./Ultimate.py --spec ../../sv-benchmarks/c/properties/valid-memsafety.prp --file ../../sv-benchmarks/c/memsafety/test-0234-1.i --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for memory safety (deref-memtrack) Using default analysis Version 38b53e6a Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/config/TaipanMemDerefMemtrack.xml -i ../../sv-benchmarks/c/memsafety/test-0234-1.i -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/config/svcomp-DerefFreeMemtrack-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G valid-free) ) CHECK( init(main()), LTL(G valid-deref) ) CHECK( init(main()), LTL(G valid-memtrack) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 2e40f9e7b474ba5b84186650c7060a1f3eed5394bab52ac2eaa493135efa417c --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-38b53e6 [2022-11-26 00:15:59,427 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-26 00:15:59,431 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-26 00:15:59,466 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-26 00:15:59,466 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-26 00:15:59,468 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-26 00:15:59,471 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-26 00:15:59,473 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-26 00:15:59,476 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-26 00:15:59,477 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-26 00:15:59,479 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-26 00:15:59,488 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-26 00:15:59,489 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-26 00:15:59,493 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-26 00:15:59,494 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-26 00:15:59,496 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-26 00:15:59,497 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-26 00:15:59,499 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-26 00:15:59,506 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-26 00:15:59,516 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-26 00:15:59,520 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-26 00:15:59,522 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-26 00:15:59,524 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-26 00:15:59,526 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-26 00:15:59,532 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-26 00:15:59,536 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-26 00:15:59,537 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-26 00:15:59,539 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-26 00:15:59,540 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-26 00:15:59,544 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-26 00:15:59,544 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-26 00:15:59,546 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-26 00:15:59,548 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-26 00:15:59,550 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-26 00:15:59,551 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-26 00:15:59,552 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-26 00:15:59,554 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-26 00:15:59,555 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-26 00:15:59,555 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-26 00:15:59,557 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-26 00:15:59,558 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-26 00:15:59,560 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/config/svcomp-DerefFreeMemtrack-32bit-Taipan_Default.epf [2022-11-26 00:15:59,616 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-26 00:15:59,616 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-26 00:15:59,617 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-26 00:15:59,617 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-26 00:15:59,618 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-26 00:15:59,619 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-26 00:15:59,619 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-26 00:15:59,619 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-26 00:15:59,619 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-26 00:15:59,620 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-26 00:15:59,621 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-26 00:15:59,621 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-26 00:15:59,622 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-26 00:15:59,622 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-26 00:15:59,622 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-26 00:15:59,622 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-26 00:15:59,623 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-26 00:15:59,623 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-26 00:15:59,624 INFO L136 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2022-11-26 00:15:59,624 INFO L138 SettingsManager]: * Create parallel compositions if possible=false [2022-11-26 00:15:59,624 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-26 00:15:59,625 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-26 00:15:59,625 INFO L138 SettingsManager]: * Check unreachability of error function in SV-COMP mode=false [2022-11-26 00:15:59,625 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-26 00:15:59,626 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-26 00:15:59,626 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-26 00:15:59,627 INFO L138 SettingsManager]: * Check for the main procedure if all allocated memory was freed=true [2022-11-26 00:15:59,627 INFO L138 SettingsManager]: * Bitprecise bitfields=true [2022-11-26 00:15:59,627 INFO L138 SettingsManager]: * SV-COMP memtrack compatibility mode=true [2022-11-26 00:15:59,628 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-26 00:15:59,628 INFO L138 SettingsManager]: * Adapt memory model on pointer casts if necessary=true [2022-11-26 00:15:59,628 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-26 00:15:59,628 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-26 00:15:59,629 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-26 00:15:59,629 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-26 00:15:59,629 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-26 00:15:59,629 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-26 00:15:59,630 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-26 00:15:59,630 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-26 00:15:59,630 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-26 00:15:59,631 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-26 00:15:59,631 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-26 00:15:59,631 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G valid-free) ) CHECK( init(main()), LTL(G valid-deref) ) CHECK( init(main()), LTL(G valid-memtrack) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 2e40f9e7b474ba5b84186650c7060a1f3eed5394bab52ac2eaa493135efa417c [2022-11-26 00:15:59,960 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-26 00:16:00,002 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-26 00:16:00,006 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-26 00:16:00,008 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-26 00:16:00,009 INFO L275 PluginConnector]: CDTParser initialized [2022-11-26 00:16:00,011 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/../../sv-benchmarks/c/memsafety/test-0234-1.i [2022-11-26 00:16:03,694 INFO L500 CDTParser]: Created temporary CDT project at NULL [2022-11-26 00:16:03,982 INFO L351 CDTParser]: Found 1 translation units. [2022-11-26 00:16:03,983 INFO L172 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/sv-benchmarks/c/memsafety/test-0234-1.i [2022-11-26 00:16:03,999 INFO L394 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/data/cd1ef3ccc/813c2a0b357149a9ab43e20619a99107/FLAG7852a0bdd [2022-11-26 00:16:04,030 INFO L402 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/data/cd1ef3ccc/813c2a0b357149a9ab43e20619a99107 [2022-11-26 00:16:04,044 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-26 00:16:04,046 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-26 00:16:04,048 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-26 00:16:04,048 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-26 