesize of output 54 [2022-11-25 23:53:06,893 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:53:06,893 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:53:06,955 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:53:09,277 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '5327#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:53:09,277 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:53:09,277 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:53:09,277 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [22, 22, 23] total 60 [2022-11-25 23:53:09,277 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [389895559] [2022-11-25 23:53:09,277 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:53:09,278 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 60 states [2022-11-25 23:53:09,278 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:53:09,278 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 60 interpolants. [2022-11-25 23:53:09,279 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=214, Invalid=3914, Unknown=44, NotChecked=384, Total=4556 [2022-11-25 23:53:09,279 INFO L87 Difference]: Start difference. First operand 54 states and 57 transitions. Second operand has 60 states, 60 states have (on average 2.1) internal successors, (126), 60 states have internal predecessors, (126), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:11,309 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:53:11,309 INFO L93 Difference]: Finished difference Result 82 states and 85 transitions. [2022-11-25 23:53:11,309 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 30 states. [2022-11-25 23:53:11,310 INFO L78 Accepts]: Start accepts. Automaton has has 60 states, 60 states have (on average 2.1) internal successors, (126), 60 states have internal predecessors, (126), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 45 [2022-11-25 23:53:11,310 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:53:11,310 INFO L225 Difference]: With dead ends: 82 [2022-11-25 23:53:11,310 INFO L226 Difference]: Without dead ends: 57 [2022-11-25 23:53:11,311 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 179 GetRequests, 96 SyntacticMatches, 0 SemanticMatches, 83 ConstructedPredicates, 3 IntricatePredicates, 0 DeprecatedPredicates, 1563 ImplicationChecksByTransitivity, 5.6s TimeCoverageRelationStatistics Valid=397, Invalid=6210, Unknown=47, NotChecked=486, Total=7140 [2022-11-25 23:53:11,311 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 77 mSDsluCounter, 74 mSDsCounter, 0 mSdLazyCounter, 1489 mSolverCounterSat, 10 mSolverCounterUnsat, 8 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 77 SdHoareTripleChecker+Valid, 77 SdHoareTripleChecker+Invalid, 1648 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 1489 IncrementalHoareTripleChecker+Invalid, 8 IncrementalHoareTripleChecker+Unknown, 141 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2022-11-25 23:53:11,311 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [77 Valid, 77 Invalid, 1648 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 1489 Invalid, 8 Unknown, 141 Unchecked, 1.0s Time] [2022-11-25 23:53:11,312 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 57 states. [2022-11-25 23:53:11,313 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 57 to 56. [2022-11-25 23:53:11,313 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 56 states, 54 states have (on average 1.0925925925925926) internal successors, (59), 55 states have internal predecessors, (59), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:11,314 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 56 states to 56 states and 59 transitions. [2022-11-25 23:53:11,314 INFO L78 Accepts]: Start accepts. Automaton has 56 states and 59 transitions. Word has length 45 [2022-11-25 23:53:11,314 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:53:11,314 INFO L495 AbstractCegarLoop]: Abstraction has 56 states and 59 transitions. [2022-11-25 23:53:11,314 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 60 states, 60 states have (on average 2.1) internal successors, (126), 60 states have internal predecessors, (126), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:11,314 INFO L276 IsEmpty]: Start isEmpty. Operand 56 states and 59 transitions. [2022-11-25 23:53:11,315 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 48 [2022-11-25 23:53:11,315 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:53:11,315 INFO L195 NwaCegarLoop]: trace histogram [9, 9, 8, 8, 8, 1, 1, 1, 1, 1] [2022-11-25 23:53:11,322 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (21)] Forceful destruction successful, exit code 0 [2022-11-25 23:53:11,522 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 21 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable26 [2022-11-25 23:53:11,522 INFO L420 AbstractCegarLoop]: === Iteration 28 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:53:11,522 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:53:11,522 INFO L85 PathProgramCache]: Analyzing trace with hash 1686310993, now seen corresponding path program 12 times [2022-11-25 23:53:11,523 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:53:11,523 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1150609009] [2022-11-25 23:53:11,523 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:53:11,523 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:53:11,554 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:53:12,242 INFO L134 CoverageAnalysis]: Checked inductivity of 173 backedges. 56 proven. 117 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:53:12,242 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:53:12,242 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1150609009] [2022-11-25 23:53:12,243 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1150609009] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:53:12,243 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [478116298] [2022-11-25 23:53:12,243 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-25 23:53:12,243 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:53:12,243 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:53:12,244 INFO L229 MonitoredProcess]: Starting monitored process 22 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:53:12,246 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (22)] Waiting until timeout for monitored process [2022-11-25 23:53:12,664 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-25 23:53:12,664 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:53:12,668 INFO L263 TraceCheckSpWp]: Trace formula consists of 378 conjuncts, 53 conjunts are in the unsatisfiable core [2022-11-25 23:53:12,669 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:53:12,684 INFO L321 Elim1Store]: treesize reduction 11, result has 45.0 percent of original size [2022-11-25 23:53:12,684 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 1 case distinctions, treesize of input 9 treesize of output 15 [2022-11-25 23:53:13,091 INFO L134 CoverageAnalysis]: Checked inductivity of 173 backedges. 72 proven. 101 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:53:13,091 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:53:13,973 INFO L134 CoverageAnalysis]: Checked inductivity of 173 backedges. 72 proven. 101 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:53:13,973 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [478116298] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:53:13,973 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1781716998] [2022-11-25 23:53:13,975 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:53:13,975 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:53:13,975 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:53:13,975 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:53:13,976 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:53:14,006 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:14,009 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:53:14,044 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:14,079 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:14,100 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:14,151 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:14,183 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:14,210 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:53:14,210 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:53:14,279 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:14,283 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:14,285 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:14,286 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:14,328 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:53:14,328 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 50 treesize of output 54 [2022-11-25 23:53:14,396 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:53:14,396 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:53:14,458 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:53:16,524 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '5836#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:53:16,524 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:53:16,524 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:53:16,524 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [20, 21, 21] total 52 [2022-11-25 23:53:16,524 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [695892561] [2022-11-25 23:53:16,524 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:53:16,524 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 53 states [2022-11-25 23:53:16,525 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:53:16,525 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 53 interpolants. [2022-11-25 23:53:16,526 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=460, Invalid=3200, Unknown=0, NotChecked=0, Total=3660 [2022-11-25 23:53:16,526 INFO L87 Difference]: Start difference. First operand 56 states and 59 transitions. Second operand has 53 states, 52 states have (on average 2.25) internal successors, (117), 53 states have internal predecessors, (117), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:17,311 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:53:17,311 INFO L93 Difference]: Finished difference Result 57 states and 59 transitions. [2022-11-25 23:53:17,311 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2022-11-25 23:53:17,312 INFO L78 Accepts]: Start accepts. Automaton has has 53 states, 52 states have (on average 2.25) internal successors, (117), 53 states have internal predecessors, (117), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 47 [2022-11-25 23:53:17,312 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:53:17,312 INFO L225 Difference]: With dead ends: 57 [2022-11-25 23:53:17,312 INFO L226 Difference]: Without dead ends: 57 [2022-11-25 23:53:17,313 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 170 GetRequests, 100 SyntacticMatches, 0 SemanticMatches, 70 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1534 ImplicationChecksByTransitivity, 3.6s TimeCoverageRelationStatistics Valid=878, Invalid=4234, Unknown=0, NotChecked=0, Total=5112 [2022-11-25 23:53:17,313 INFO L413 NwaCegarLoop]: 1 mSDtfsCounter, 278 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 750 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 278 SdHoareTripleChecker+Valid, 1 SdHoareTripleChecker+Invalid, 751 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 750 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2022-11-25 23:53:17,314 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [278 Valid, 1 Invalid, 751 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 750 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2022-11-25 23:53:17,315 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 57 states. [2022-11-25 23:53:17,316 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 57 to 56. [2022-11-25 23:53:17,316 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 56 states, 54 states have (on average 1.0740740740740742) internal successors, (58), 55 states have internal predecessors, (58), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:17,317 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 56 states to 56 states and 58 transitions. [2022-11-25 23:53:17,317 INFO L78 Accepts]: Start accepts. Automaton has 56 states and 58 transitions. Word has length 47 [2022-11-25 23:53:17,317 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:53:17,317 INFO L495 AbstractCegarLoop]: Abstraction has 56 states and 58 transitions. [2022-11-25 23:53:17,317 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 53 states, 52 states have (on average 2.25) internal successors, (117), 53 states have internal predecessors, (117), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:17,318 INFO L276 IsEmpty]: Start isEmpty. Operand 56 states and 58 transitions. [2022-11-25 23:53:17,318 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 51 [2022-11-25 23:53:17,318 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:53:17,318 INFO L195 NwaCegarLoop]: trace histogram [9, 9, 9, 9, 9, 1, 1, 1, 1, 1] [2022-11-25 23:53:17,327 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (22)] Forceful destruction successful, exit code 0 [2022-11-25 23:53:17,526 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 22 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable27 [2022-11-25 23:53:17,527 INFO L420 AbstractCegarLoop]: === Iteration 29 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:53:17,527 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:53:17,527 INFO L85 PathProgramCache]: Analyzing trace with hash -1341681048, now seen corresponding path program 13 times [2022-11-25 23:53:17,527 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:53:17,527 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1281701727] [2022-11-25 23:53:17,527 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:53:17,527 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:53:17,562 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:53:19,025 INFO L134 CoverageAnalysis]: Checked inductivity of 198 backedges. 9 proven. 189 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:53:19,025 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:53:19,025 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1281701727] [2022-11-25 23:53:19,025 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1281701727] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:53:19,025 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [647659946] [2022-11-25 23:53:19,025 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-25 23:53:19,026 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:53:19,026 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:53:19,027 INFO L229 MonitoredProcess]: Starting monitored process 23 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:53:19,046 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (23)] Waiting until timeout for monitored process [2022-11-25 23:53:19,229 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:53:19,233 INFO L263 TraceCheckSpWp]: Trace formula consists of 401 conjuncts, 102 conjunts are in the unsatisfiable core [2022-11-25 23:53:19,237 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:53:19,242 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:53:19,739 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:19,825 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:53:19,890 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:19,908 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:19,924 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:19,940 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:19,958 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:19,974 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:19,993 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:20,049 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 7 [2022-11-25 23:53:20,053 INFO L134 CoverageAnalysis]: Checked inductivity of 198 backedges. 9 proven. 189 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:53:20,053 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:53:20,067 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1144 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1144) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 1)) 0)) is different from false [2022-11-25 23:53:20,477 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1144 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1144) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 6)) 0)) is different from false [2022-11-25 23:53:20,722 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 13 [2022-11-25 23:53:20,724 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-25 23:53:21,012 INFO L134 CoverageAnalysis]: Checked inductivity of 198 backedges. 9 proven. 151 refuted. 0 times theorem prover too weak. 0 trivial. 38 not checked. [2022-11-25 23:53:21,013 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [647659946] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:53:21,013 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [893630489] [2022-11-25 23:53:21,014 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:53:21,014 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:53:21,015 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:53:21,015 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:53:21,015 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:53:21,039 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:21,043 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:53:21,076 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:21,112 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:21,134 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:21,171 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:21,219 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:21,253 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:53:21,253 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:53:21,305 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:21,309 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:21,310 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:21,311 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:21,343 INFO L321 Elim1Store]: treesize reduction 95, result has 15.9 percent of original size [2022-11-25 23:53:21,344 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 54 treesize of output 56 [2022-11-25 23:53:21,400 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:53:21,400 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:53:21,469 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:53:23,663 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6320#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:53:23,663 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:53:23,663 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:53:23,663 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [24, 25, 25] total 47 [2022-11-25 23:53:23,663 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [192509297] [2022-11-25 23:53:23,664 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:53:23,664 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 47 states [2022-11-25 23:53:23,664 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:53:23,665 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 47 interpolants. [2022-11-25 23:53:23,665 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=153, Invalid=2557, Unknown=54, NotChecked=206, Total=2970 [2022-11-25 23:53:23,665 INFO L87 Difference]: Start difference. First operand 56 states and 58 transitions. Second operand has 47 states, 47 states have (on average 2.148936170212766) internal successors, (101), 47 states have internal predecessors, (101), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:25,463 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:53:25,463 INFO L93 Difference]: Finished difference Result 87 states and 89 transitions. [2022-11-25 23:53:25,464 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 33 states. [2022-11-25 23:53:25,464 INFO L78 Accepts]: Start accepts. Automaton has has 47 states, 47 states have (on average 2.148936170212766) internal successors, (101), 47 states have internal predecessors, (101), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 50 [2022-11-25 23:53:25,464 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:53:25,464 INFO L225 Difference]: With dead ends: 87 [2022-11-25 23:53:25,465 INFO L226 Difference]: Without dead ends: 59 [2022-11-25 23:53:25,466 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 197 GetRequests, 121 SyntacticMatches, 7 SemanticMatches, 69 ConstructedPredicates, 2 IntricatePredicates, 1 DeprecatedPredicates, 861 ImplicationChecksByTransitivity, 4.9s TimeCoverageRelationStatistics Valid=274, Invalid=4369, Unknown=57, NotChecked=270, Total=4970 [2022-11-25 23:53:25,466 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 50 mSDsluCounter, 56 mSDsCounter, 0 mSdLazyCounter, 1374 mSolverCounterSat, 18 mSolverCounterUnsat, 12 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 50 SdHoareTripleChecker+Valid, 59 SdHoareTripleChecker+Invalid, 1507 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 18 IncrementalHoareTripleChecker+Valid, 1374 IncrementalHoareTripleChecker+Invalid, 12 IncrementalHoareTripleChecker+Unknown, 103 IncrementalHoareTripleChecker+Unchecked, 0.9s IncrementalHoareTripleChecker+Time [2022-11-25 23:53:25,466 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [50 Valid, 59 Invalid, 1507 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [18 Valid, 1374 Invalid, 12 Unknown, 103 Unchecked, 0.9s Time] [2022-11-25 23:53:25,467 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 59 states. [2022-11-25 23:53:25,468 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 59 to 58. [2022-11-25 23:53:25,468 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 58 states, 56 states have (on average 1.0714285714285714) internal successors, (60), 57 states have internal predecessors, (60), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:25,469 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 58 states to 58 states and 60 transitions. [2022-11-25 23:53:25,469 INFO L78 Accepts]: Start accepts. Automaton has 58 states and 60 transitions. Word has length 50 [2022-11-25 23:53:25,469 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:53:25,469 INFO L495 AbstractCegarLoop]: Abstraction has 58 states and 60 transitions. [2022-11-25 23:53:25,469 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 47 states, 47 states have (on average 2.148936170212766) internal successors, (101), 47 states have internal predecessors, (101), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:25,470 INFO L276 IsEmpty]: Start isEmpty. Operand 58 states and 60 transitions. [2022-11-25 23:53:25,470 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2022-11-25 23:53:25,470 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:53:25,470 INFO L195 NwaCegarLoop]: trace histogram [10, 10, 9, 9, 9, 1, 1, 1, 1, 1] [2022-11-25 23:53:25,480 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (23)] Forceful destruction successful, exit code 0 [2022-11-25 23:53:25,677 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable28,23 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:53:25,677 INFO L420 AbstractCegarLoop]: === Iteration 30 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:53:25,677 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:53:25,677 INFO L85 PathProgramCache]: Analyzing trace with hash -1220294538, now seen corresponding path program 14 times [2022-11-25 23:53:25,677 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:53:25,677 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [18679269] [2022-11-25 23:53:25,678 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:53:25,678 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:53:25,706 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:53:26,731 INFO L134 CoverageAnalysis]: Checked inductivity of 217 backedges. 72 proven. 145 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:53:26,731 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:53:26,731 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [18679269] [2022-11-25 23:53:26,731 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [18679269] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:53:26,731 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [430872512] [2022-11-25 23:53:26,731 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-25 23:53:26,731 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:53:26,731 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:53:26,732 INFO L229 MonitoredProcess]: Starting monitored process 24 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:53:26,735 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (24)] Waiting until timeout for monitored process [2022-11-25 23:53:27,552 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 10 check-sat command(s) [2022-11-25 23:53:27,552 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:53:27,557 INFO L263 TraceCheckSpWp]: Trace formula consists of 401 conjuncts, 152 conjunts are in the unsatisfiable core [2022-11-25 23:53:27,561 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:53:27,568 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:53:28,073 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:53:28,164 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:28,279 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:28,393 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:28,513 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:28,721 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 23 treesize of output 23 [2022-11-25 23:53:28,962 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 31 treesize of output 29 [2022-11-25 23:53:29,209 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 39 treesize of output 35 [2022-11-25 23:53:29,490 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 49 treesize of output 43 [2022-11-25 23:53:29,690 INFO L321 Elim1Store]: treesize reduction 16, result has 62.8 percent of original size [2022-11-25 23:53:29,691 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 6 select indices, 6 select index equivalence classes, 10 disjoint index pairs (out of 15 index pairs), introduced 6 new quantified variables, introduced 5 case distinctions, treesize of input 49 treesize of output 49 [2022-11-25 23:53:29,849 INFO L134 CoverageAnalysis]: Checked inductivity of 217 backedges. 11 proven. 186 refuted. 0 times theorem prover too weak. 20 trivial. 0 not checked. [2022-11-25 23:53:29,849 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:53:32,943 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-25 23:53:32,952 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:53:32,953 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 116 treesize of output 72 [2022-11-25 23:53:32,988 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:53:32,988 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 6 select indices, 6 select index equivalence classes, 10 disjoint index pairs (out of 15 index pairs), introduced 6 new quantified variables, introduced 15 case distinctions, treesize of input 137 treesize of output 140 [2022-11-25 23:53:33,025 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:53:33,030 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:53:33,034 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:53:33,039 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:53:33,043 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:53:35,016 INFO L134 CoverageAnalysis]: Checked inductivity of 217 backedges. 16 proven. 197 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2022-11-25 23:53:35,016 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [430872512] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:53:35,016 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2034616492] [2022-11-25 23:53:35,017 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:53:35,017 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:53:35,018 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:53:35,018 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:53:35,018 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:53:35,048 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:35,052 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:53:35,086 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:53:35,123 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:35,144 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:35,180 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:53:35,234 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:35,267 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:53:35,268 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:53:35,316 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:35,320 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:35,321 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:53:35,322 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:35,323 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:53:35,355 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:53:35,356 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 1 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 50 treesize of output 54 [2022-11-25 23:53:35,425 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:53:35,425 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:53:35,489 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:53:38,230 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6889#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:53:38,230 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:53:38,230 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:53:38,230 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [22, 24, 32] total 76 [2022-11-25 23:53:38,231 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [770317628] [2022-11-25 23:53:38,231 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:53:38,231 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 77 states [2022-11-25 23:53:38,231 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:53:38,232 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 77 interpolants. [2022-11-25 23:53:38,232 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=594, Invalid=6468, Unknown=78, NotChecked=0, Total=7140 [2022-11-25 23:53:38,232 INFO L87 Difference]: Start difference. First operand 58 states and 60 transitions. Second operand has 77 states, 76 states have (on average 1.9078947368421053) internal successors, (145), 77 states have internal predecessors, (145), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:55,699 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:53:55,699 INFO L93 Difference]: Finished difference Result 76 states and 77 transitions. [2022-11-25 23:53:55,699 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 53 states. [2022-11-25 23:53:55,705 INFO L78 Accepts]: Start accepts. Automaton has has 77 states, 76 states have (on average 1.9078947368421053) internal successors, (145), 77 states have internal predecessors, (145), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 52 [2022-11-25 23:53:55,705 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:53:55,706 INFO L225 Difference]: With dead ends: 76 [2022-11-25 23:53:55,706 INFO L226 Difference]: Without dead ends: 76 [2022-11-25 23:53:55,707 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 227 GetRequests, 93 SyntacticMatches, 0 SemanticMatches, 134 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3401 ImplicationChecksByTransitivity, 23.8s TimeCoverageRelationStatistics Valid=2557, Invalid=15710, Unknown=93, NotChecked=0, Total=18360 [2022-11-25 23:53:55,708 INFO L413 NwaCegarLoop]: 1 mSDtfsCounter, 538 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 1723 mSolverCounterSat, 24 mSolverCounterUnsat, 48 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 538 SdHoareTripleChecker+Valid, 1 SdHoareTripleChecker+Invalid, 1795 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 24 IncrementalHoareTripleChecker+Valid, 1723 IncrementalHoareTripleChecker+Invalid, 48 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.2s IncrementalHoareTripleChecker+Time [2022-11-25 23:53:55,708 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [538 Valid, 1 Invalid, 1795 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [24 Valid, 1723 Invalid, 48 Unknown, 0 Unchecked, 2.2s Time] [2022-11-25 23:53:55,709 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 76 states. [2022-11-25 23:53:55,710 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 76 to 69. [2022-11-25 23:53:55,710 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 69 states, 67 states have (on average 1.0895522388059702) internal successors, (73), 68 states have internal predecessors, (73), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:55,711 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 69 states to 69 states and 73 transitions. [2022-11-25 23:53:55,711 INFO L78 Accepts]: Start accepts. Automaton has 69 states and 73 transitions. Word has length 52 [2022-11-25 23:53:55,711 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:53:55,711 INFO L495 AbstractCegarLoop]: Abstraction has 69 states and 73 transitions. [2022-11-25 23:53:55,711 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 77 states, 76 states have (on average 1.9078947368421053) internal successors, (145), 77 states have internal predecessors, (145), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:53:55,712 INFO L276 IsEmpty]: Start isEmpty. Operand 69 states and 73 transitions. [2022-11-25 23:53:55,712 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 57 [2022-11-25 23:53:55,712 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:53:55,712 INFO L195 NwaCegarLoop]: trace histogram [11, 10, 10, 10, 10, 1, 1, 1, 1, 1] [2022-11-25 23:53:55,720 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (24)] Forceful destruction successful, exit code 0 [2022-11-25 23:53:55,920 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable29,24 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:53:55,920 INFO L420 AbstractCegarLoop]: === Iteration 31 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:53:55,920 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:53:55,921 INFO L85 PathProgramCache]: Analyzing trace with hash 1721292848, now seen corresponding path program 6 times [2022-11-25 23:53:55,921 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:53:55,921 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [156785680] [2022-11-25 23:53:55,921 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:53:55,921 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:53:55,954 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:53:57,600 INFO L134 CoverageAnalysis]: Checked inductivity of 255 backedges. 127 proven. 128 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:53:57,601 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:53:57,601 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [156785680] [2022-11-25 23:53:57,601 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [156785680] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:53:57,601 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1738394464] [2022-11-25 23:53:57,601 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-25 23:53:57,601 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:53:57,601 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:53:57,602 INFO L229 MonitoredProcess]: Starting monitored process 25 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:53:57,606 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (25)] Waiting until timeout for monitored process [2022-11-25 23:53:58,232 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-25 23:53:58,233 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:53:58,238 INFO L263 TraceCheckSpWp]: Trace formula consists of 443 conjuncts, 127 conjunts are in the unsatisfiable core [2022-11-25 23:53:58,241 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:53:58,252 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:53:59,183 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:53:59,292 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:59,421 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:59,557 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:59,693 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:59,821 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:53:59,944 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:00,075 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:00,200 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:00,323 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:00,511 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:00,513 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:54:00,513 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 17 treesize of output 10 [2022-11-25 23:54:00,577 INFO L134 CoverageAnalysis]: Checked inductivity of 255 backedges. 20 proven. 235 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:54:00,578 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:54:01,142 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1354 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1354) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 4)) 0)) is different from false [2022-11-25 23:54:01,285 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1354 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1354) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 6)) 0)) is different from false [2022-11-25 23:54:01,296 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1354 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1354) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 7 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:54:01,306 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1354 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1354) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 8)) 0)) is different from false [2022-11-25 23:54:01,459 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:54:01,459 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-25 23:54:01,465 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:54:01,466 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-25 23:54:01,473 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:54:02,796 INFO L134 CoverageAnalysis]: Checked inductivity of 255 backedges. 20 proven. 145 refuted. 0 times theorem prover too weak. 0 trivial. 90 not checked. [2022-11-25 23:54:02,796 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1738394464] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:54:02,796 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [17303612] [2022-11-25 23:54:02,798 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:54:02,798 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:54:02,798 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:54:02,798 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:54:02,798 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:54:02,834 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:02,839 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:54:02,879 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:54:02,916 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:02,941 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:02,991 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:03,037 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:03,065 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:54:03,066 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:54:03,134 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:03,135 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:03,137 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:03,140 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:03,182 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:54:03,183 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 52 treesize of output 54 [2022-11-25 23:54:03,247 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:54:03,247 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:54:03,305 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:54:06,347 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '7549#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:54:06,347 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:54:06,347 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:54:06,347 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [26, 27, 27] total 75 [2022-11-25 23:54:06,347 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [987660390] [2022-11-25 23:54:06,347 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:54:06,348 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 75 states [2022-11-25 23:54:06,348 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:54:06,348 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 75 interpolants. [2022-11-25 23:54:06,348 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=253, Invalid=5837, Unknown=88, NotChecked=628, Total=6806 [2022-11-25 23:54:06,349 INFO L87 Difference]: Start difference. First operand 69 states and 73 transitions. Second operand has 75 states, 75 states have (on average 2.1466666666666665) internal successors, (161), 75 states have internal predecessors, (161), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:54:13,205 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:54:13,206 INFO L93 Difference]: Finished difference Result 103 states and 107 transitions. [2022-11-25 23:54:13,206 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 37 states. [2022-11-25 23:54:13,206 INFO L78 Accepts]: Start accepts. Automaton has has 75 states, 75 states have (on average 2.1466666666666665) internal successors, (161), 75 states have internal predecessors, (161), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 56 [2022-11-25 23:54:13,206 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:54:13,207 INFO L225 Difference]: With dead ends: 103 [2022-11-25 23:54:13,207 INFO L226 Difference]: Without dead ends: 72 [2022-11-25 23:54:13,208 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 226 GetRequests, 111 SyntacticMatches, 0 SemanticMatches, 115 ConstructedPredicates, 4 IntricatePredicates, 0 DeprecatedPredicates, 2114 ImplicationChecksByTransitivity, 12.1s TimeCoverageRelationStatistics Valid=632, Invalid=11950, Unknown=90, NotChecked=900, Total=13572 [2022-11-25 23:54:13,209 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 21 mSDsluCounter, 79 mSDsCounter, 0 mSdLazyCounter, 2526 mSolverCounterSat, 32 mSolverCounterUnsat, 41 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 21 SdHoareTripleChecker+Valid, 82 SdHoareTripleChecker+Invalid, 2822 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 32 IncrementalHoareTripleChecker+Valid, 2526 IncrementalHoareTripleChecker+Invalid, 41 IncrementalHoareTripleChecker+Unknown, 223 IncrementalHoareTripleChecker+Unchecked, 2.3s IncrementalHoareTripleChecker+Time [2022-11-25 23:54:13,209 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [21 Valid, 82 Invalid, 2822 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [32 Valid, 2526 Invalid, 41 Unknown, 223 Unchecked, 2.3s Time] [2022-11-25 23:54:13,209 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 72 states. [2022-11-25 23:54:13,211 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 72 to 71. [2022-11-25 23:54:13,211 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 71 states, 69 states have (on average 1.0869565217391304) internal successors, (75), 70 states have internal predecessors, (75), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:54:13,211 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 71 states to 71 states and 75 transitions. [2022-11-25 23:54:13,211 INFO L78 Accepts]: Start accepts. Automaton has 71 states and 75 transitions. Word has length 56 [2022-11-25 23:54:13,212 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:54:13,212 INFO L495 AbstractCegarLoop]: Abstraction has 71 states and 75 transitions. [2022-11-25 23:54:13,212 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 75 states, 75 states have (on average 2.1466666666666665) internal successors, (161), 75 states have internal predecessors, (161), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:54:13,212 INFO L276 IsEmpty]: Start isEmpty. Operand 71 states and 75 transitions. [2022-11-25 23:54:13,213 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 59 [2022-11-25 23:54:13,213 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:54:13,213 INFO L195 NwaCegarLoop]: trace histogram [11, 11, 11, 10, 10, 1, 1, 1, 1, 1] [2022-11-25 23:54:13,222 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (25)] Ended with exit code 0 [2022-11-25 23:54:13,420 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 25 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable30 [2022-11-25 23:54:13,421 INFO L420 AbstractCegarLoop]: === Iteration 32 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:54:13,421 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:54:13,421 INFO L85 PathProgramCache]: Analyzing trace with hash -2048144450, now seen corresponding path program 7 times [2022-11-25 23:54:13,421 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:54:13,421 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1242824593] [2022-11-25 23:54:13,422 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:54:13,422 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:54:13,472 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:54:15,028 INFO L134 CoverageAnalysis]: Checked inductivity of 276 backedges. 81 proven. 195 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:54:15,028 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:54:15,028 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1242824593] [2022-11-25 23:54:15,028 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1242824593] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:54:15,028 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1336333690] [2022-11-25 23:54:15,028 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-25 23:54:15,029 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:54:15,029 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:54:15,030 INFO L229 MonitoredProcess]: Starting monitored process 26 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:54:15,031 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (26)] Waiting until timeout for monitored process [2022-11-25 23:54:15,235 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:54:15,239 INFO L263 TraceCheckSpWp]: Trace formula consists of 456 conjuncts, 75 conjunts are in the unsatisfiable core [2022-11-25 23:54:15,242 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:54:15,313 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:15,313 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 9 treesize of output 11 [2022-11-25 23:54:15,321 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:54:17,133 INFO L134 CoverageAnalysis]: Checked inductivity of 276 backedges. 100 proven. 176 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:54:17,133 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:54:19,200 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:19,305 INFO L134 CoverageAnalysis]: Checked inductivity of 276 backedges. 121 proven. 155 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:54:19,305 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1336333690] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:54:19,305 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [7272951] [2022-11-25 23:54:19,307 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:54:19,307 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:54:19,307 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:54:19,308 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:54:19,308 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:54:19,341 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:19,348 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:54:19,373 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:19,414 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:19,434 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:19,486 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:19,538 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:19,565 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:54:19,566 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:54:19,634 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:19,635 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:19,637 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:19,640 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:19,682 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:54:19,682 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 50 treesize of output 54 [2022-11-25 23:54:19,740 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:54:19,740 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:54:19,802 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:54:22,559 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '8218#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:54:22,559 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:54:22,559 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:54:22,559 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [25, 25, 25] total 75 [2022-11-25 23:54:22,559 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [837485391] [2022-11-25 23:54:22,559 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:54:22,559 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 77 states [2022-11-25 23:54:22,559 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:54:22,560 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 77 interpolants. [2022-11-25 23:54:22,561 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=548, Invalid=6592, Unknown=0, NotChecked=0, Total=7140 [2022-11-25 23:54:22,561 INFO L87 Difference]: Start difference. First operand 71 states and 75 transitions. Second operand has 77 states, 76 states have (on average 2.289473684210526) internal successors, (174), 76 states have internal predecessors, (174), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:54:26,191 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:54:26,191 INFO L93 Difference]: Finished difference Result 71 states and 74 transitions. [2022-11-25 23:54:26,192 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 27 states. [2022-11-25 23:54:26,192 INFO L78 Accepts]: Start accepts. Automaton has has 77 states, 76 states have (on average 2.289473684210526) internal successors, (174), 76 states have internal predecessors, (174), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 58 [2022-11-25 23:54:26,192 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:54:26,193 INFO L225 Difference]: With dead ends: 71 [2022-11-25 23:54:26,193 INFO L226 Difference]: Without dead ends: 71 [2022-11-25 23:54:26,194 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 221 GetRequests, 114 SyntacticMatches, 0 SemanticMatches, 107 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2716 ImplicationChecksByTransitivity, 9.0s TimeCoverageRelationStatistics Valid=1601, Invalid=10171, Unknown=0, NotChecked=0, Total=11772 [2022-11-25 23:54:26,195 INFO L413 NwaCegarLoop]: 0 mSDtfsCounter, 496 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 1684 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 496 SdHoareTripleChecker+Valid, 0 SdHoareTripleChecker+Invalid, 1694 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 1684 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.2s IncrementalHoareTripleChecker+Time [2022-11-25 23:54:26,195 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [496 Valid, 0 Invalid, 1694 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 1684 Invalid, 0 Unknown, 0 Unchecked, 1.2s Time] [2022-11-25 23:54:26,195 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 71 states. [2022-11-25 23:54:26,197 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 71 to 71. [2022-11-25 23:54:26,197 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 71 states, 69 states have (on average 1.0724637681159421) internal successors, (74), 70 states have internal predecessors, (74), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:54:26,197 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 71 states to 71 states and 74 transitions. [2022-11-25 23:54:26,197 INFO L78 Accepts]: Start accepts. Automaton has 71 states and 74 transitions. Word has length 58 [2022-11-25 23:54:26,198 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:54:26,198 INFO L495 AbstractCegarLoop]: Abstraction has 71 states and 74 transitions. [2022-11-25 23:54:26,198 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 77 states, 76 states have (on average 2.289473684210526) internal successors, (174), 76 states have internal predecessors, (174), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:54:26,198 INFO L276 IsEmpty]: Start isEmpty. Operand 71 states and 74 transitions. [2022-11-25 23:54:26,199 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 62 [2022-11-25 23:54:26,199 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:54:26,199 INFO L195 NwaCegarLoop]: trace histogram [12, 11, 11, 11, 11, 1, 1, 1, 1, 1] [2022-11-25 23:54:26,206 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (26)] Forceful destruction successful, exit code 0 [2022-11-25 23:54:26,405 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 26 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable31 [2022-11-25 23:54:26,405 INFO L420 AbstractCegarLoop]: === Iteration 33 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:54:26,405 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:54:26,406 INFO L85 PathProgramCache]: Analyzing trace with hash -1965893873, now seen corresponding path program 8 times [2022-11-25 23:54:26,406 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:54:26,406 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [727277803] [2022-11-25 23:54:26,406 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:54:26,406 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:54:26,459 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:54:28,094 INFO L134 CoverageAnalysis]: Checked inductivity of 308 backedges. 