00:16:04,056 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-26 00:16:04,057 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,058 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@463f9f33 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04, skipping insertion in model container [2022-11-26 00:16:04,059 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,067 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-26 00:16:04,141 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-26 00:16:04,602 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-26 00:16:04,622 INFO L203 MainTranslator]: Completed pre-run [2022-11-26 00:16:04,717 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-26 00:16:04,767 INFO L208 MainTranslator]: Completed translation [2022-11-26 00:16:04,768 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04 WrapperNode [2022-11-26 00:16:04,768 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-26 00:16:04,770 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-26 00:16:04,771 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-26 00:16:04,771 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-26 00:16:04,781 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,805 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,860 INFO L138 Inliner]: procedures = 188, calls = 60, calls flagged for inlining = 14, calls inlined = 14, statements flattened = 203 [2022-11-26 00:16:04,860 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-26 00:16:04,861 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-26 00:16:04,862 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-26 00:16:04,862 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-26 00:16:04,875 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,876 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,882 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,892 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,930 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,937 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,950 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,952 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,957 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-26 00:16:04,961 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-26 00:16:04,961 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-26 00:16:04,961 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-26 00:16:04,963 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04" (1/1) ... [2022-11-26 00:16:04,970 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-26 00:16:04,985 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:16:05,008 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-26 00:16:05,032 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-26 00:16:05,073 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocOnHeap [2022-11-26 00:16:05,074 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-26 00:16:05,074 INFO L130 BoogieDeclarations]: Found specification of procedure write~$Pointer$ [2022-11-26 00:16:05,075 INFO L130 BoogieDeclarations]: Found specification of procedure read~$Pointer$ [2022-11-26 00:16:05,075 INFO L130 BoogieDeclarations]: Found specification of procedure zalloc_or_die [2022-11-26 00:16:05,075 INFO L138 BoogieDeclarations]: Found implementation of procedure zalloc_or_die [2022-11-26 00:16:05,075 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.dealloc [2022-11-26 00:16:05,076 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~$Pointer$ [2022-11-26 00:16:05,076 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-26 00:16:05,076 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-26 00:16:05,076 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-26 00:16:05,304 INFO L235 CfgBuilder]: Building ICFG [2022-11-26 00:16:05,307 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-26 00:16:06,148 INFO L276 CfgBuilder]: Performing block encoding [2022-11-26 00:16:06,280 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-26 00:16:06,282 INFO L300 CfgBuilder]: Removed 10 assume(true) statements. [2022-11-26 00:16:06,286 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 26.11 12:16:06 BoogieIcfgContainer [2022-11-26 00:16:06,287 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-26 00:16:06,292 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-26 00:16:06,293 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-26 00:16:06,297 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-26 00:16:06,299 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 26.11 12:16:04" (1/3) ... [2022-11-26 00:16:06,302 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2416cad4 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 26.11 12:16:06, skipping insertion in model container [2022-11-26 00:16:06,303 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 12:16:04" (2/3) ... [2022-11-26 00:16:06,304 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2416cad4 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 26.11 12:16:06, skipping insertion in model container [2022-11-26 00:16:06,304 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 26.11 12:16:06" (3/3) ... [2022-11-26 00:16:06,306 INFO L112 eAbstractionObserver]: Analyzing ICFG test-0234-1.i [2022-11-26 00:16:06,334 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:false NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-26 00:16:06,334 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 75 error locations. [2022-11-26 00:16:06,429 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-26 00:16:06,437 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=false, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=All, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@10563465, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-26 00:16:06,437 INFO L358 AbstractCegarLoop]: Starting to check reachability of 75 error locations. [2022-11-26 00:16:06,442 INFO L276 IsEmpty]: Start isEmpty. Operand has 159 states, 76 states have (on average 2.263157894736842) internal successors, (172), 151 states have internal predecessors, (172), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2022-11-26 00:16:06,452 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 4 [2022-11-26 00:16:06,453 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:16:06,454 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1] [2022-11-26 00:16:06,454 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting ULTIMATE.startErr32REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:16:06,462 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:16:06,462 INFO L85 PathProgramCache]: Analyzing trace with hash 352557, now seen corresponding path program 1 times [2022-11-26 00:16:06,476 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:16:06,477 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [604078550] [2022-11-26 00:16:06,477 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:06,478 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:16:06,597 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:16:06,652 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-26 00:16:06,653 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:16:06,654 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [604078550] [2022-11-26 00:16:06,655 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [604078550] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-26 00:16:06,656 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-26 00:16:06,656 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-26 00:16:06,658 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1172031455] [2022-11-26 00:16:06,660 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-26 00:16:06,665 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-26 00:16:06,666 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:16:06,712 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-26 00:16:06,719 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-26 00:16:06,722 INFO L87 Difference]: Start difference. First operand has 159 states, 76 states have (on average 2.263157894736842) internal successors, (172), 151 states have internal predecessors, (172), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) Second operand has 2 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-26 00:16:06,879 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:16:06,879 INFO L93 Difference]: Finished difference Result 159 states and 174 transitions. [2022-11-26 00:16:06,881 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-26 00:16:06,884 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 3 [2022-11-26 00:16:06,885 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:16:06,906 INFO L225 Difference]: With dead ends: 159 [2022-11-26 00:16:06,906 INFO L226 Difference]: Without dead ends: 158 [2022-11-26 00:16:06,910 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-26 00:16:06,918 INFO L413 NwaCegarLoop]: 150 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 24 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 150 SdHoareTripleChecker+Invalid, 24 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 24 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-26 00:16:06,922 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 150 Invalid, 24 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 24 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-26 00:16:06,947 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 158 states. [2022-11-26 00:16:06,995 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 158 to 158. [2022-11-26 00:16:06,998 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 158 states, 76 states have (on average 2.1184210526315788) internal successors, (161), 150 states have internal predecessors, (161), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2022-11-26 00:16:07,011 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 158 states to 158 states and 173 transitions. [2022-11-26 00:16:07,013 INFO L78 Accepts]: Start accepts. Automaton has 158 states and 173 transitions. Word has length 3 [2022-11-26 00:16:07,013 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:16:07,014 INFO L495 AbstractCegarLoop]: Abstraction has 158 states and 173 transitions. [2022-11-26 00:16:07,014 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-26 00:16:07,014 INFO L276 IsEmpty]: Start isEmpty. Operand 158 states and 173 transitions. [2022-11-26 00:16:07,015 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 6 [2022-11-26 00:16:07,015 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:16:07,015 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1] [2022-11-26 00:16:07,016 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-26 00:16:07,017 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting zalloc_or_dieErr0ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:16:07,018 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:16:07,018 INFO L85 PathProgramCache]: Analyzing trace with hash 334806497, now seen corresponding path program 1 times [2022-11-26 00:16:07,019 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:16:07,019 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1615655969] [2022-11-26 00:16:07,019 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:07,019 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:16:07,056 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:16:07,062 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [738001414] [2022-11-26 00:16:07,063 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:07,064 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:07,065 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:16:07,072 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:16:07,104 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-26 00:16:07,215 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:16:07,218 INFO L263 TraceCheckSpWp]: Trace formula consists of 85 conjuncts, 6 conjunts are in the unsatisfiable core [2022-11-26 00:16:07,224 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:16:07,303 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:16:07,316 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-26 00:16:07,316 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-26 00:16:07,317 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:16:07,318 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1615655969] [2022-11-26 00:16:07,318 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:16:07,324 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [738001414] [2022-11-26 00:16:07,324 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [738001414] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-26 00:16:07,324 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-26 00:16:07,325 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-26 00:16:07,327 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1972379936] [2022-11-26 00:16:07,328 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-26 00:16:07,332 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-26 00:16:07,334 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:16:07,334 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-26 00:16:07,335 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-26 00:16:07,335 INFO L87 Difference]: Start difference. First operand 158 states and 173 transitions. Second operand has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-26 00:16:07,584 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:16:07,585 INFO L93 Difference]: Finished difference Result 157 states and 172 transitions. [2022-11-26 00:16:07,585 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-26 00:16:07,586 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 5 [2022-11-26 00:16:07,593 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:16:07,596 INFO L225 Difference]: With dead ends: 157 [2022-11-26 00:16:07,597 INFO L226 Difference]: Without dead ends: 157 [2022-11-26 00:16:07,597 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-26 00:16:07,599 INFO L413 NwaCegarLoop]: 145 mSDtfsCounter, 5 mSDsluCounter, 92 mSDsCounter, 0 mSdLazyCounter, 101 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 5 SdHoareTripleChecker+Valid, 237 SdHoareTripleChecker+Invalid, 101 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 101 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-26 00:16:07,600 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [5 Valid, 237 Invalid, 101 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 101 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-26 00:16:07,604 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 157 states. [2022-11-26 00:16:07,622 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 157 to 157. [2022-11-26 00:16:07,622 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 157 states, 76 states have (on average 2.1052631578947367) internal successors, (160), 149 states have internal predecessors, (160), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2022-11-26 00:16:07,624 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 157 states to 157 states and 172 transitions. [2022-11-26 00:16:07,624 INFO L78 Accepts]: Start accepts. Automaton has 157 states and 172 transitions. Word has length 5 [2022-11-26 00:16:07,624 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:16:07,624 INFO L495 AbstractCegarLoop]: Abstraction has 157 states and 172 transitions. [2022-11-26 00:16:07,625 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-26 00:16:07,625 INFO L276 IsEmpty]: Start isEmpty. Operand 157 states and 172 transitions. [2022-11-26 00:16:07,625 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 7 [2022-11-26 00:16:07,625 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:16:07,626 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1] [2022-11-26 00:16:07,641 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-26 00:16:07,834 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:07,834 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting zalloc_or_dieErr1ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:16:07,835 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:16:07,835 INFO L85 PathProgramCache]: Analyzing trace with hash 1789067145, now seen corresponding path program 1 times [2022-11-26 00:16:07,835 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:16:07,836 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1783912183] [2022-11-26 00:16:07,836 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:07,836 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:16:07,848 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:16:07,849 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [771046050] [2022-11-26 00:16:07,849 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:07,849 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:07,849 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:16:07,851 