156 proven. 152 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:54:28,094 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:54:28,095 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [727277803] [2022-11-25 23:54:28,095 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [727277803] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:54:28,095 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [929160787] [2022-11-25 23:54:28,095 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-25 23:54:28,095 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:54:28,095 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:54:28,096 INFO L229 MonitoredProcess]: Starting monitored process 27 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:54:28,098 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (27)] Waiting until timeout for monitored process [2022-11-25 23:54:29,250 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 12 check-sat command(s) [2022-11-25 23:54:29,250 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:54:29,256 INFO L263 TraceCheckSpWp]: Trace formula consists of 479 conjuncts, 128 conjunts are in the unsatisfiable core [2022-11-25 23:54:29,260 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:54:29,269 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:54:30,262 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:54:30,381 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:30,511 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:30,647 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:30,804 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:30,948 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:31,095 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:31,239 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:31,381 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:31,537 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:31,689 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:54:31,816 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:31,819 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:54:31,819 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 17 treesize of output 10 [2022-11-25 23:54:31,898 INFO L134 CoverageAnalysis]: Checked inductivity of 308 backedges. 22 proven. 286 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:54:31,899 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:54:32,558 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1571 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1571) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 4)) 0)) is different from false [2022-11-25 23:54:32,906 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1571 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1571) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 7 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:54:32,918 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1571 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1571) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 8)) 0)) is different from false [2022-11-25 23:54:32,930 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1571 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1571) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 9)) 0)) is different from false [2022-11-25 23:54:33,121 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:54:33,122 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-25 23:54:33,129 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:54:33,129 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-25 23:54:33,132 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:54:34,632 INFO L134 CoverageAnalysis]: Checked inductivity of 308 backedges. 22 proven. 184 refuted. 0 times theorem prover too weak. 0 trivial. 102 not checked. [2022-11-25 23:54:34,632 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [929160787] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:54:34,632 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1431604247] [2022-11-25 23:54:34,633 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:54:34,633 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:54:34,634 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:54:34,635 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:54:34,635 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:54:34,671 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:34,675 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:54:34,707 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:34,750 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:34,769 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:34,812 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:34,847 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:34,881 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:54:34,881 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:54:34,945 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:34,949 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:34,951 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:34,952 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:34,953 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:34,996 INFO L321 Elim1Store]: treesize reduction 99, result has 15.4 percent of original size [2022-11-25 23:54:34,996 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 1 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 48 treesize of output 52 [2022-11-25 23:54:35,059 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:54:35,059 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:54:35,111 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:54:38,172 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '8856#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:54:38,173 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:54:38,173 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:54:38,173 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [28, 28, 29] total 80 [2022-11-25 23:54:38,173 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1145488872] [2022-11-25 23:54:38,173 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:54:38,173 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 80 states [2022-11-25 23:54:38,173 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:54:38,174 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 80 interpolants. [2022-11-25 23:54:38,175 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=273, Invalid=6587, Unknown=128, NotChecked=668, Total=7656 [2022-11-25 23:54:38,175 INFO L87 Difference]: Start difference. First operand 71 states and 74 transitions. Second operand has 80 states, 80 states have (on average 2.2) internal successors, (176), 80 states have internal predecessors, (176), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:54:46,840 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:54:46,840 INFO L93 Difference]: Finished difference Result 108 states and 111 transitions. [2022-11-25 23:54:46,841 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 39 states. [2022-11-25 23:54:46,841 INFO L78 Accepts]: Start accepts. Automaton has has 80 states, 80 states have (on average 2.2) internal successors, (176), 80 states have internal predecessors, (176), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 61 [2022-11-25 23:54:46,841 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:54:46,842 INFO L225 Difference]: With dead ends: 108 [2022-11-25 23:54:46,842 INFO L226 Difference]: Without dead ends: 74 [2022-11-25 23:54:46,842 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 245 GetRequests, 123 SyntacticMatches, 0 SemanticMatches, 122 ConstructedPredicates, 4 IntricatePredicates, 0 DeprecatedPredicates, 2325 ImplicationChecksByTransitivity, 14.1s TimeCoverageRelationStatistics Valid=787, Invalid=13378, Unknown=131, NotChecked=956, Total=15252 [2022-11-25 23:54:46,843 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 138 mSDsluCounter, 81 mSDsCounter, 0 mSdLazyCounter, 2802 mSolverCounterSat, 33 mSolverCounterUnsat, 60 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 138 SdHoareTripleChecker+Valid, 84 SdHoareTripleChecker+Invalid, 3147 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 33 IncrementalHoareTripleChecker+Valid, 2802 IncrementalHoareTripleChecker+Invalid, 60 IncrementalHoareTripleChecker+Unknown, 252 IncrementalHoareTripleChecker+Unchecked, 2.9s IncrementalHoareTripleChecker+Time [2022-11-25 23:54:46,843 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [138 Valid, 84 Invalid, 3147 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [33 Valid, 2802 Invalid, 60 Unknown, 252 Unchecked, 2.9s Time] [2022-11-25 23:54:46,843 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 74 states. [2022-11-25 23:54:46,845 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 74 to 73. [2022-11-25 23:54:46,846 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 73 states, 71 states have (on average 1.0704225352112675) internal successors, (76), 72 states have internal predecessors, (76), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:54:46,846 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 73 states to 73 states and 76 transitions. [2022-11-25 23:54:46,846 INFO L78 Accepts]: Start accepts. Automaton has 73 states and 76 transitions. Word has length 61 [2022-11-25 23:54:46,847 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:54:46,847 INFO L495 AbstractCegarLoop]: Abstraction has 73 states and 76 transitions. [2022-11-25 23:54:46,847 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 80 states, 80 states have (on average 2.2) internal successors, (176), 80 states have internal predecessors, (176), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:54:46,847 INFO L276 IsEmpty]: Start isEmpty. Operand 73 states and 76 transitions. [2022-11-25 23:54:46,848 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 64 [2022-11-25 23:54:46,848 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:54:46,848 INFO L195 NwaCegarLoop]: trace histogram [12, 12, 12, 11, 11, 1, 1, 1, 1, 1] [2022-11-25 23:54:46,861 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (27)] Forceful destruction successful, exit code 0 [2022-11-25 23:54:47,054 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 27 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable32 [2022-11-25 23:54:47,055 INFO L420 AbstractCegarLoop]: === Iteration 34 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:54:47,055 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:54:47,055 INFO L85 PathProgramCache]: Analyzing trace with hash -894440383, now seen corresponding path program 9 times [2022-11-25 23:54:47,055 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:54:47,055 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [682752717] [2022-11-25 23:54:47,055 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:54:47,056 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:54:47,106 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:54:48,805 INFO L134 CoverageAnalysis]: Checked inductivity of 331 backedges. 100 proven. 231 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:54:48,805 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:54:48,805 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [682752717] [2022-11-25 23:54:48,806 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [682752717] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:54:48,806 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [899309003] [2022-11-25 23:54:48,806 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-25 23:54:48,806 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:54:48,806 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:54:48,807 INFO L229 MonitoredProcess]: Starting monitored process 28 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:54:48,813 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (28)] Waiting until timeout for monitored process [2022-11-25 23:54:50,148 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-25 23:54:50,148 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:54:50,155 INFO L263 TraceCheckSpWp]: Trace formula consists of 492 conjuncts, 98 conjunts are in the unsatisfiable core [2022-11-25 23:54:50,159 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:54:50,250 INFO L321 Elim1Store]: treesize reduction 11, result has 45.0 percent of original size [2022-11-25 23:54:50,250 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 1 case distinctions, treesize of input 9 treesize of output 15 [2022-11-25 23:54:50,268 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:54:52,748 INFO L134 CoverageAnalysis]: Checked inductivity of 331 backedges. 121 proven. 210 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:54:52,748 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:54:55,270 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:55,373 INFO L134 CoverageAnalysis]: Checked inductivity of 331 backedges. 144 proven. 187 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:54:55,373 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [899309003] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:54:55,373 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [614306579] [2022-11-25 23:54:55,374 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:54:55,375 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:54:55,375 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:54:55,375 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:54:55,375 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:54:55,414 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:55,425 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:54:55,480 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:55,524 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:55,548 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:55,617 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:54:55,667 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:55,714 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:54:55,714 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:54:55,796 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:55,797 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:54:55,799 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:55,802 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:54:55,852 INFO L321 Elim1Store]: treesize reduction 99, result has 15.4 percent of original size [2022-11-25 23:54:55,852 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 48 treesize of output 52 [2022-11-25 23:54:55,912 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:54:55,912 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:54:55,964 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:54:58,749 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '9572#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:54:58,749 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:54:58,749 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:54:58,749 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [27, 27, 27] total 81 [2022-11-25 23:54:58,749 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [809038259] [2022-11-25 23:54:58,749 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:54:58,751 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 83 states [2022-11-25 23:54:58,751 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:54:58,752 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 83 interpolants. [2022-11-25 23:54:58,752 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=620, Invalid=7570, Unknown=0, NotChecked=0, Total=8190 [2022-11-25 23:54:58,753 INFO L87 Difference]: Start difference. First operand 73 states and 76 transitions. Second operand has 83 states, 82 states have (on average 2.3048780487804876) internal successors, (189), 82 states have internal predecessors, (189), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:55:02,861 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:55:02,861 INFO L93 Difference]: Finished difference Result 73 states and 75 transitions. [2022-11-25 23:55:02,862 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 29 states. [2022-11-25 23:55:02,862 INFO L78 Accepts]: Start accepts. Automaton has has 83 states, 82 states have (on average 2.3048780487804876) internal successors, (189), 82 states have internal predecessors, (189), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 63 [2022-11-25 23:55:02,862 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:55:02,862 INFO L225 Difference]: With dead ends: 73 [2022-11-25 23:55:02,863 INFO L226 Difference]: Without dead ends: 73 [2022-11-25 23:55:02,863 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 240 GetRequests, 125 SyntacticMatches, 0 SemanticMatches, 115 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3152 ImplicationChecksByTransitivity, 10.3s TimeCoverageRelationStatistics Valid=1845, Invalid=11727, Unknown=0, NotChecked=0, Total=13572 [2022-11-25 23:55:02,864 INFO L413 NwaCegarLoop]: 0 mSDtfsCounter, 611 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 1830 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 611 SdHoareTripleChecker+Valid, 0 SdHoareTripleChecker+Invalid, 1835 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 1830 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.4s IncrementalHoareTripleChecker+Time [2022-11-25 23:55:02,864 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [611 Valid, 0 Invalid, 1835 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 1830 Invalid, 0 Unknown, 0 Unchecked, 1.4s Time] [2022-11-25 23:55:02,864 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 73 states. [2022-11-25 23:55:02,866 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 73 to 73. [2022-11-25 23:55:02,866 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 73 states, 71 states have (on average 1.056338028169014) internal successors, (75), 72 states have internal predecessors, (75), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:55:02,866 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 73 states to 73 states and 75 transitions. [2022-11-25 23:55:02,866 INFO L78 Accepts]: Start accepts. Automaton has 73 states and 75 transitions. Word has length 63 [2022-11-25 23:55:02,867 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:55:02,867 INFO L495 AbstractCegarLoop]: Abstraction has 73 states and 75 transitions. [2022-11-25 23:55:02,867 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 83 states, 82 states have (on average 2.3048780487804876) internal successors, (189), 82 states have internal predecessors, (189), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:55:02,867 INFO L276 IsEmpty]: Start isEmpty. Operand 73 states and 75 transitions. [2022-11-25 23:55:02,868 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 67 [2022-11-25 23:55:02,868 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:55:02,868 INFO L195 NwaCegarLoop]: trace histogram [13, 12, 12, 12, 12, 1, 1, 1, 1, 1] [2022-11-25 23:55:02,876 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (28)] Forceful destruction successful, exit code 0 [2022-11-25 23:55:03,068 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 28 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable33 [2022-11-25 23:55:03,069 INFO L420 AbstractCegarLoop]: === Iteration 35 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:55:03,069 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:55:03,069 INFO L85 PathProgramCache]: Analyzing trace with hash -296336468, now seen corresponding path program 10 times [2022-11-25 23:55:03,069 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:55:03,069 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1154905789] [2022-11-25 23:55:03,069 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:55:03,069 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:55:03,109 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:55:05,256 INFO L134 CoverageAnalysis]: Checked inductivity of 366 backedges. 188 proven. 178 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:55:05,256 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:55:05,256 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1154905789] [2022-11-25 23:55:05,256 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1154905789] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:55:05,256 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [575682060] [2022-11-25 23:55:05,256 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-25 23:55:05,256 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:55:05,257 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:55:05,257 INFO L229 MonitoredProcess]: Starting monitored process 29 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:55:05,260 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (29)] Waiting until timeout for monitored process [2022-11-25 23:55:05,499 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:55:05,503 INFO L263 TraceCheckSpWp]: Trace formula consists of 515 conjuncts, 131 conjunts are in the unsatisfiable core [2022-11-25 23:55:05,508 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:55:05,514 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:55:06,484 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:55:06,599 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:55:06,734 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:55:06,873 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:55:07,006 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:55:07,159 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:55:07,310 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:55:07,463 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:55:07,625 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:55:07,789 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:55:07,964 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:55:08,154 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:55:08,488 INFO L321 Elim1Store]: treesize reduction 5, result has 37.5 percent of original size [2022-11-25 23:55:08,488 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 18 treesize of output 10 [2022-11-25 23:55:08,576 INFO L134 CoverageAnalysis]: Checked inductivity of 366 backedges. 