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:16:07,864 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-26 00:16:07,958 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:16:07,960 INFO L263 TraceCheckSpWp]: Trace formula consists of 87 conjuncts, 20 conjunts are in the unsatisfiable core [2022-11-26 00:16:07,963 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:16:08,013 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 8 treesize of output 7 [2022-11-26 00:16:08,044 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-26 00:16:08,044 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-26 00:16:08,045 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:16:08,045 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1783912183] [2022-11-26 00:16:08,045 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:16:08,045 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [771046050] [2022-11-26 00:16:08,046 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [771046050] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-26 00:16:08,046 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-26 00:16:08,046 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-26 00:16:08,046 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1158752236] [2022-11-26 00:16:08,047 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-26 00:16:08,047 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-26 00:16:08,047 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:16:08,048 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-26 00:16:08,048 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-26 00:16:08,048 INFO L87 Difference]: Start difference. First operand 157 states and 172 transitions. Second operand has 4 states, 3 states have (on average 1.6666666666666667) internal successors, (5), 3 states have internal predecessors, (5), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-26 00:16:08,276 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:16:08,276 INFO L93 Difference]: Finished difference Result 162 states and 177 transitions. [2022-11-26 00:16:08,277 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-26 00:16:08,277 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 1.6666666666666667) internal successors, (5), 3 states have internal predecessors, (5), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 6 [2022-11-26 00:16:08,277 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:16:08,278 INFO L225 Difference]: With dead ends: 162 [2022-11-26 00:16:08,279 INFO L226 Difference]: Without dead ends: 162 [2022-11-26 00:16:08,279 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-26 00:16:08,280 INFO L413 NwaCegarLoop]: 140 mSDtfsCounter, 8 mSDsluCounter, 243 mSDsCounter, 0 mSdLazyCounter, 128 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 383 SdHoareTripleChecker+Invalid, 132 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 128 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-26 00:16:08,280 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 383 Invalid, 132 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 128 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-26 00:16:08,282 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 162 states. [2022-11-26 00:16:08,290 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 162 to 162. [2022-11-26 00:16:08,290 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 162 states, 80 states have (on average 2.0625) internal successors, (165), 153 states have internal predecessors, (165), 6 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2022-11-26 00:16:08,292 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 162 states to 162 states and 177 transitions. [2022-11-26 00:16:08,292 INFO L78 Accepts]: Start accepts. Automaton has 162 states and 177 transitions. Word has length 6 [2022-11-26 00:16:08,292 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:16:08,292 INFO L495 AbstractCegarLoop]: Abstraction has 162 states and 177 transitions. [2022-11-26 00:16:08,293 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 1.6666666666666667) internal successors, (5), 3 states have internal predecessors, (5), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-26 00:16:08,293 INFO L276 IsEmpty]: Start isEmpty. Operand 162 states and 177 transitions. [2022-11-26 00:16:08,294 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 46 [2022-11-26 00:16:08,294 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:16:08,295 INFO L195 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:16:08,311 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-26 00:16:08,501 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:08,502 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting zalloc_or_dieErr1ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:16:08,502 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:16:08,502 INFO L85 PathProgramCache]: Analyzing trace with hash -448372376, now seen corresponding path program 1 times [2022-11-26 00:16:08,502 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:16:08,502 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [479624392] [2022-11-26 00:16:08,503 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:08,503 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:16:08,563 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:16:08,574 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [377856119] [2022-11-26 00:16:08,574 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:08,575 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:08,575 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:16:08,577 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:16:08,600 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-26 00:16:08,816 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:16:08,821 INFO L263 TraceCheckSpWp]: Trace formula consists of 499 conjuncts, 19 conjunts are in the unsatisfiable core [2022-11-26 00:16:08,828 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:16:08,951 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:16:09,099 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 11 [2022-11-26 00:16:09,389 INFO L134 CoverageAnalysis]: Checked inductivity of 65 backedges. 47 proven. 0 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2022-11-26 00:16:09,389 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-26 00:16:09,390 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:16:09,390 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [479624392] [2022-11-26 00:16:09,390 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:16:09,390 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [377856119] [2022-11-26 00:16:09,391 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [377856119] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-26 00:16:09,391 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-26 00:16:09,391 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2022-11-26 00:16:09,391 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [452700327] [2022-11-26 00:16:09,391 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-26 00:16:09,393 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-26 00:16:09,393 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:16:09,394 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-26 00:16:09,396 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2022-11-26 00:16:09,397 INFO L87 Difference]: Start difference. First operand 162 states and 177 transitions. Second operand has 5 states, 4 states have (on average 6.0) internal successors, (24), 5 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2022-11-26 00:16:11,527 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:16:13,713 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:16:16,228 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:16:16,508 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:16:16,508 INFO L93 Difference]: Finished difference Result 166 states and 181 transitions. [2022-11-26 00:16:16,509 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-26 00:16:16,510 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 6.0) internal successors, (24), 5 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) Word has length 45 [2022-11-26 00:16:16,510 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:16:16,511 INFO L225 Difference]: With dead ends: 166 [2022-11-26 00:16:16,511 INFO L226 Difference]: Without dead ends: 164 [2022-11-26 00:16:16,511 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 46 GetRequests, 41 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=17, Invalid=25, Unknown=0, NotChecked=0, Total=42 [2022-11-26 00:16:16,512 INFO L413 NwaCegarLoop]: 139 mSDtfsCounter, 7 mSDsluCounter, 363 mSDsCounter, 0 mSdLazyCounter, 177 mSolverCounterSat, 5 mSolverCounterUnsat, 3 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 6.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 7 SdHoareTripleChecker+Valid, 502 SdHoareTripleChecker+Invalid, 185 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 177 IncrementalHoareTripleChecker+Invalid, 3 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 6.9s IncrementalHoareTripleChecker+Time [2022-11-26 00:16:16,513 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [7 Valid, 502 Invalid, 185 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 177 Invalid, 3 Unknown, 0 Unchecked, 6.9s Time] [2022-11-26 00:16:16,514 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 164 states. [2022-11-26 00:16:16,521 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 164 to 164. [2022-11-26 00:16:16,521 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 164 states, 82 states have (on average 2.0365853658536586) internal successors, (167), 155 states have internal predecessors, (167), 6 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2022-11-26 00:16:16,523 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 164 states to 164 states and 179 transitions. [2022-11-26 00:16:16,523 INFO L78 Accepts]: Start accepts. Automaton has 164 states and 179 transitions. Word has length 45 [2022-11-26 00:16:16,523 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:16:16,524 INFO L495 AbstractCegarLoop]: Abstraction has 164 states and 179 transitions. [2022-11-26 00:16:16,524 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 6.0) internal successors, (24), 5 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2022-11-26 00:16:16,524 INFO L276 IsEmpty]: Start isEmpty. Operand 164 states and 179 transitions. [2022-11-26 00:16:16,525 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 51 [2022-11-26 00:16:16,526 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:16:16,526 INFO L195 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:16:16,541 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-26 00:16:16,740 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:16,741 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting zalloc_or_dieErr1ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:16:16,741 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:16:16,741 INFO L85 PathProgramCache]: Analyzing trace with hash -706190496, now seen corresponding path program 1 times [2022-11-26 00:16:16,742 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:16:16,742 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1431279700] [2022-11-26 00:16:16,742 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:16,742 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:16:16,808 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:16:16,808 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1511770674] [2022-11-26 00:16:16,808 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:16,808 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:16,808 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:16:16,810 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:16:16,815 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-11-26 00:16:17,199 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:16:17,205 INFO L263 TraceCheckSpWp]: Trace formula consists of 574 conjuncts, 25 conjunts are in the unsatisfiable core [2022-11-26 00:16:17,210 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:16:17,272 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:16:17,334 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:16:17,450 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 60 proven. 3 refuted. 0 times theorem prover too weak. 37 trivial. 0 not checked. [2022-11-26 00:16:17,450 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:16:17,782 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 22 proven. 22 refuted. 0 times theorem prover too weak. 56 trivial. 0 not checked. [2022-11-26 00:16:17,782 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:16:17,782 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1431279700] [2022-11-26 00:16:17,782 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:16:17,783 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1511770674] [2022-11-26 00:16:17,783 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1511770674] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-26 00:16:17,783 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1954192135] [2022-11-26 00:16:17,806 INFO L159 IcfgInterpreter]: Started Sifa with 23 locations of interest [2022-11-26 00:16:17,806 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:16:17,811 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:16:17,818 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:16:17,819 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:16:17,894 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:16:17,906 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:16:17,934 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:17,947 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:17,960 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:18,046 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-26 00:16:18,065 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:16:18,083 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:16:18,156 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:18,165 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:18,173 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:18,221 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:18,229 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:18,303 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:18,312 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:19,515 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:16:19,580 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:16:19,625 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:16:19,770 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:19,811 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:19,876 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:19,942 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:19,955 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:19,971 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:20,010 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:16:26,719 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSifa [1954192135] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-26 00:16:26,719 INFO L184 FreeRefinementEngine]: Found 1 perfect and 2 imperfect interpolant sequences. [2022-11-26 00:16:26,720 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [20] imperfect sequences [7, 6] total 31 [2022-11-26 00:16:26,720 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [770819179] [2022-11-26 00:16:26,721 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-26 00:16:26,721 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2022-11-26 00:16:26,721 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:16:26,721 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2022-11-26 00:16:26,722 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=139, Invalid=791, Unknown=0, NotChecked=0, Total=930 [2022-11-26 00:16:26,722 INFO L87 Difference]: Start difference. First operand 164 states and 179 transitions. Second operand has 22 states, 14 states have (on average 1.2142857142857142) internal successors, (17), 15 states have internal predecessors, (17), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-26 00:16:29,850 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:16:29,850 INFO L93 Difference]: Finished difference Result 331 states and 361 transitions. [2022-11-26 00:16:29,851 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2022-11-26 00:16:29,851 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 14 states have (on average 1.2142857142857142) internal successors, (17), 15 states have internal predecessors, (17), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) Word has length 50 [2022-11-26 00:16:29,852 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:16:29,854 INFO L225 Difference]: With dead ends: 331 [2022-11-26 