24 proven. 342 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:55:08,576 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:55:08,770 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1805 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1805) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 1)) 0)) is different from false [2022-11-25 23:55:09,437 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1805 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1805) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 6)) 0)) is different from false [2022-11-25 23:55:09,448 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1805 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1805) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 7 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:55:09,968 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_1805 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_1805) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 11)) 0)) is different from false [2022-11-25 23:55:09,981 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:55:09,981 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-25 23:55:09,988 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:55:09,989 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-25 23:55:10,457 INFO L134 CoverageAnalysis]: Checked inductivity of 366 backedges. 24 proven. 236 refuted. 0 times theorem prover too weak. 0 trivial. 106 not checked. [2022-11-25 23:55:10,457 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [575682060] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:55:10,457 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [772338435] [2022-11-25 23:55:10,458 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:55:10,458 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:55:10,459 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:55:10,459 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:55:10,459 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:55:10,488 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:55:10,492 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:55:10,523 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:55:10,564 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:55:10,585 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:55:10,623 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:55:10,665 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:55:10,704 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:55:10,704 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:55:10,755 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:55:10,765 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:55:10,767 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:55:10,768 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:55:10,769 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:55:10,814 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:55:10,814 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 1 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 52 treesize of output 54 [2022-11-25 23:55:10,887 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:55:10,887 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:55:10,941 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:55:13,913 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10242#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:55:13,913 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:55:13,913 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:55:13,914 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [30, 31, 31] total 74 [2022-11-25 23:55:13,914 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2009666083] [2022-11-25 23:55:13,914 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:55:13,914 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 74 states [2022-11-25 23:55:13,914 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:55:13,914 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 74 interpolants. [2022-11-25 23:55:13,915 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=262, Invalid=5564, Unknown=196, NotChecked=620, Total=6642 [2022-11-25 23:55:13,915 INFO L87 Difference]: Start difference. First operand 73 states and 75 transitions. Second operand has 74 states, 74 states have (on average 2.27027027027027) internal successors, (168), 74 states have internal predecessors, (168), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:55:22,808 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:55:22,808 INFO L93 Difference]: Finished difference Result 113 states and 115 transitions. [2022-11-25 23:55:22,809 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 43 states. [2022-11-25 23:55:22,809 INFO L78 Accepts]: Start accepts. Automaton has has 74 states, 74 states have (on average 2.27027027027027) internal successors, (168), 74 states have internal predecessors, (168), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 66 [2022-11-25 23:55:22,809 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:55:22,810 INFO L225 Difference]: With dead ends: 113 [2022-11-25 23:55:22,810 INFO L226 Difference]: Without dead ends: 76 [2022-11-25 23:55:22,811 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 266 GetRequests, 144 SyntacticMatches, 2 SemanticMatches, 120 ConstructedPredicates, 4 IntricatePredicates, 2 DeprecatedPredicates, 2396 ImplicationChecksByTransitivity, 14.2s TimeCoverageRelationStatistics Valid=823, Invalid=12801, Unknown=198, NotChecked=940, Total=14762 [2022-11-25 23:55:22,811 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 149 mSDsluCounter, 79 mSDsCounter, 0 mSdLazyCounter, 2481 mSolverCounterSat, 37 mSolverCounterUnsat, 276 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 149 SdHoareTripleChecker+Valid, 82 SdHoareTripleChecker+Invalid, 3054 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 37 IncrementalHoareTripleChecker+Valid, 2481 IncrementalHoareTripleChecker+Invalid, 276 IncrementalHoareTripleChecker+Unknown, 260 IncrementalHoareTripleChecker+Unchecked, 3.0s IncrementalHoareTripleChecker+Time [2022-11-25 23:55:22,811 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [149 Valid, 82 Invalid, 3054 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [37 Valid, 2481 Invalid, 276 Unknown, 260 Unchecked, 3.0s Time] [2022-11-25 23:55:22,812 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 76 states. [2022-11-25 23:55:22,813 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 76 to 75. [2022-11-25 23:55:22,813 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 75 states, 73 states have (on average 1.0547945205479452) internal successors, (77), 74 states have internal predecessors, (77), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:55:22,814 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 75 states to 75 states and 77 transitions. [2022-11-25 23:55:22,814 INFO L78 Accepts]: Start accepts. Automaton has 75 states and 77 transitions. Word has length 66 [2022-11-25 23:55:22,814 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:55:22,814 INFO L495 AbstractCegarLoop]: Abstraction has 75 states and 77 transitions. [2022-11-25 23:55:22,814 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 74 states, 74 states have (on average 2.27027027027027) internal successors, (168), 74 states have internal predecessors, (168), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:55:22,814 INFO L276 IsEmpty]: Start isEmpty. Operand 75 states and 77 transitions. [2022-11-25 23:55:22,815 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 69 [2022-11-25 23:55:22,815 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:55:22,815 INFO L195 NwaCegarLoop]: trace histogram [13, 13, 13, 12, 12, 1, 1, 1, 1, 1] [2022-11-25 23:55:22,823 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (29)] Ended with exit code 0 [2022-11-25 23:55:23,022 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 29 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable34 [2022-11-25 23:55:23,022 INFO L420 AbstractCegarLoop]: === Iteration 36 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:55:23,022 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:55:23,022 INFO L85 PathProgramCache]: Analyzing trace with hash 1001430458, now seen corresponding path program 11 times [2022-11-25 23:55:23,023 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:55:23,023 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [133894776] [2022-11-25 23:55:23,023 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:55:23,023 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:55:23,070 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:55:25,085 INFO L134 CoverageAnalysis]: Checked inductivity of 391 backedges. 121 proven. 270 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:55:25,085 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:55:25,085 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [133894776] [2022-11-25 23:55:25,085 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [133894776] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:55:25,085 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [546955959] [2022-11-25 23:55:25,086 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-25 23:55:25,086 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:55:25,086 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:55:25,087 INFO L229 MonitoredProcess]: Starting monitored process 30 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:55:25,089 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (30)] Waiting until timeout for monitored process [2022-11-25 23:55:27,740 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 13 check-sat command(s) [2022-11-25 23:55:27,740 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:55:27,749 INFO L263 TraceCheckSpWp]: Trace formula consists of 515 conjuncts, 189 conjunts are in the unsatisfiable core [2022-11-25 23:55:27,754 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:55:27,822 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:55:27,830 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 9 treesize of output 11 [2022-11-25 23:55:29,174 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:55:29,304 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:55:29,479 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:55:29,623 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:55:29,776 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:55:29,935 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:55:30,209 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 23 treesize of output 23 [2022-11-25 23:55:30,518 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 31 [2022-11-25 23:55:30,860 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 39 treesize of output 35 [2022-11-25 23:55:31,228 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 49 treesize of output 43 [2022-11-25 23:55:31,629 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 59 treesize of output 51 [2022-11-25 23:55:32,039 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 63 treesize of output 53 [2022-11-25 23:55:32,321 INFO L321 Elim1Store]: treesize reduction 24, result has 57.9 percent of original size [2022-11-25 23:55:32,321 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 8 select indices, 8 select index equivalence classes, 22 disjoint index pairs (out of 28 index pairs), introduced 8 new quantified variables, introduced 7 case distinctions, treesize of input 65 treesize of output 63 [2022-11-25 23:55:32,328 WARN L718 sPolynomialRelations]: Constructing 64(two to the power of 6 dual juncts. [2022-11-25 23:55:32,334 WARN L718 sPolynomialRelations]: Constructing 128(two to the power of 7 dual juncts. [2022-11-25 23:55:32,540 INFO L134 CoverageAnalysis]: Checked inductivity of 391 backedges. 86 proven. 275 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2022-11-25 23:55:32,540 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:55:39,946 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:55:39,946 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 162 treesize of output 96 [2022-11-25 23:55:39,991 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:55:39,991 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 8 select indices, 8 select index equivalence classes, 21 disjoint index pairs (out of 28 index pairs), introduced 8 new quantified variables, introduced 28 case distinctions, treesize of input 187 treesize of output 194 [2022-11-25 23:55:39,999 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:55:40,004 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:55:40,009 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:55:40,014 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:55:40,019 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:55:40,026 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:55:40,029 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:55:44,918 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:55:44,926 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:55:44,929 WARN L718 sPolynomialRelations]: Constructing 128(two to the power of 7 dual juncts. [2022-11-25 23:55:45,098 INFO L134 CoverageAnalysis]: Checked inductivity of 391 backedges. 20 proven. 335 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2022-11-25 23:55:45,098 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [546955959] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:55:45,098 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1986578570] [2022-11-25 23:55:45,099 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:55:45,099 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:55:45,099 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:55:45,099 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:55:45,099 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:55:45,139 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:55:45,143 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:55:45,177 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:55:45,212 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:55:45,234 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:55:45,281 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:55:45,337 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:55:45,364 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:55:45,365 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:55:45,413 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:55:45,418 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:55:45,419 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:55:45,420 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:55:45,454 INFO L321 Elim1Store]: treesize reduction 95, result has 15.9 percent of original size [2022-11-25 23:55:45,454 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 54 treesize of output 56 [2022-11-25 23:55:45,524 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:55:45,524 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:55:45,578 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:55:49,167 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '11025#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:55:49,167 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:55:49,167 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:55:49,167 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [29, 33, 41] total 103 [2022-11-25 23:55:49,167 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1505602448] [2022-11-25 23:55:49,167 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:55:49,168 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 105 states [2022-11-25 23:55:49,168 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:55:49,169 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 105 interpolants. [2022-11-25 23:55:49,170 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=832, Invalid=11635, Unknown=189, NotChecked=0, Total=12656 [2022-11-25 23:55:49,170 INFO L87 Difference]: Start difference. First operand 75 states and 77 transitions. Second operand has 105 states, 104 states have (on average 1.7788461538461537) internal successors, (185), 104 states have internal predecessors, (185), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:56:18,918 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:56:18,918 INFO L93 Difference]: Finished difference Result 97 states and 98 transitions. [2022-11-25 23:56:18,919 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 68 states. [2022-11-25 23:56:18,919 INFO L78 Accepts]: Start accepts. Automaton has has 105 states, 104 states have (on average 1.7788461538461537) internal successors, (185), 104 states have internal predecessors, (185), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 68 [2022-11-25 23:56:18,919 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:56:18,919 INFO L225 Difference]: With dead ends: 97 [2022-11-25 23:56:18,920 INFO L226 Difference]: Without dead ends: 97 [2022-11-25 23:56:18,921 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 296 GetRequests, 120 SyntacticMatches, 0 SemanticMatches, 176 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6307 ImplicationChecksByTransitivity, 42.3s TimeCoverageRelationStatistics Valid=4462, Invalid=26813, Unknown=231, NotChecked=0, Total=31506 [2022-11-25 23:56:18,922 INFO L413 NwaCegarLoop]: 0 mSDtfsCounter, 689 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 3139 mSolverCounterSat, 85 mSolverCounterUnsat, 53 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 689 SdHoareTripleChecker+Valid, 0 SdHoareTripleChecker+Invalid, 3277 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 85 IncrementalHoareTripleChecker+Valid, 3139 IncrementalHoareTripleChecker+Invalid, 53 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.4s IncrementalHoareTripleChecker+Time [2022-11-25 23:56:18,922 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [689 Valid, 0 Invalid, 3277 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [85 Valid, 3139 Invalid, 53 Unknown, 0 Unchecked, 4.4s Time] [2022-11-25 23:56:18,922 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 97 states. [2022-11-25 23:56:18,924 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 97 to 91. [2022-11-25 23:56:18,924 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 91 states, 89 states have (on average 1.0898876404494382) internal successors, (97), 90 states have internal predecessors, (97), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:56:18,924 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 91 states to 91 states and 97 transitions. [2022-11-25 23:56:18,924 INFO L78 Accepts]: Start accepts. Automaton has 91 states and 97 transitions. Word has length 68 [2022-11-25 23:56:18,925 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:56:18,925 INFO L495 AbstractCegarLoop]: Abstraction has 91 states and 97 transitions. [2022-11-25 23:56:18,925 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 105 states, 104 states have (on average 1.7788461538461537) internal successors, (185), 104 states have internal predecessors, (185), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:56:18,925 INFO L276 IsEmpty]: Start isEmpty. Operand 91 states and 97 transitions. [2022-11-25 23:56:18,925 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 74 [2022-11-25 23:56:18,925 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:56:18,926 INFO L195 NwaCegarLoop]: trace histogram [14, 14, 14, 13, 13, 1, 1, 1, 1, 1] [2022-11-25 23:56:18,936 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (30)] Forceful destruction successful, exit code 0 [2022-11-25 23:56:19,134 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable35,30 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:56:19,134 INFO L420 AbstractCegarLoop]: === Iteration 37 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:56:19,135 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:56:19,135 INFO L85 PathProgramCache]: Analyzing trace with hash -1189848071, now seen corresponding path program 15 times [2022-11-25 23:56:19,135 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:56:19,135 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [72069827] [2022-11-25 23:56:19,135 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:56:19,135 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:56:19,208 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:56:22,101 INFO L134 CoverageAnalysis]: Checked inductivity of 456 backedges. 0 proven. 456 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:56:22,101 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:56:22,101 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [72069827] [2022-11-25 23:56:22,101 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [72069827] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:56:22,102 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1530939813] [2022-11-25 23:56:22,102 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-25 23:56:22,102 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:56:22,102 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:56:22,103 INFO L229 MonitoredProcess]: Starting monitored process 31 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:56:22,105 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (31)] Waiting until timeout for monitored process [2022-11-25 23:56:22,959 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-25 23:56:22,959 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:56:22,966 INFO L263 TraceCheckSpWp]: Trace formula consists of 568 conjuncts, 174 conjunts are in the unsatisfiable core [2022-11-25 23:56:22,972 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:56:24,399 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:56:24,543 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:24,544 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:56:24,710 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:24,711 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:56:24,885 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:24,885 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:56:25,053 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:25,054 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:56:25,219 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:25,219 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:56:25,389 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:25,389 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:56:25,558 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:25,559 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:56:25,732 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:25,732 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:56:25,913 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:25,913 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:56:26,098 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:26,098 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:56:26,282 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:26,282 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:56:26,463 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:26,464 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 21 treesize of output 20 [2022-11-25 23:56:26,759 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:56:26,761 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:56:26,762 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 17 treesize of output 10 [2022-11-25 23:56:26,865 INFO L134 CoverageAnalysis]: Checked inductivity of 456 backedges. 52 proven. 403 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-11-25 23:56:26,865 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:56:33,885 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 167 treesize of output 161 [2022-11-25 23:56:36,386 INFO L134 CoverageAnalysis]: Checked inductivity of 456 backedges. 52 proven. 403 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-11-25 23:56:36,387 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1530939813] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:56:36,387 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [428819312] [2022-11-25 23:56:36,388 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:56:36,388 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:56:36,388 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:56:36,388 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:56:36,388 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:56:36,412 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:36,416 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:56:36,453 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:56:36,498 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:56:36,520 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:56:36,567 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:56:36,614 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:56:36,643 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:56:36,643 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:56:36,693 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:36,697 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:56:36,698 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:56:36,699 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:56:36,734 INFO L321 Elim1Store]: treesize reduction 95, result has 15.9 percent of original size [2022-11-25 23:56:36,734 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 54 treesize of output 56 [2022-11-25 23:56:36,797 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:56:36,797 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:56:36,873 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:56:40,379 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '11879#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:56:40,379 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:56:40,380 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:56:40,380 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [33, 33, 34] total 96 [2022-11-25 23:56:40,380 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [878780854] [2022-11-25 23:56:40,380 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:56:40,381 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 96 states [2022-11-25 23:56:40,381 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:56:40,382 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 96 interpolants. [2022-11-25 23:56:40,382 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=262, Invalid=10450, Unknown=0, NotChecked=0, Total=10712 [2022-11-25 23:56:40,382 INFO L87 Difference]: Start difference. First operand 91 states and 97 transitions. Second operand has 96 states, 96 states have (on average 2.1979166666666665) internal successors, (211), 96 states have internal predecessors, (211), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:56:53,723 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:56:53,724 INFO L93 Difference]: Finished difference Result 134 states and 140 transitions. [2022-11-25 23:56:53,724 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 45 states. [2022-11-25 23:56:53,724 INFO L78 Accepts]: Start accepts. Automaton has has 96 states, 96 states have (on average 2.1979166666666665) internal successors, (211), 96 states have internal predecessors, (211), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 73 [2022-11-25 23:56:53,724 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:56:53,725 INFO L225 Difference]: With dead ends: 134 [2022-11-25 23:56:53,725 INFO L226 Difference]: Without dead ends: 94 [2022-11-25 23:56:53,726 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 292 GetRequests, 138 SyntacticMatches, 10 SemanticMatches, 144 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2443 ImplicationChecksByTransitivity, 26.4s TimeCoverageRelationStatistics Valid=832, Invalid=20338, Unknown=0, NotChecked=0, Total=21170 [2022-11-25 23:56:53,726 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 214 mSDsluCounter, 70 mSDsCounter, 0 mSdLazyCounter, 4690 mSolverCounterSat, 43 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 214 SdHoareTripleChecker+Valid, 73 SdHoareTripleChecker+Invalid, 4733 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 43 IncrementalHoareTripleChecker+Valid, 4690 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.1s IncrementalHoareTripleChecker+Time [2022-11-25 23:56:53,726 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [214 Valid, 73 Invalid, 4733 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [43 Valid, 4690 Invalid, 0 Unknown, 0 Unchecked, 4.1s Time] [2022-11-25 23:56:53,726 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 94 states. [2022-11-25 23:56:53,728 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 94 to 93. [2022-11-25 23:56:53,728 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 93 states, 91 states have (on average 1.0879120879120878) internal successors, (99), 92 states have internal predecessors, (99), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:56:53,728 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 93 states to 93 states and 99 transitions. [2022-11-25 23:56:53,728 INFO L78 Accepts]: Start accepts. Automaton has 93 states and 99 transitions. Word has length 73 [2022-11-25 23:56:53,729 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:56:53,729 INFO L495 AbstractCegarLoop]: Abstraction has 93 states and 99 transitions. [2022-11-25 23:56:53,729 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 96 states, 96 states have (on average 2.1979166666666665) internal successors, (211), 96 states have internal predecessors, (211), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:56:53,729 INFO L276 IsEmpty]: Start isEmpty. Operand 93 states and 99 transitions. [2022-11-25 23:56:53,729 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 76 [2022-11-25 23:56:53,730 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:56:53,730 INFO L195 NwaCegarLoop]: trace histogram [14, 14, 14, 14, 14, 1, 1, 1, 1, 1] [2022-11-25 23:56:53,738 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (31)] Forceful destruction successful, exit code 0 [2022-11-25 23:56:53,937 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable36,31 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:56:53,938 INFO L420 AbstractCegarLoop]: === Iteration 38 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:56:53,938 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:56:53,938 INFO L85 PathProgramCache]: Analyzing trace with hash 1787901483, now seen corresponding path program 16 times [2022-11-25 23:56:53,938 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:56:53,938 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [951123094] [2022-11-25 23:56:53,938 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:56:53,938 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:56:53,988 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:56:56,540 INFO L134 CoverageAnalysis]: Checked inductivity of 483 backedges. 14 proven. 469 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:56:56,540 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:56:56,540 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [951123094] [2022-11-25 23:56:56,540 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [951123094] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:56:56,540 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2004621036] [2022-11-25 23:56:56,541 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-25 23:56:56,541 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:56:56,541 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:56:56,542 INFO L229 MonitoredProcess]: Starting monitored process 32 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:56:56,544 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (32)] Waiting until timeout for monitored process [2022-11-25 23:56:56,805 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:56:56,810 INFO L263 TraceCheckSpWp]: Trace formula consists of 581 conjuncts, 149 conjunts are in the unsatisfiable core [2022-11-25 23:56:56,815 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:56:56,820 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:56:57,904 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:56:58,046 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:56:58,113 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:56:58,131 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:56:58,148 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:56:58,166 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:56:58,183 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:56:58,199 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:56:58,218 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:56:58,235 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:56:58,252 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:56:58,271 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:56:58,288 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:56:58,304 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:56:58,373 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 7 [2022-11-25 23:56:58,378 INFO L134 CoverageAnalysis]: Checked inductivity of 483 backedges. 14 proven. 469 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:56:58,378 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:56:58,810 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2227 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2227) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 4)) 0)) is different from false [2022-11-25 23:56:58,967 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2227 (Array Int Int))) (= 0 (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2227) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 6)))) is different from false [2022-11-25 23:56:59,725 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 13 [2022-11-25 23:56:59,728 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-25 23:57:00,141 INFO L134 CoverageAnalysis]: Checked inductivity of 483 backedges. 14 proven. 394 refuted. 0 times theorem prover too weak. 0 trivial. 75 not checked. [2022-11-25 23:57:00,141 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2004621036] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:57:00,141 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1903156290] [2022-11-25 23:57:00,142 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:57:00,143 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:57:00,143 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:57:00,143 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:57:00,143 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:57:00,175 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:00,179 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:57:00,216 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:57:00,257 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:57:00,278 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:57:00,326 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:57:00,368 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:57:00,406 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:57:00,406 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:57:00,452 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:00,457 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:00,458 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:57:00,459 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:57:00,503 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-25 23:57:00,504 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 50 treesize of output 54 [2022-11-25 23:57:00,577 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:57:00,578 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:57:00,681 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:57:03,445 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '12704#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:57:03,446 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:57:03,446 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:57:03,446 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [34, 35, 35] total 62 [2022-11-25 23:57:03,446 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [456855344] [2022-11-25 23:57:03,446 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:57:03,446 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 62 states [2022-11-25 23:57:03,447 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:57:03,447 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 62 interpolants. [2022-11-25 23:57:03,447 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=188, Invalid=4293, Unknown=83, NotChecked=266, Total=4830 [2022-11-25 23:57:03,448 INFO L87 Difference]: Start difference. First operand 93 states and 99 transitions. Second operand has 62 states, 62 states have (on average 2.193548387096774) internal successors, (136), 62 states have internal predecessors, (136), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:57:08,433 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:57:08,433 INFO L93 Difference]: Finished difference Result 139 states and 145 transitions. [2022-11-25 23:57:08,433 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 48 states. [2022-11-25 23:57:08,434 INFO L78 Accepts]: Start accepts. Automaton has has 62 states, 62 states have (on average 2.193548387096774) internal successors, (136), 62 states have internal predecessors, (136), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 75 [2022-11-25 23:57:08,434 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:57:08,435 INFO L225 Difference]: With dead ends: 139 [2022-11-25 23:57:08,435 INFO L226 Difference]: Without dead ends: 96 [2022-11-25 23:57:08,435 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 302 GetRequests, 191 SyntacticMatches, 11 SemanticMatches, 100 ConstructedPredicates, 2 IntricatePredicates, 1 DeprecatedPredicates, 1621 ImplicationChecksByTransitivity, 8.9s TimeCoverageRelationStatistics Valid=486, Invalid=9332, Unknown=90, NotChecked=394, Total=10302 [2022-11-25 23:57:08,436 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 131 mSDsluCounter, 83 mSDsCounter, 0 mSdLazyCounter, 2992 mSolverCounterSat, 28 mSolverCounterUnsat, 64 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 131 SdHoareTripleChecker+Valid, 86 SdHoareTripleChecker+Invalid, 3236 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 28 IncrementalHoareTripleChecker+Valid, 2992 IncrementalHoareTripleChecker+Invalid, 64 IncrementalHoareTripleChecker+Unknown, 152 IncrementalHoareTripleChecker+Unchecked, 2.5s IncrementalHoareTripleChecker+Time [2022-11-25 23:57:08,436 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [131 Valid, 86 Invalid, 3236 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [28 Valid, 2992 Invalid, 64 Unknown, 152 Unchecked, 2.5s Time] [2022-11-25 23:57:08,436 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 96 states. [2022-11-25 23:57:08,438 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 96 to 95. [2022-11-25 23:57:08,438 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 95 states, 93 states have (on average 1.086021505376344) internal successors, (101), 94 states have internal predecessors, (101), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:57:08,439 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 95 states to 95 states and 101 transitions. [2022-11-25 23:57:08,439 INFO L78 Accepts]: Start accepts. Automaton has 95 states and 101 transitions. Word has length 75 [2022-11-25 23:57:08,439 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:57:08,439 INFO L495 AbstractCegarLoop]: Abstraction has 95 states and 101 transitions. [2022-11-25 23:57:08,439 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 62 states, 62 states have (on average 2.193548387096774) internal successors, (136), 62 states have internal predecessors, (136), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:57:08,440 INFO L276 IsEmpty]: Start isEmpty. Operand 95 states and 101 transitions. [2022-11-25 23:57:08,440 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 78 [2022-11-25 23:57:08,440 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:57:08,440 INFO L195 NwaCegarLoop]: trace histogram [15, 15, 14, 14, 14, 1, 1, 1, 1, 1] [2022-11-25 23:57:08,448 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (32)] Forceful destruction successful, exit code 0 [2022-11-25 23:57:08,647 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 32 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable37 [2022-11-25 23:57:08,647 INFO L420 AbstractCegarLoop]: === Iteration 39 === Targeting ULTIMATE.startErr5REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:57:08,647 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:57:08,648 INFO L85 PathProgramCache]: Analyzing trace with hash -1337963555, now seen corresponding path program 17 times [2022-11-25 23:57:08,648 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:57:08,648 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1898028463] [2022-11-25 23:57:08,648 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:57:08,648 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:57:08,681 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:57:10,254 INFO L134 CoverageAnalysis]: Checked inductivity of 512 backedges. 182 proven. 330 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:57:10,254 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:57:10,254 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1898028463] [2022-11-25 23:57:10,254 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1898028463] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:57:10,254 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1406557040] [2022-11-25 23:57:10,255 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-25 23:57:10,255 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:57:10,255 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:57:10,256 INFO L229 MonitoredProcess]: Starting monitored process 33 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:57:10,258 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (33)] Waiting until timeout for monitored process [2022-11-25 23:57:13,554 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 15 check-sat command(s) [2022-11-25 23:57:13,555 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:57:13,565 INFO L263 TraceCheckSpWp]: Trace formula consists of 581 conjuncts, 209 conjunts are in the unsatisfiable core [2022-11-25 23:57:13,570 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:57:13,579 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:57:14,707 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:57:14,828 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:57:14,969 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:57:15,110 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:57:15,261 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:57:15,414 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:57:15,567 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:57:15,836 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 23 treesize of output 23 [2022-11-25 23:57:16,140 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 33 treesize of output 31 [2022-11-25 23:57:16,465 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 39 treesize of output 35 [2022-11-25 23:57:16,844 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 49 treesize of output 43 [2022-11-25 23:57:17,245 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 55 treesize of output 47 [2022-11-25 23:57:17,669 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 65 treesize of output 55 [2022-11-25 23:57:18,142 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 71 treesize of output 59 [2022-11-25 23:57:18,564 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:18,565 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:18,566 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:18,567 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:18,568 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:18,569 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:18,570 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:18,628 INFO L321 Elim1Store]: treesize reduction 28, result has 58.2 percent of original size [2022-11-25 23:57:18,628 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 9 select indices, 9 select index equivalence classes, 28 disjoint index pairs (out of 36 index pairs), introduced 9 new quantified variables, introduced 8 case distinctions, treesize of input 75 treesize of output 73 [2022-11-25 23:57:18,632 WARN L718 sPolynomialRelations]: Constructing 256(two to the power of 8 dual juncts. [2022-11-25 23:57:18,649 WARN L718 sPolynomialRelations]: Constructing 128(two to the power of 7 dual juncts. [2022-11-25 23:57:18,889 INFO L134 CoverageAnalysis]: Checked inductivity of 512 backedges. 95 proven. 397 refuted. 0 times theorem prover too weak. 20 trivial. 0 not checked. [2022-11-25 23:57:18,889 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:57:27,709 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-25 23:57:27,721 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:57:27,721 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 185 treesize of output 108 [2022-11-25 23:57:27,815 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:57:27,815 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 9 select indices, 9 select index equivalence classes, 28 disjoint index pairs (out of 36 index pairs), introduced 9 new quantified variables, introduced 36 case distinctions, treesize of input 212 treesize of output 221 [2022-11-25 23:57:27,894 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:57:27,900 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:57:27,906 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:57:27,912 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:57:27,921 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:57:27,930 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:57:27,936 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:57:27,942 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:57:28,955 WARN L718 sPolynomialRelations]: Constructing 256(two to the power of 8 dual juncts. [2022-11-25 23:57:28,968 WARN L718 sPolynomialRelations]: Constructing 128(two to the power of 7 dual juncts. [2022-11-25 23:57:28,979 WARN L718 sPolynomialRelations]: Constructing 64(two to the power of 6 dual juncts. [2022-11-25 23:57:30,400 INFO L134 CoverageAnalysis]: Checked inductivity of 512 backedges. 25 proven. 415 refuted. 0 times theorem prover too weak. 72 trivial. 0 not checked. [2022-11-25 23:57:30,401 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1406557040] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:57:30,401 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [821437812] [2022-11-25 23:57:30,401 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:57:30,402 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:57:30,402 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:57:30,402 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:57:30,402 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:57:30,430 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:30,436 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:57:30,469 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:57:30,501 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:57:30,523 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:57:30,562 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:57:30,608 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:57:30,647 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:57:30,647 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:57:30,693 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:30,698 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:57:30,698 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:57:30,699 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:57:30,742 INFO L321 Elim1Store]: treesize reduction 95, result has 15.9 percent of original size [2022-11-25 23:57:30,743 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 54 treesize of output 56 [2022-11-25 23:57:30,810 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:57:30,810 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:57:30,870 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:57:34,466 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '13578#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:57:34,467 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:57:34,467 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:57:34,467 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [32, 39, 42] total 111 [2022-11-25 23:57:34,467 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1524756961] [2022-11-25 23:57:34,467 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:57:34,468 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 112 states [2022-11-25 23:57:34,468 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:57:34,468 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 112 interpolants. [2022-11-25 23:57:34,469 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1182, Invalid=12851, Unknown=247, NotChecked=0, Total=14280 [2022-11-25 23:57:34,469 INFO L87 Difference]: Start difference. First operand 95 states and 101 transitions. Second operand has 112 states, 111 states have (on average 1.864864864864865) internal successors, (207), 112 states have internal predecessors, (207), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:57:50,601 WARN L859 $PredicateComparison]: unable to prove that (let ((.cse0 (select |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~from#1.base|)) (.cse6 (+ 2 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) (.cse7 (select |c_#length| |c_ULTIMATE.start_cstpcpy_~from#1.base|))) (let ((.cse8 (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 6)) (.cse11 (select |c_#length| |c_ULTIMATE.start_main_~nondetString~0#1.base|)) (.cse10 (+ 7 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) (.cse9 (<= .cse6 .cse7)) (.cse3 (+ 5 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) (.cse5 (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 3)) (.cse1 (= (select .cse0 |c_ULTIMATE.start_cstpcpy_~from#1.offset|) 0)) (.cse2 (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 4)) (.cse4 (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 1))) (and (not (= (select .cse0 7) 0)) (<= 7 (+ |c_ULTIMATE.start_main_~length2~0#1| |c_ULTIMATE.start_main_~nondetString~0#1.offset|)) (not (= (select .cse0 (+ (- 1) |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) (= |c_ULTIMATE.start_cstpcpy_~from#1.offset| 13) (= 0 |c_ULTIMATE.start_main_~nondetArea~0#1.offset|) (not (= (select .cse0 11) 0)) (or .cse1 (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse2) 0)) (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse3) 0)) (forall ((v_ArrVal_2368 