00:16:29,854 INFO L226 Difference]: Without dead ends: 331 [2022-11-26 00:16:29,855 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 150 GetRequests, 112 SyntacticMatches, 7 SemanticMatches, 31 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 239 ImplicationChecksByTransitivity, 7.4s TimeCoverageRelationStatistics Valid=155, Invalid=901, Unknown=0, NotChecked=0, Total=1056 [2022-11-26 00:16:29,856 INFO L413 NwaCegarLoop]: 83 mSDtfsCounter, 432 mSDsluCounter, 778 mSDsCounter, 0 mSdLazyCounter, 1263 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 433 SdHoareTripleChecker+Valid, 861 SdHoareTripleChecker+Invalid, 1265 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 1263 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.4s IncrementalHoareTripleChecker+Time [2022-11-26 00:16:29,856 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [433 Valid, 861 Invalid, 1265 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 1263 Invalid, 0 Unknown, 0 Unchecked, 2.4s Time] [2022-11-26 00:16:29,859 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 331 states. [2022-11-26 00:16:29,869 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 331 to 209. [2022-11-26 00:16:29,870 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 209 states, 119 states have (on average 1.9831932773109244) internal successors, (236), 192 states have internal predecessors, (236), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-26 00:16:29,872 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 209 states to 209 states and 260 transitions. [2022-11-26 00:16:29,872 INFO L78 Accepts]: Start accepts. Automaton has 209 states and 260 transitions. Word has length 50 [2022-11-26 00:16:29,872 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:16:29,873 INFO L495 AbstractCegarLoop]: Abstraction has 209 states and 260 transitions. [2022-11-26 00:16:29,873 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 14 states have (on average 1.2142857142857142) internal successors, (17), 15 states have internal predecessors, (17), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (5), 5 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-26 00:16:29,873 INFO L276 IsEmpty]: Start isEmpty. Operand 209 states and 260 transitions. [2022-11-26 00:16:29,874 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 55 [2022-11-26 00:16:29,875 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:16:29,875 INFO L195 NwaCegarLoop]: trace histogram [6, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:16:29,896 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-11-26 00:16:30,084 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:30,084 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:16:30,085 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:16:30,085 INFO L85 PathProgramCache]: Analyzing trace with hash 451242709, now seen corresponding path program 1 times [2022-11-26 00:16:30,085 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:16:30,085 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1616790206] [2022-11-26 00:16:30,085 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:30,085 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:16:30,127 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:16:30,131 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1183601465] [2022-11-26 00:16:30,131 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:30,131 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:30,131 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:16:30,133 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:16:30,164 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2022-11-26 00:16:30,376 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:16:30,381 INFO L263 TraceCheckSpWp]: Trace formula consists of 617 conjuncts, 22 conjunts are in the unsatisfiable core [2022-11-26 00:16:30,386 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:16:30,484 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_219 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_219))) is different from true [2022-11-26 00:16:30,577 INFO L321 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2022-11-26 00:16:30,577 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2022-11-26 00:16:30,600 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 61 proven. 6 refuted. 0 times theorem prover too weak. 58 trivial. 1 not checked. [2022-11-26 00:16:30,600 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:16:30,884 INFO L321 Elim1Store]: treesize reduction 5, result has 37.5 percent of original size [2022-11-26 00:16:30,885 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 11 [2022-11-26 00:16:30,909 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 61 proven. 7 refuted. 0 times theorem prover too weak. 58 trivial. 0 not checked. [2022-11-26 00:16:30,910 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:16:30,910 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1616790206] [2022-11-26 00:16:30,910 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:16:30,910 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1183601465] [2022-11-26 00:16:30,910 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1183601465] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-26 00:16:30,911 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2082518098] [2022-11-26 00:16:30,914 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-26 00:16:30,914 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:16:30,915 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:16:30,915 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:16:30,916 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:16:30,956 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:16:30,966 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:16:30,991 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:31,005 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:31,018 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:31,080 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-26 00:16:31,099 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:16:31,116 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:16:31,180 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:31,189 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:31,198 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:31,235 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:31,242 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:31,283 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:31,298 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:32,715 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:16:32,806 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:16:32,841 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:16:32,971 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:16:32,996 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:16:33,029 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:16:33,107 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:33,117 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:33,131 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:33,148 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:16:41,179 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '2825#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1)) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:16:41,179 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:16:41,179 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-26 00:16:41,180 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 8] total 11 [2022-11-26 00:16:41,180 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [758322198] [2022-11-26 00:16:41,180 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-26 00:16:41,181 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2022-11-26 00:16:41,181 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:16:41,182 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2022-11-26 00:16:41,183 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=152, Invalid=907, Unknown=1, NotChecked=62, Total=1122 [2022-11-26 00:16:41,183 INFO L87 Difference]: Start difference. First operand 209 states and 260 transitions. Second operand has 12 states, 10 states have (on average 3.2) internal successors, (32), 10 states have internal predecessors, (32), 2 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-11-26 00:16:41,955 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:16:41,955 INFO L93 Difference]: Finished difference Result 240 states and 292 transitions. [2022-11-26 00:16:41,962 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-11-26 00:16:41,962 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 10 states have (on average 3.2) internal successors, (32), 10 states have internal predecessors, (32), 2 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) Word has length 54 [2022-11-26 00:16:41,963 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:16:41,964 INFO L225 Difference]: With dead ends: 240 [2022-11-26 00:16:41,964 INFO L226 Difference]: Without dead ends: 240 [2022-11-26 00:16:41,965 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 166 GetRequests, 121 SyntacticMatches, 9 SemanticMatches, 36 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 265 ImplicationChecksByTransitivity, 8.3s TimeCoverageRelationStatistics Valid=182, Invalid=1153, Unknown=1, NotChecked=70, Total=1406 [2022-11-26 00:16:41,966 INFO L413 NwaCegarLoop]: 123 mSDtfsCounter, 96 mSDsluCounter, 658 mSDsCounter, 0 mSdLazyCounter, 612 mSolverCounterSat, 17 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 96 SdHoareTripleChecker+Valid, 781 SdHoareTripleChecker+Invalid, 836 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 17 IncrementalHoareTripleChecker+Valid, 612 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 207 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2022-11-26 00:16:41,966 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [96 Valid, 781 Invalid, 836 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [17 Valid, 612 Invalid, 0 Unknown, 207 Unchecked, 0.6s Time] [2022-11-26 00:16:41,967 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 240 states. [2022-11-26 00:16:41,979 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 240 to 207. [2022-11-26 00:16:41,980 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 207 states, 119 states have (on average 1.949579831932773) internal successors, (232), 190 states have internal predecessors, (232), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-26 00:16:41,982 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 207 states to 207 states and 256 transitions. [2022-11-26 00:16:41,982 INFO L78 Accepts]: Start accepts. Automaton has 207 states and 256 transitions. Word has length 54 [2022-11-26 00:16:41,983 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:16:41,983 INFO L495 AbstractCegarLoop]: Abstraction has 207 states and 256 transitions. [2022-11-26 00:16:41,983 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 10 states have (on average 3.2) internal successors, (32), 10 states have internal predecessors, (32), 2 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-11-26 00:16:41,983 INFO L276 IsEmpty]: Start isEmpty. Operand 207 states and 256 transitions. [2022-11-26 00:16:41,985 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 55 [2022-11-26 00:16:41,985 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:16:41,985 INFO L195 NwaCegarLoop]: trace histogram [6, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:16:42,002 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2022-11-26 00:16:42,194 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5,6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:42,194 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:16:42,195 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:16:42,195 INFO L85 PathProgramCache]: Analyzing trace with hash 451242710, now seen corresponding path program 1 times [2022-11-26 00:16:42,195 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:16:42,195 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [893611917] [2022-11-26 00:16:42,196 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:42,196 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:16:42,240 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:16:42,243 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1707036218] [2022-11-26 00:16:42,243 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:42,244 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:42,244 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:16:42,245 INFO L229 MonitoredProcess]: Starting monitored process 7 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:16:42,253 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2022-11-26 00:16:42,575 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:16:42,579 INFO L263 TraceCheckSpWp]: Trace formula consists of 617 conjuncts, 25 conjunts are in the unsatisfiable core [2022-11-26 00:16:42,592 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:16:42,632 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:16:42,683 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:16:42,768 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 85 proven. 5 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2022-11-26 00:16:42,768 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:16:43,060 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 14 proven. 22 refuted. 0 times theorem prover too weak. 90 trivial. 0 not checked. [2022-11-26 00:16:43,060 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:16:43,061 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [893611917] [2022-11-26 00:16:43,061 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:16:43,061 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1707036218] [2022-11-26 00:16:43,061 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1707036218] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-26 00:16:43,062 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [620782342] [2022-11-26 00:16:43,067 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-26 00:16:43,067 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:16:43,068 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:16:43,069 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:16:43,069 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:16:43,114 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:16:43,124 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:16:43,150 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:43,169 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:43,182 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:43,250 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:16:43,270 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-26 00:16:43,287 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:16:43,349 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:43,357 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:43,366 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:43,403 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:43,418 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:43,457 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:43,469 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:44,667 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:16:44,716 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:16:44,743 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:16:44,869 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:44,921 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:44,945 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:45,007 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:45,018 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:45,032 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:45,047 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:16:52,352 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '3633#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (< (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:16:52,353 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:16:52,353 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-26 00:16:52,353 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 6] total 11 [2022-11-26 00:16:52,353 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [140725608] [2022-11-26 00:16:52,353 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-26 00:16:52,354 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2022-11-26 00:16:52,354 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:16:52,355 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2022-11-26 00:16:52,356 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=162, Invalid=894, Unknown=0, NotChecked=0, Total=1056 [2022-11-26 00:16:52,356 INFO L87 Difference]: Start difference. First operand 207 states