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2368) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse4) 0)) (forall ((v_ArrVal_2370 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2370) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse5) 0)) (forall ((v_ArrVal_2369 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2369) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse6) 0)) (<= (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 8) .cse7) (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse8) 0)) (not (<= 0 .cse8))) (<= 14 |c_ULTIMATE.start_main_~i~0#1|) (or (and (= |c_ULTIMATE.start_cstpcpy_#t~mem4#1| 0) (<= .cse4 .cse7)) .cse9) (or (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse8) 0)) (forall ((v_ArrVal_2367 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2367) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse4) 0)) .cse1 (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse3) 0)) (forall ((v_ArrVal_2369 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2369) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse5) 0)) (forall ((v_ArrVal_2368 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2368) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse6) 0)) (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse10) 0)) (not (<= 0 .cse10)) (<= (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 9) .cse7) (forall ((v_ArrVal_2370 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2370) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse2) 0))) (not (= (select .cse0 6) 0)) (not (= (select .cse0 9) 0)) (or (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse6) 0)) .cse1 (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse2) 0)) (forall ((v_ArrVal_2370 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2370) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse4) 0)) (not (<= 0 .cse2)) (<= .cse8 .cse7) (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse5) 0))) (<= 13 |c_ULTIMATE.start_cstpcpy_~from#1.offset|) (exists ((|ULTIMATE.start_main_~length2~0#1| Int)) (and (<= |ULTIMATE.start_main_~length2~0#1| .cse7) (<= 7 |ULTIMATE.start_main_~length2~0#1|) (= (select .cse0 (+ (- 1) |ULTIMATE.start_main_~length2~0#1|)) 0))) (<= 6 (+ |c_ULTIMATE.start_main_~i~0#1| |c_ULTIMATE.start_main_~nondetString~0#1.offset|)) (not (= |c_ULTIMATE.start_main_~nondetString~0#1.base| |c_ULTIMATE.start_main_~nondetArea~0#1.base|)) (or .cse1 (<= .cse5 .cse7) (not (<= 0 .cse4)) (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse4) 0))) (<= |c_ULTIMATE.start_main_~i~0#1| |c_ULTIMATE.start_main_~length2~0#1|) (= |c_ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= (+ 15 |c_ULTIMATE.start_main_~nondetString~0#1.offset|) .cse11) (= |c_ULTIMATE.start_main_~length2~0#1| (+ .cse11 (* (div |c_ULTIMATE.start_main_~length2~0#1| 4294967296) 4294967296))) (or .cse1 (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse3) 0)) (forall ((v_ArrVal_2369 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2369) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse4) 0)) (forall ((v_ArrVal_2370 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2370) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse6) 0)) (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse2) 0)) (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse5) 0)) (<= .cse10 .cse7) (not (<= 0 .cse3))) .cse9 (or .cse1 (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse4) 0)) (not (<= 0 .cse5)) (<= .cse3 .cse7) (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse5) 0)) (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse6) 0))) (not (= (select .cse0 10) 0)) (or (not (<= 0 .cse6)) .cse1 (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse6) 0)) (<= .cse2 .cse7) (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse4) 0))) (not (= (select .cse0 8) 0))))) is different from true [2022-11-25 23:57:50,610 WARN L837 $PredicateComparison]: unable to prove that (let ((.cse5 (+ 2 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) (.cse4 (select |c_#length| |c_ULTIMATE.start_cstpcpy_~from#1.base|))) (let ((.cse7 (+ 7 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) (.cse3 (+ 5 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) (.cse0 (= |c_ULTIMATE.start_cstpcpy_#t~mem4#1| 0)) (.cse1 (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 1)) (.cse8 (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 4)) (.cse6 (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 6)) (.cse2 (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 3)) (.cse9 (<= .cse5 .cse4))) (and (or .cse0 (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse1) 0)) (not (<= 0 .cse2)) (<= .cse3 .cse4) (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse2) 0)) (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse5) 0))) (or (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse6) 0)) (forall ((v_ArrVal_2367 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2367) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse1) 0)) .cse0 (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse3) 0)) (forall ((v_ArrVal_2369 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2369) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse2) 0)) (forall ((v_ArrVal_2368 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2368) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse5) 0)) (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse7) 0)) (not (<= 0 .cse7)) (<= (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 9) .cse4) (forall ((v_ArrVal_2370 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2370) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse8) 0))) (or (not (<= 0 .cse5)) .cse0 (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse5) 0)) (<= .cse8 .cse4) (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse1) 0))) (= |c_ULTIMATE.start_cstpcpy_~from#1.offset| 13) (or .cse0 (<= .cse2 .cse4) (not (<= 0 .cse1)) (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse1) 0))) (or (and .cse0 (<= .cse1 .cse4)) .cse9) (<= 13 |c_ULTIMATE.start_cstpcpy_~from#1.offset|) (or .cse0 (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse3) 0)) (forall ((v_ArrVal_2369 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2369) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse1) 0)) (forall ((v_ArrVal_2370 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2370) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse5) 0)) (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse8) 0)) (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse2) 0)) (<= .cse7 .cse4) (not (<= 0 .cse3))) (or .cse0 (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse8) 0)) (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse3) 0)) (forall ((v_ArrVal_2368 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2368) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse1) 0)) (forall ((v_ArrVal_2370 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2370) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse2) 0)) (forall ((v_ArrVal_2369 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2369) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse5) 0)) (<= (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 8) .cse4) (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse6) 0)) (not (<= 0 .cse6))) (or (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse5) 0)) .cse0 (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse8) 0)) (forall ((v_ArrVal_2370 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2370) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse1) 0)) (not (<= 0 .cse8)) (<= .cse6 .cse4) (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse2) 0))) .cse9))) is different from false [2022-11-25 23:57:53,013 WARN L837 $PredicateComparison]: unable to prove that (let ((.cse38 (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 1))) (let ((.cse43 (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 6)) (.cse42 (+ 5 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) (.cse39 (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 4)) (.cse37 (<= 0 .cse38)) (.cse41 (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 3)) (.cse40 (+ 2 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) (.cse22 (select |c_#length| |c_ULTIMATE.start_cstpcpy_~from#1.base|))) (let ((.cse29 (<= .cse40 .cse22)) (.cse10 (<= .cse41 .cse22)) (.cse11 (not .cse37)) (.cse12 (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse38) 0))) (.cse14 (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse39) 0))) (.cse15 (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse42) 0))) (.cse16 (forall ((v_ArrVal_2368 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2368) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse38) 0))) (.cse17 (forall ((v_ArrVal_2370 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2370) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse41) 0))) (.cse18 (forall ((v_ArrVal_2369 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2369) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse40) 0))) (.cse19 (<= (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 8) .cse22)) (.cse20 (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse43) 0))) (.cse21 (not (<= 0 .cse43))) (.cse23 (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse40) 0))) (.cse0 (= |c_ULTIMATE.start_cstpcpy_#t~mem4#1| 0)) (.cse24 (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse39) 0))) (.cse25 (forall ((v_ArrVal_2370 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2370) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse38) 0))) (.cse26 (not (<= 0 .cse39))) (.cse27 (<= .cse43 .cse22)) (.cse28 (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse41) 0))) (.cse30 (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse42) 0))) (.cse31 (forall ((v_ArrVal_2369 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2369) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse38) 0))) (.cse32 (forall ((v_ArrVal_2370 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2370) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse40) 0))) (.cse33 (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse39) 0))) (.cse34 (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse41) 0))) (.cse35 (<= (+ 7 |c_ULTIMATE.start_cstpcpy_~from#1.offset|) .cse22)) (.cse36 (not (<= 0 .cse42))) (.cse1 (forall ((v_ArrVal_2371 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2371) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse38) 0))) (.cse2 (not (<= 0 .cse41))) (.cse3 (<= .cse42 .cse22)) (.cse4 (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse41) 0))) (.cse5 (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse40) 0))) (.cse6 (not (<= 0 .cse40))) (.cse13 (= (select (select |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~from#1.base|) |c_ULTIMATE.start_cstpcpy_~from#1.offset|) 0)) (.cse7 (forall ((v_ArrVal_2373 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2373) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse40) 0))) (.cse8 (<= .cse39 .cse22)) (.cse9 (forall ((v_ArrVal_2372 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2372) |c_ULTIMATE.start_cstpcpy_~from#1.base|) .cse38) 0)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (or .cse6 .cse0 .cse7 .cse8 .cse9) (or .cse0 .cse10 .cse11 .cse12) (or .cse13 .cse14 .cse15 .cse16 .cse17 .cse18 .cse19 .cse20 .cse21) (<= 15 .cse22) (or .cse23 .cse13 .cse24 .cse25 .cse26 .cse27 .cse28) (or .cse13 (not (<= 0 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) .cse29) (or .cse0 .cse30 .cse31 .cse32 .cse33 .cse34 .cse35 .cse36) (or .cse0 (and .cse37 .cse29)) (or .cse13 .cse10 .cse11 .cse12) (or .cse0 .cse14 .cse15 .cse16 .cse17 .cse18 .cse19 .cse20 .cse21) (or .cse23 .cse0 .cse24 .cse25 .cse26 .cse27 .cse28) (or .cse13 .cse30 .cse31 .cse32 .cse33 .cse34 .cse35 .cse36) (or .cse13 .cse1 .cse2 .cse3 .cse4 .cse5) (= |c_ULTIMATE.start_cstpcpy_~from#1.offset| 14) (or .cse6 .cse13 .cse7 .cse8 .cse9))))) is different from false [2022-11-25 23:58:04,476 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:58:04,476 INFO L93 Difference]: Finished difference Result 106 states and 107 transitions. [2022-11-25 23:58:04,476 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 79 states. [2022-11-25 23:58:04,476 INFO L78 Accepts]: Start accepts. Automaton has has 112 states, 111 states have (on average 1.864864864864865) internal successors, (207), 112 states have internal predecessors, (207), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 77 [2022-11-25 23:58:04,477 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:58:04,477 INFO L225 Difference]: With dead ends: 106 [2022-11-25 23:58:04,477 INFO L226 Difference]: Without dead ends: 106 [2022-11-25 23:58:04,479 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 337 GetRequests, 143 SyntacticMatches, 0 SemanticMatches, 194 ConstructedPredicates, 3 IntricatePredicates, 0 DeprecatedPredicates, 8651 ImplicationChecksByTransitivity, 42.6s TimeCoverageRelationStatistics Valid=4871, Invalid=31906, Unknown=291, NotChecked=1152, Total=38220 [2022-11-25 23:58:04,479 INFO L413 NwaCegarLoop]: 2 mSDtfsCounter, 460 mSDsluCounter, 7 mSDsCounter, 0 mSdLazyCounter, 3354 mSolverCounterSat, 27 mSolverCounterUnsat, 66 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 460 SdHoareTripleChecker+Valid, 9 SdHoareTripleChecker+Invalid, 3450 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 27 IncrementalHoareTripleChecker+Valid, 3354 IncrementalHoareTripleChecker+Invalid, 66 IncrementalHoareTripleChecker+Unknown, 3 IncrementalHoareTripleChecker+Unchecked, 5.1s IncrementalHoareTripleChecker+Time [2022-11-25 23:58:04,480 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [460 Valid, 9 Invalid, 3450 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [27 Valid, 3354 Invalid, 66 Unknown, 3 Unchecked, 5.1s Time] [2022-11-25 23:58:04,480 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 106 states. [2022-11-25 23:58:04,482 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 106 to 103. [2022-11-25 23:58:04,482 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 103 states, 101 states have (on average 1.0495049504950495) internal successors, (106), 102 states have internal predecessors, (106), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:58:04,482 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 103 states to 103 states and 106 transitions. [2022-11-25 23:58:04,482 INFO L78 Accepts]: Start accepts. Automaton has 103 states and 106 transitions. Word has length 77 [2022-11-25 23:58:04,483 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:58:04,483 INFO L495 AbstractCegarLoop]: Abstraction has 103 states and 106 transitions. [2022-11-25 23:58:04,483 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 112 states, 111 states have (on average 1.864864864864865) internal successors, (207), 112 states have internal predecessors, (207), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:58:04,483 INFO L276 IsEmpty]: Start isEmpty. Operand 103 states and 106 transitions. [2022-11-25 23:58:04,484 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 94 [2022-11-25 23:58:04,484 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:58:04,484 INFO L195 NwaCegarLoop]: trace histogram [20, 19, 19, 15, 15, 1, 1, 1, 1, 1] [2022-11-25 23:58:04,492 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (33)] Forceful destruction successful, exit code 0 [2022-11-25 23:58:04,690 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 33 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable38 [2022-11-25 23:58:04,691 INFO L420 AbstractCegarLoop]: === Iteration 40 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:58:04,691 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:58:04,691 INFO L85 PathProgramCache]: Analyzing trace with hash -1366216873, now seen corresponding path program 12 times [2022-11-25 23:58:04,691 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:58:04,691 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [134532740] [2022-11-25 23:58:04,691 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:58:04,691 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:58:04,757 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:58:07,733 INFO L134 CoverageAnalysis]: Checked inductivity of 776 backedges. 496 proven. 280 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:58:07,733 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:58:07,733 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [134532740] [2022-11-25 23:58:07,733 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [134532740] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:58:07,733 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1316763820] [2022-11-25 23:58:07,733 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-25 23:58:07,733 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:58:07,733 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:58:07,734 INFO L229 MonitoredProcess]: Starting monitored process 34 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:58:07,737 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (34)] Waiting until timeout for monitored process [2022-11-25 23:58:11,355 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-25 23:58:11,355 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:58:11,366 INFO L263 TraceCheckSpWp]: Trace formula consists of 715 conjuncts, 162 conjunts are in the unsatisfiable core [2022-11-25 23:58:11,371 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:58:11,380 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:58:13,042 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:58:13,196 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:13,366 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:13,538 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:13,719 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:13,896 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:14,074 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:14,256 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:14,436 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:14,627 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:14,819 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:15,011 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:15,206 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:15,402 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:15,608 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:58:15,892 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:58:15,894 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:58:15,894 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 17 treesize of output 10 [2022-11-25 23:58:15,995 INFO L134 CoverageAnalysis]: Checked inductivity of 776 backedges. 210 proven. 540 refuted. 0 times theorem prover too weak. 26 trivial. 0 not checked. [2022-11-25 23:58:15,995 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:58:16,217 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2542 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2542) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 1)) 0)) is different from false [2022-11-25 23:58:16,225 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2542 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2542) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 2 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:58:16,236 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2542 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2542) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 3)) 0)) is different from false [2022-11-25 23:58:16,641 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2542 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2542) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 6)) 0)) is different from false [2022-11-25 23:58:16,652 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2542 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2542) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 7 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:58:17,080 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2542 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2542) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 10)) 0)) is different from false [2022-11-25 23:58:17,091 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2542 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2542) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 11)) 0)) is different from false [2022-11-25 23:58:17,102 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2542 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2542) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 12)) 0)) is different from false [2022-11-25 23:58:17,318 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2542 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2542) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 14)) 0)) is different from false [2022-11-25 23:58:17,330 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:58:17,330 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-25 23:58:17,337 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:58:17,337 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-25 23:58:17,346 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:58:19,996 INFO L134 CoverageAnalysis]: Checked inductivity of 776 backedges. 210 proven. 276 refuted. 0 times theorem prover too weak. 26 trivial. 264 not checked. [2022-11-25 23:58:19,996 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1316763820] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:58:19,996 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1181839923] [2022-11-25 23:58:19,997 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:58:19,997 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:58:19,997 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:58:19,998 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:58:19,998 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:58:20,029 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:58:20,033 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:58:20,062 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:58:20,117 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:58:20,135 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:58:20,188 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:58:20,224 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:58:20,254 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:58:20,254 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:58:20,322 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:58:20,325 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:58:20,327 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:58:20,329 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:58:20,376 INFO L321 Elim1Store]: treesize reduction 99, result has 15.4 percent of original size [2022-11-25 23:58:20,376 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 48 treesize of output 52 [2022-11-25 23:58:20,438 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:58:20,439 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:58:20,494 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:58:24,307 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '14608#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:58:24,307 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:58:24,307 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:58:24,307 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [40, 37, 37] total 109 [2022-11-25 23:58:24,308 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1289059300] [2022-11-25 23:58:24,308 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:58:24,308 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 109 states [2022-11-25 23:58:24,308 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:58:24,309 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 109 interpolants. [2022-11-25 23:58:24,309 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=452, Invalid=11021, Unknown=119, NotChecked=1980, Total=13572 [2022-11-25 23:58:24,309 INFO L87 Difference]: Start difference. First operand 103 states and 106 transitions. Second operand has 109 states, 109 states have (on average 2.293577981651376) internal successors, (250), 109 states have internal predecessors, (250), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:58:39,725 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:58:39,725 INFO L93 Difference]: Finished difference Result 152 states and 155 transitions. [2022-11-25 23:58:39,726 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 52 states. [2022-11-25 23:58:39,726 INFO L78 Accepts]: Start accepts. Automaton has has 109 states, 109 states have (on average 2.293577981651376) internal successors, (250), 109 states have internal predecessors, (250), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 93 [2022-11-25 23:58:39,726 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:58:39,726 INFO L225 Difference]: With dead ends: 152 [2022-11-25 23:58:39,726 INFO L226 Difference]: Without dead ends: 106 [2022-11-25 23:58:39,727 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 367 GetRequests, 203 SyntacticMatches, 0 SemanticMatches, 164 ConstructedPredicates, 9 IntricatePredicates, 0 DeprecatedPredicates, 4293 ImplicationChecksByTransitivity, 22.3s TimeCoverageRelationStatistics Valid=1146, Invalid=23259, Unknown=123, NotChecked=2862, Total=27390 [2022-11-25 23:58:39,728 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 80 mSDsluCounter, 106 mSDsCounter, 0 mSdLazyCounter, 4141 mSolverCounterSat, 45 mSolverCounterUnsat, 485 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 80 SdHoareTripleChecker+Valid, 109 SdHoareTripleChecker+Invalid, 5393 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 45 IncrementalHoareTripleChecker+Valid, 4141 IncrementalHoareTripleChecker+Invalid, 485 IncrementalHoareTripleChecker+Unknown, 722 IncrementalHoareTripleChecker+Unchecked, 6.0s IncrementalHoareTripleChecker+Time [2022-11-25 23:58:39,728 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [80 Valid, 109 Invalid, 5393 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [45 Valid, 4141 Invalid, 485 Unknown, 722 Unchecked, 6.0s Time] [2022-11-25 23:58:39,728 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 106 states. [2022-11-25 23:58:39,729 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 106 to 105. [2022-11-25 23:58:39,730 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 105 states, 103 states have (on average 1.0485436893203883) internal successors, (108), 104 states have internal predecessors, (108), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:58:39,730 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 105 states to 105 states and 108 transitions. [2022-11-25 23:58:39,730 INFO L78 Accepts]: Start accepts. Automaton has 105 states and 108 transitions. Word has length 93 [2022-11-25 23:58:39,730 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:58:39,731 INFO L495 AbstractCegarLoop]: Abstraction has 105 states and 108 transitions. [2022-11-25 23:58:39,731 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 109 states, 109 states have (on average 2.293577981651376) internal successors, (250), 109 states have internal predecessors, (250), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:58:39,731 INFO L276 IsEmpty]: Start isEmpty. Operand 105 states and 108 transitions. [2022-11-25 23:58:39,731 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 96 [2022-11-25 23:58:39,732 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:58:39,732 INFO L195 NwaCegarLoop]: trace histogram [20, 19, 19, 16, 16, 1, 1, 1, 1, 1] [2022-11-25 23:58:39,746 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (34)] Forceful destruction successful, exit code 0 [2022-11-25 23:58:39,942 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable39,34 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:58:39,943 INFO L420 AbstractCegarLoop]: === Iteration 41 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:58:39,943 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:58:39,943 INFO L85 PathProgramCache]: Analyzing trace with hash -2130903927, now seen corresponding path program 13 times [2022-11-25 23:58:39,943 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:58:39,943 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [404521619] [2022-11-25 23:58:39,943 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:58:39,943 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:58:39,992 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:58:43,000 INFO L134 CoverageAnalysis]: Checked inductivity of 807 backedges. 496 proven. 311 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:58:43,000 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:58:43,001 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [404521619] [2022-11-25 23:58:43,001 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [404521619] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:58:43,001 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2116647214] [2022-11-25 23:58:43,001 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-25 23:58:43,001 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:58:43,001 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:58:43,002 INFO L229 MonitoredProcess]: Starting monitored process 35 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:58:43,004 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (35)] Waiting until timeout for monitored process [2022-11-25 23:58:43,324 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:58:43,329 INFO L263 TraceCheckSpWp]: Trace formula consists of 728 conjuncts, 165 conjunts are in the unsatisfiable core [2022-11-25 23:58:43,334 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:58:43,339 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:58:44,916 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:58:45,065 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:45,233 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:45,407 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:45,585 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:45,771 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:45,953 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:46,145 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:46,337 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:46,536 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:46,742 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:46,958 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:47,177 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:47,403 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:47,630 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:47,865 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-25 23:58:48,272 INFO L321 Elim1Store]: treesize reduction 5, result has 37.5 percent of original size [2022-11-25 23:58:48,273 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 18 treesize of output 10 [2022-11-25 23:58:48,396 INFO L134 CoverageAnalysis]: Checked inductivity of 807 backedges. 176 proven. 616 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2022-11-25 23:58:48,396 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:58:49,513 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2714 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2714) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 5 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:58:49,967 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2714 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2714) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 8)) 0)) is different from false [2022-11-25 23:58:49,979 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2714 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2714) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 9)) 0)) is different from false [2022-11-25 23:58:50,204 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2714 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2714) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 11)) 0)) is different from false [2022-11-25 23:58:50,216 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2714 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2714) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 12)) 0)) is different from false [2022-11-25 23:58:50,935 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:58:50,935 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-25 23:58:50,943 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:58:50,943 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-25 23:58:51,680 INFO L134 CoverageAnalysis]: Checked inductivity of 807 backedges. 176 proven. 421 refuted. 0 times theorem prover too weak. 15 trivial. 195 not checked. [2022-11-25 23:58:51,680 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2116647214] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:58:51,680 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1422599188] [2022-11-25 23:58:51,681 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:58:51,681 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:58:51,681 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:58:51,682 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:58:51,682 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:58:51,714 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:58:51,719 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:58:51,762 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:58:51,803 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:58:51,824 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:58:51,868 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:58:51,923 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:58:51,976 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:58:51,976 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:58:52,050 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:58:52,055 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:58:52,056 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:58:52,057 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:58:52,094 INFO L321 Elim1Store]: treesize reduction 95, result has 15.9 percent of original size [2022-11-25 23:58:52,095 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 54 treesize of output 56 [2022-11-25 23:58:52,155 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:58:52,156 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:58:52,239 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:58:56,221 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '15633#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:58:56,221 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:58:56,222 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:58:56,222 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [41, 39, 39] total 97 [2022-11-25 23:58:56,222 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1622643863] [2022-11-25 23:58:56,222 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:58:56,222 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 97 states [2022-11-25 23:58:56,223 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:58:56,223 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 97 interpolants. [2022-11-25 23:58:56,224 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=416, Invalid=9120, Unknown=384, NotChecked=1000, Total=10920 [2022-11-25 23:58:56,225 INFO L87 Difference]: Start difference. First operand 105 states and 108 transitions. Second operand has 97 states, 97 states have (on average 2.381443298969072) internal successors, (231), 97 states have internal predecessors, (231), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:59:13,084 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:59:13,084 INFO L93 Difference]: Finished difference Result 157 states and 160 transitions. [2022-11-25 23:59:13,085 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 54 states. [2022-11-25 23:59:13,085 INFO L78 Accepts]: Start accepts. Automaton has has 97 states, 97 states have (on average 2.381443298969072) internal successors, (231), 97 states have internal predecessors, (231), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 95 [2022-11-25 23:59:13,085 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:59:13,086 INFO L225 Difference]: With dead ends: 157 [2022-11-25 23:59:13,086 INFO L226 Difference]: Without dead ends: 108 [2022-11-25 23:59:13,087 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 375 GetRequests, 219 SyntacticMatches, 2 SemanticMatches, 154 ConstructedPredicates, 5 IntricatePredicates, 2 DeprecatedPredicates, 4067 ImplicationChecksByTransitivity, 23.3s TimeCoverageRelationStatistics Valid=1220, Invalid=21065, Unknown=385, NotChecked=1510, Total=24180 [2022-11-25 23:59:13,087 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 246 mSDsluCounter, 75 mSDsCounter, 0 mSdLazyCounter, 4469 mSolverCounterSat, 49 mSolverCounterUnsat, 515 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 6.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 246 SdHoareTripleChecker+Valid, 78 SdHoareTripleChecker+Invalid, 5468 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 49 IncrementalHoareTripleChecker+Valid, 4469 IncrementalHoareTripleChecker+Invalid, 515 IncrementalHoareTripleChecker+Unknown, 435 IncrementalHoareTripleChecker+Unchecked, 6.5s IncrementalHoareTripleChecker+Time [2022-11-25 23:59:13,087 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [246 Valid, 78 Invalid, 5468 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [49 Valid, 4469 Invalid, 515 Unknown, 435 Unchecked, 6.5s Time] [2022-11-25 23:59:13,088 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 108 states. [2022-11-25 23:59:13,089 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 108 to 107. [2022-11-25 23:59:13,089 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 107 states, 105 states have (on average 1.0476190476190477) internal successors, (110), 106 states have internal predecessors, (110), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:59:13,089 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 107 states to 107 states and 110 transitions. [2022-11-25 23:59:13,089 INFO L78 Accepts]: Start accepts. Automaton has 107 states and 110 transitions. Word has length 95 [2022-11-25 23:59:13,089 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:59:13,089 INFO L495 AbstractCegarLoop]: Abstraction has 107 states and 110 transitions. [2022-11-25 23:59:13,089 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 97 states, 97 states have (on average 2.381443298969072) internal successors, (231), 97 states have internal predecessors, (231), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:59:13,089 INFO L276 IsEmpty]: Start isEmpty. Operand 107 states and 110 transitions. [2022-11-25 23:59:13,090 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 98 [2022-11-25 23:59:13,090 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:59:13,090 INFO L195 NwaCegarLoop]: trace histogram [20, 19, 19, 17, 17, 1, 1, 1, 1, 1] [2022-11-25 23:59:13,098 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (35)] Forceful destruction successful, exit code 0 [2022-11-25 23:59:13,298 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable40,35 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:59:13,298 INFO L420 AbstractCegarLoop]: === Iteration 42 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:59:13,299 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:59:13,299 INFO L85 PathProgramCache]: Analyzing trace with hash 1739212091, now seen corresponding path program 14 times [2022-11-25 23:59:13,299 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:59:13,299 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [714063863] [2022-11-25 23:59:13,299 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:59:13,299 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:59:13,355 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-25 23:59:16,511 INFO L134 CoverageAnalysis]: Checked inductivity of 840 backedges. 496 proven. 344 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-25 23:59:16,511 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-25 23:59:16,511 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [714063863] [2022-11-25 23:59:16,511 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [714063863] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-25 23:59:16,511 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [446379384] [2022-11-25 23:59:16,512 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-25 23:59:16,512 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-25 23:59:16,512 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-25 23:59:16,513 INFO L229 MonitoredProcess]: Starting monitored process 36 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-25 23:59:16,516 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (36)] Waiting until timeout for monitored process [2022-11-25 23:59:23,571 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 20 check-sat command(s) [2022-11-25 23:59:23,571 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-25 23:59:23,586 INFO L263 TraceCheckSpWp]: Trace formula consists of 741 conjuncts, 192 conjunts are in the unsatisfiable core [2022-11-25 23:59:23,591 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-25 23:59:23,597 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-25 23:59:25,366 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-25 23:59:25,519 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:25,694 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:25,878 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:26,050 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:26,223 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:26,398 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:26,572 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:26,754 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:26,935 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:27,125 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:27,308 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:27,500 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:27,691 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:27,880 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:28,074 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:28,270 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-25 23:59:28,454 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:59:28,454 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 1 disjoint index pairs (out of 1 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 7 [2022-11-25 23:59:28,581 INFO L134 CoverageAnalysis]: Checked inductivity of 840 backedges. 136 proven. 697 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2022-11-25 23:59:28,581 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-25 23:59:28,939 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2892 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2892) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 1)) 0)) is different from false [2022-11-25 23:59:29,161 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2892 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2892) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 3)) 0)) is different from false [2022-11-25 23:59:29,188 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2892 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2892) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 4)) 0)) is different from false [2022-11-25 23:59:29,433 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2892 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2892) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 6)) 0)) is different from false [2022-11-25 23:59:29,444 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2892 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2892) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 7 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-25 23:59:29,676 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2892 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2892) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 9)) 0)) is different from false [2022-11-25 23:59:29,687 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2892 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2892) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 10)) 0)) is different from false [2022-11-25 23:59:29,699 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2892 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2892) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 11)) 0)) is different from false [2022-11-25 23:59:29,930 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2892 (Array Int Int))) (= 0 (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2892) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 13)))) is different from false [2022-11-25 23:59:29,941 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_2892 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_2892) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 14)) 0)) is different from false [2022-11-25 23:59:30,405 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:59:30,406 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-25 23:59:30,413 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-25 23:59:30,413 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-25 23:59:30,416 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-25 23:59:33,429 INFO L134 CoverageAnalysis]: Checked inductivity of 840 backedges. 136 proven. 359 refuted. 0 times theorem prover too weak. 7 trivial. 338 not checked. [2022-11-25 23:59:33,429 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [446379384] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-25 23:59:33,429 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [514805631] [2022-11-25 23:59:33,431 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-25 23:59:33,431 INFO L166 IcfgInterpreter]: Building call graph [2022-11-25 23:59:33,431 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-25 23:59:33,431 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-25 23:59:33,431 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-25 23:59:33,461 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:59:33,464 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-25 23:59:33,498 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-25 23:59:33,552 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:59:33,571 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:59:33,616 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-25 23:59:33,654 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:59:33,691 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-25 23:59:33,692 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-25 23:59:33,743 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:59:33,748 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-25 23:59:33,749 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:59:33,750 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-25 23:59:33,794 INFO L321 Elim1Store]: treesize reduction 95, result has 15.9 percent of original size [2022-11-25 23:59:33,794 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 54 treesize of output 56 [2022-11-25 23:59:33,853 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-25 23:59:33,854 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-25 23:59:33,905 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-25 23:59:37,721 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '16702#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-25 23:59:37,722 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-25 23:59:37,722 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-25 23:59:37,722 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [42, 40, 41] total 119 [2022-11-25 23:59:37,722 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [815648293] [2022-11-25 23:59:37,722 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-25 23:59:37,722 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 119 states [2022-11-25 23:59:37,722 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-25 23:59:37,723 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 119 interpolants. [2022-11-25 23:59:37,724 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=474, Invalid=12997, Unknown=141, NotChecked=2390, Total=16002 [2022-11-25 23:59:37,725 INFO L87 Difference]: Start difference. First operand 107 states and 110 transitions. Second operand has 119 states, 119 states have (on average 2.319327731092437) internal successors, (276), 119 states have internal predecessors, (276), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:59:57,522 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-25 23:59:57,522 INFO L93 Difference]: Finished difference Result 162 states and 165 transitions. [2022-11-25 23:59:57,523 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 59 states. [2022-11-25 23:59:57,523 INFO L78 Accepts]: Start accepts. Automaton has has 119 states, 119 states have (on average 2.319327731092437) internal successors, (276), 119 states have internal predecessors, (276), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 97 [2022-11-25 23:59:57,523 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-25 23:59:57,524 INFO L225 Difference]: With dead ends: 162 [2022-11-25 23:59:57,524 INFO L226 Difference]: Without dead ends: 110 [2022-11-25 23:59:57,525 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 388 GetRequests, 206 SyntacticMatches, 1 SemanticMatches, 181 ConstructedPredicates, 10 IntricatePredicates, 0 DeprecatedPredicates, 5096 ImplicationChecksByTransitivity, 26.9s TimeCoverageRelationStatistics Valid=1365, Invalid=28286, Unknown=145, NotChecked=3510, Total=33306 [2022-11-25 23:59:57,525 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 127 mSDsluCounter, 113 mSDsCounter, 0 mSdLazyCounter, 5794 mSolverCounterSat, 51 mSolverCounterUnsat, 469 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 6.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 127 SdHoareTripleChecker+Valid, 116 SdHoareTripleChecker+Invalid, 7106 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 51 IncrementalHoareTripleChecker+Valid, 5794 IncrementalHoareTripleChecker+Invalid, 469 IncrementalHoareTripleChecker+Unknown, 792 IncrementalHoareTripleChecker+Unchecked, 7.0s IncrementalHoareTripleChecker+Time [2022-11-25 23:59:57,526 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [127 Valid, 116 Invalid, 7106 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [51 Valid, 5794 Invalid, 469 Unknown, 792 Unchecked, 7.0s Time] [2022-11-25 23:59:57,526 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 110 states. [2022-11-25 23:59:57,528 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 110 to 109. [2022-11-25 23:59:57,528 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 109 states, 107 states have (on average 1.0467289719626167) internal successors, (112), 108 states have internal predecessors, (112), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:59:57,528 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 109 states to 109 states and 112 transitions. [2022-11-25 23:59:57,529 INFO L78 Accepts]: Start accepts. Automaton has 109 states and 112 transitions. Word has length 97 [2022-11-25 23:59:57,529 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-25 23:59:57,529 INFO L495 AbstractCegarLoop]: Abstraction has 109 states and 112 transitions. [2022-11-25 23:59:57,529 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 119 states, 119 states have (on average 2.319327731092437) internal successors, (276), 119 states have internal predecessors, (276), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-25 23:59:57,529 INFO L276 IsEmpty]: Start isEmpty. Operand 109 states and 112 transitions. [2022-11-25 23:59:57,530 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 100 [2022-11-25 23:59:57,530 INFO L187 NwaCegarLoop]: Found error trace [2022-11-25 23:59:57,530 INFO L195 NwaCegarLoop]: trace histogram [20, 19, 19, 18, 18, 1, 1, 1, 1, 1] [2022-11-25 23:59:57,539 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (36)] Forceful destruction successful, exit code 0 [2022-11-25 23:59:57,734 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 36 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable41 [2022-11-25 23:59:57,735 INFO L420 AbstractCegarLoop]: === Iteration 43 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-25 23:59:57,735 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-25 23:59:57,735 INFO L85 PathProgramCache]: Analyzing trace with hash 1479027053, now seen corresponding path program 15 times [2022-11-25 23:59:57,735 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-25 23:59:57,735 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2032362930] [2022-11-25 23:59:57,735 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-25 23:59:57,735 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-25 23:59:57,796 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:00:01,054 INFO L134 CoverageAnalysis]: Checked inductivity of 875 backedges. 496 proven. 379 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-26 00:00:01,054 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:00:01,054 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2032362930] [2022-11-26 00:00:01,054 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2032362930] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-26 00:00:01,055 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1321417515] [2022-11-26 00:00:01,055 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-26 00:00:01,055 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:00:01,055 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:00:01,056 INFO L229 MonitoredProcess]: Starting monitored process 37 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:00:01,058 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (37)] Waiting until timeout for monitored process [2022-11-26 00:00:03,459 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-26 00:00:03,460 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-26 00:00:03,470 INFO L263 TraceCheckSpWp]: Trace formula consists of 754 conjuncts, 189 conjunts are in the unsatisfiable core [2022-11-26 00:00:03,475 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:00:03,483 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-26 00:00:05,389 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:00:05,544 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:05,714 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:05,885 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:06,060 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:06,237 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:06,433 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:06,612 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:06,790 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:06,970 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:07,170 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:07,371 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:07,562 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:07,758 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:07,953 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:08,150 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:08,352 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:08,554 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:00:08,884 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:00:08,887 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-26 00:00:08,887 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 17 treesize of output 10 [2022-11-26 00:00:09,006 INFO L134 CoverageAnalysis]: Checked inductivity of 875 backedges. 90 proven. 783 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-26 00:00:09,006 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:00:09,947 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3074 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3074) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 4)) 0)) is different from false [2022-11-26 00:00:09,958 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3074 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3074) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 5 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-26 00:00:09,969 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3074 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3074) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 6)) 0)) is different from false [2022-11-26 00:00:09,981 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3074 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3074) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 7 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-26 00:00:09,992 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3074 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3074) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 8)) 0)) is different from false [2022-11-26 00:00:10,003 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3074 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3074) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 9)) 0)) is different from false [2022-11-26 00:00:10,261 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3074 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3074) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 11)) 0)) is different from false [2022-11-26 00:00:10,273 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3074 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3074) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 12)) 0)) is different from false [2022-11-26 00:00:10,284 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3074 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3074) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 13)) 0)) is different from false [2022-11-26 00:00:10,295 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3074 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3074) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 14)) 0)) is different from false [2022-11-26 00:00:10,545 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3074 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3074) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 16 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-26 00:00:10,791 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-26 00:00:10,792 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-26 00:00:10,798 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-26 00:00:10,799 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-26 00:00:10,806 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:00:14,067 INFO L134 CoverageAnalysis]: Checked inductivity of 875 backedges. 90 proven. 387 refuted. 0 times theorem prover too weak. 2 trivial. 396 not checked. [2022-11-26 00:00:14,067 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1321417515] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-26 00:00:14,067 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1057013532] [2022-11-26 00:00:14,068 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-26 00:00:14,069 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:00:14,069 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:00:14,069 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:00:14,069 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:00:14,097 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:00:14,106 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-26 00:00:14,136 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:00:14,171 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:00:14,193 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:00:14,258 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:00:14,289 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:00:14,326 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-26 00:00:14,326 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-26 00:00:14,386 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:00:14,387 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:00:14,389 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:00:14,392 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:00:14,425 INFO L321 Elim1Store]: treesize reduction 97, result has 15.7 percent of original size [2022-11-26 00:00:14,425 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 2 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 50 treesize of output 54 [2022-11-26 00:00:14,488 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-26 00:00:14,488 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-26 00:00:14,542 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:00:18,434 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '17806#(and (= |ULTIMATE.start_main_#t~malloc8#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.offset|) (or (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= |ULTIMATE.start_cstpcpy_~from#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= |ULTIMATE.start_cstpcpy_~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|)) (and (<= 0 |ULTIMATE.start_cstpcpy_~to#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.offset|) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.base|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.offset|) (<= 1 |ULTIMATE.start_main_~i~0#1|) (<= 0 |ULTIMATE.start_main_~nondetArea~0#1.base|) (<= 1 |ULTIMATE.start_cstpcpy_~to#1.offset|) (<= |ULTIMATE.start_main_~nondetString~0#1.offset| 0) (<= 1 |ULTIMATE.start_main_~length1~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.base|) (<= 0 |ULTIMATE.start_main_#t~malloc8#1.base|) (<= 1 |ULTIMATE.start_main_~length2~0#1|) (<= 0 |ULTIMATE.start_main_~nondetString~0#1.offset|) (<= |ULTIMATE.start_main_~length1~0#1| 2147483647) (<= |ULTIMATE.start_cstpcpy_#in~to#1.offset| 0) (<= 0 |ULTIMATE.start_main_#t~malloc7#1.base|) (<= 0 |ULTIMATE.start_cstpcpy_~from#1.base|) (<= |ULTIMATE.start_cstpcpy_#in~from#1.offset| 0) (<= |ULTIMATE.start_main_~nondetArea~0#1.offset| 0) (<= 0 |ULTIMATE.start_cstpcpy_#in~to#1.offset|) (<= 1 |ULTIMATE.start_cstpcpy_~from#1.offset|) (<= 0 |#StackHeapBarrier|) (<= |ULTIMATE.start_main_~length2~0#1| 2147483647) (<= 0 |ULTIMATE.start_cstpcpy_#in~from#1.base|))) (= (select (select |#memory_int| |ULTIMATE.start_cstpcpy_~from#1.base|) |ULTIMATE.start_cstpcpy_~from#1.offset|) |ULTIMATE.start_cstpcpy_#t~mem4#1|) (<= (+ |ULTIMATE.start_cstpcpy_~from#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~from#1.base|)) (= (select |#valid| |ULTIMATE.start_cstpcpy_~from#1.base|) 1) (= |ULTIMATE.start_main_#t~malloc7#1.offset| 0) (= |#NULL.offset| 0) (not (<= (+ |ULTIMATE.start_cstpcpy_~to#1.offset| 1) (select |#length| |ULTIMATE.start_cstpcpy_~to#1.base|))) (= |#NULL.base| 0))' at error location [2022-11-26 00:00:18,434 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:00:18,434 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-26 00:00:18,434 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [43, 43, 43] total 124 [2022-11-26 00:00:18,435 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1073171274] [2022-11-26 00:00:18,435 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-26 00:00:18,435 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 124 states [2022-11-26 00:00:18,435 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:00:18,436 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 124 interpolants. [2022-11-26 00:00:18,437 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=486, Invalid=13932, Unknown=146, NotChecked=2728, Total=17292 [2022-11-26 00:00:18,437 INFO L87 Difference]: Start difference. First operand 109 states and 112 transitions. Second operand has 124 states, 124 states have (on average 2.306451612903226) internal successors, (286), 124 states have internal predecessors, (286), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-26 00:00:40,013 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:00:40,013 INFO L93 Difference]: Finished difference Result 167 states and 170 transitions. [2022-11-26 00:00:40,013 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 60 states. [2022-11-26 00:00:40,014 INFO L78 Accepts]: Start accepts. Automaton has has 124 states, 124 states have (on average 2.306451612903226) internal successors, (286), 124 states have internal predecessors, (286), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 99 [2022-11-26 00:00:40,014 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:00:40,014 INFO L225 Difference]: With dead ends: 167 [2022-11-26 00:00:40,014 INFO L226 Difference]: Without dead ends: 112 [2022-11-26 00:00:40,016 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 395 GetRequests, 208 SyntacticMatches, 0 SemanticMatches, 187 ConstructedPredicates, 11 IntricatePredicates, 0 DeprecatedPredicates, 5187 ImplicationChecksByTransitivity, 28.4s TimeCoverageRelationStatistics Valid=1491, Invalid=29911, Unknown=148, NotChecked=3982, Total=35532 [2022-11-26 00:00:40,017 INFO L413 NwaCegarLoop]: 3 mSDtfsCounter, 276 mSDsluCounter, 115 mSDsCounter, 0 mSdLazyCounter, 6442 mSolverCounterSat, 54 mSolverCounterUnsat, 381 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 7.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 276 SdHoareTripleChecker+Valid, 118 SdHoareTripleChecker+Invalid, 7955 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 54 IncrementalHoareTripleChecker+Valid, 6442 IncrementalHoareTripleChecker+Invalid, 381 IncrementalHoareTripleChecker+Unknown, 1078 IncrementalHoareTripleChecker+Unchecked, 8.2s IncrementalHoareTripleChecker+Time [2022-11-26 00:00:40,018 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [276 Valid, 118 Invalid, 7955 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [54 Valid, 6442 Invalid, 381 Unknown, 1078 Unchecked, 8.2s Time] [2022-11-26 00:00:40,018 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 112 states. [2022-11-26 00:00:40,020 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 112 to 111. [2022-11-26 00:00:40,021 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 111 states, 109 states have (on average 1.0458715596330275) internal successors, (114), 110 states have internal predecessors, (114), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-26 00:00:40,021 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 111 states to 111 states and 114 transitions. [2022-11-26 00:00:40,021 INFO L78 Accepts]: Start accepts. Automaton has 111 states and 114 transitions. Word has length 99 [2022-11-26 00:00:40,022 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:00:40,022 INFO L495 AbstractCegarLoop]: Abstraction has 111 states and 114 transitions. [2022-11-26 00:00:40,022 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 124 states, 124 states have (on average 2.306451612903226) internal successors, (286), 124 states have internal predecessors, (286), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-26 00:00:40,022 INFO L276 IsEmpty]: Start isEmpty. Operand 111 states and 114 transitions. [2022-11-26 00:00:40,023 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 102 [2022-11-26 00:00:40,023 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:00:40,023 INFO L195 NwaCegarLoop]: trace histogram [20, 19, 19, 19, 19, 1, 1, 1, 1, 1] [2022-11-26 00:00:40,034 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (37)] Forceful destruction successful, exit code 0 [2022-11-26 00:00:40,226 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 37 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable42 [2022-11-26 00:00:40,227 INFO L420 AbstractCegarLoop]: === Iteration 44 === Targeting ULTIMATE.startErr7REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 6 more)] === [2022-11-26 00:00:40,227 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:00:40,227 INFO L85 PathProgramCache]: Analyzing trace with hash 549308703, now seen corresponding path program 16 times [2022-11-26 00:00:40,227 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:00:40,227 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [18759149] [2022-11-26 00:00:40,227 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:00:40,228 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:00:40,291 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:00:44,576 INFO L134 CoverageAnalysis]: Checked inductivity of 912 backedges. 496 proven. 416 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-26 00:00:44,577 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:00:44,577 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [18759149] [2022-11-26 00:00:44,577 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [18759149] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-26 00:00:44,577 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1054392473] [2022-11-26 00:00:44,577 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-26 00:00:44,577 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:00:44,578 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:00:44,579 INFO L229 MonitoredProcess]: Starting monitored process 38 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:00:44,582 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_df17a113-d279-4664-a641-09f885c4ae2c/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (38)] Waiting until timeout for monitored process [2022-11-26 00:00:45,053 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:00:45,060 INFO L263 TraceCheckSpWp]: Trace formula consists of 767 conjuncts, 196 conjunts are in the unsatisfiable core [2022-11-26 00:00:45,067 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:00:45,075 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 8 [2022-11-26 00:00:47,618 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:00:47,847 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:48,071 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:48,314 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:48,551 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:48,818 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:49,063 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:49,314 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:49,576 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:49,852 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:50,129 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:50,415 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:50,706 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:50,992 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:51,289 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:51,595 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:51,913 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:52,227 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:52,554 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 19 [2022-11-26 00:00:53,143 INFO L321 Elim1Store]: treesize reduction 5, result has 37.5 percent of original size [2022-11-26 00:00:53,144 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 18 treesize of output 10 [2022-11-26 00:00:53,307 INFO L134 CoverageAnalysis]: Checked inductivity of 912 backedges. 38 proven. 874 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-26 00:00:53,307 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:00:53,668 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3262 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3262) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 1)) 0)) is different from false [2022-11-26 00:00:53,978 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3262 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3262) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 3)) 0)) is different from false [2022-11-26 00:00:54,304 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3262 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3262) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 5 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-26 00:00:54,319 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3262 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3262) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 6)) 0)) is different from false [2022-11-26 00:00:54,333 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3262 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3262) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ 7 |c_ULTIMATE.start_cstpcpy_~from#1.offset|)) 0)) is different from false [2022-11-26 00:00:54,655 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3262 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3262) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 9)) 0)) is different from false [2022-11-26 00:00:55,283 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3262 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3262) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 12)) 0)) is different from false [2022-11-26 00:00:55,298 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3262 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3262) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 13)) 0)) is different from false [2022-11-26 00:00:55,623 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3262 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3262) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 15)) 0)) is different from false [2022-11-26 00:00:55,945 WARN L837 $PredicateComparison]: unable to prove that (forall ((v_ArrVal_3262 (Array Int Int))) (= (select (select (store |c_#memory_int| |c_ULTIMATE.start_cstpcpy_~to#1.base| v_ArrVal_3262) |c_ULTIMATE.start_cstpcpy_~from#1.base|) (+ |c_ULTIMATE.start_cstpcpy_~from#1.offset| 17)) 0)) is different from false [2022-11-26 00:00:56,335 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-26 00:00:56,336 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 23 treesize of output 24 [2022-11-26 00:00:56,345 INFO L321 Elim1Store]: treesize reduction 0, result has 100.0 percent of original size [2022-11-26 00:00:56,345 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 37 treesize of output 32 [2022-11-26 00:00:57,226 INFO L134 CoverageAnalysis]: Checked inductivity of 912 backedges. 38 proven. 478 refuted. 0 times theorem prover too weak. 0 trivial. 396 not checked. [2022-11-26 00:00:57,226 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1054392473] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-26 00:00:57,227 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [784020754] [2022-11-26 00:00:57,228 INFO L159 IcfgInterpreter]: Started Sifa with 9 locations of interest [2022-11-26 00:00:57,228 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:00:57,228 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:00:57,228 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:00:57,229 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:00:57,260 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:00:57,264 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 15 [2022-11-26 00:00:57,303 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:00:57,361 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:00:57,386 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:00:57,435 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:00:57,482 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:00:57,518 INFO L321 Elim1Store]: treesize reduction 63, result has 22.2 percent of original size [2022-11-26 00:00:57,518 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 3 case distinctions, treesize of input 29 treesize of output 31 [2022-11-26 00:00:57,601 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:00:57,603 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:00:57,607 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:00:57,608 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:00:57,609 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:00:57,652 INFO L321 Elim1Store]: treesize reduction 99, result has 15.4 percent of original size [2022-11-26 00:00:57,653 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 4 select indices, 4 select index equivalence classes, 1 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 7 case distinctions, treesize of input 48 treesize of output 52 [2022-11-26 00:00:57,730 INFO L321 Elim1Store]: treesize reduction 25, result has 21.9 percent of original size [2022-11-26 00:00:57,731 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 19 treesize of output 18 [2022-11-26 00:00:57,818 INFO L180 IcfgInterpreter]: Interpretation finished