and 256 transitions. Second operand has 11 states, 9 states have (on average 3.7777777777777777) internal successors, (34), 11 states have internal predecessors, (34), 2 states have call successors, (9), 2 states have call predecessors, (9), 4 states have return successors, (10), 2 states have call predecessors, (10), 2 states have call successors, (10) [2022-11-26 00:16:53,040 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:16:53,041 INFO L93 Difference]: Finished difference Result 227 states and 280 transitions. [2022-11-26 00:16:53,041 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-11-26 00:16:53,042 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 9 states have (on average 3.7777777777777777) internal successors, (34), 11 states have internal predecessors, (34), 2 states have call successors, (9), 2 states have call predecessors, (9), 4 states have return successors, (10), 2 states have call predecessors, (10), 2 states have call successors, (10) Word has length 54 [2022-11-26 00:16:53,042 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:16:53,043 INFO L225 Difference]: With dead ends: 227 [2022-11-26 00:16:53,043 INFO L226 Difference]: Without dead ends: 219 [2022-11-26 00:16:53,044 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 166 GetRequests, 123 SyntacticMatches, 6 SemanticMatches, 37 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 395 ImplicationChecksByTransitivity, 7.6s TimeCoverageRelationStatistics Valid=215, Invalid=1267, Unknown=0, NotChecked=0, Total=1482 [2022-11-26 00:16:53,045 INFO L413 NwaCegarLoop]: 137 mSDtfsCounter, 12 mSDsluCounter, 591 mSDsCounter, 0 mSdLazyCounter, 286 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 12 SdHoareTripleChecker+Valid, 728 SdHoareTripleChecker+Invalid, 297 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 286 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2022-11-26 00:16:53,045 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [12 Valid, 728 Invalid, 297 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 286 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2022-11-26 00:16:53,046 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 219 states. [2022-11-26 00:16:53,052 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 219 to 219. [2022-11-26 00:16:53,053 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 219 states, 131 states have (on average 1.8625954198473282) internal successors, (244), 202 states have internal predecessors, (244), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-26 00:16:53,055 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 219 states to 219 states and 268 transitions. [2022-11-26 00:16:53,055 INFO L78 Accepts]: Start accepts. Automaton has 219 states and 268 transitions. Word has length 54 [2022-11-26 00:16:53,056 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:16:53,056 INFO L495 AbstractCegarLoop]: Abstraction has 219 states and 268 transitions. [2022-11-26 00:16:53,056 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 9 states have (on average 3.7777777777777777) internal successors, (34), 11 states have internal predecessors, (34), 2 states have call successors, (9), 2 states have call predecessors, (9), 4 states have return successors, (10), 2 states have call predecessors, (10), 2 states have call successors, (10) [2022-11-26 00:16:53,056 INFO L276 IsEmpty]: Start isEmpty. Operand 219 states and 268 transitions. [2022-11-26 00:16:53,058 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 73 [2022-11-26 00:16:53,058 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:16:53,059 INFO L195 NwaCegarLoop]: trace histogram [24, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:16:53,073 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2022-11-26 00:16:53,267 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,7 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:53,268 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:16:53,268 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:16:53,268 INFO L85 PathProgramCache]: Analyzing trace with hash 542831516, now seen corresponding path program 2 times [2022-11-26 00:16:53,269 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:16:53,269 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1003332172] [2022-11-26 00:16:53,269 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:16:53,269 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:16:53,327 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:16:53,327 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1313983935] [2022-11-26 00:16:53,328 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-26 00:16:53,328 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:16:53,328 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:16:53,329 INFO L229 MonitoredProcess]: Starting monitored process 8 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:16:53,344 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2022-11-26 00:16:53,747 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 3 check-sat command(s) [2022-11-26 00:16:53,747 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-26 00:16:53,750 INFO L263 TraceCheckSpWp]: Trace formula consists of 365 conjuncts, 27 conjunts are in the unsatisfiable core [2022-11-26 00:16:53,756 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:16:53,788 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:16:53,842 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 22 treesize of output 16 [2022-11-26 00:16:54,033 INFO L134 CoverageAnalysis]: Checked inductivity of 495 backedges. 140 proven. 10 refuted. 0 times theorem prover too weak. 345 trivial. 0 not checked. [2022-11-26 00:16:54,033 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:16:54,598 INFO L134 CoverageAnalysis]: Checked inductivity of 495 backedges. 140 proven. 10 refuted. 0 times theorem prover too weak. 345 trivial. 0 not checked. [2022-11-26 00:16:54,599 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:16:54,599 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1003332172] [2022-11-26 00:16:54,599 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:16:54,599 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1313983935] [2022-11-26 00:16:54,599 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1313983935] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-26 00:16:54,600 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1613381776] [2022-11-26 00:16:54,605 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-26 00:16:54,605 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:16:54,606 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:16:54,606 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:16:54,606 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:16:54,641 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:16:54,650 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:16:54,674 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:16:54,685 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:16:54,697 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:16:54,794 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-26 00:16:54,795 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-26 00:16:54,839 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:16:54,840 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-26 00:16:54,876 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:16:54,877 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-26 00:16:55,079 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:55,088 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:55,103 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:55,168 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:55,177 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:55,249 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:55,256 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:16:56,885 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:16:56,932 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:16:56,958 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:16:57,101 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:16:57,134 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:16:57,186 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:16:57,239 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:16:57,252 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:57,263 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:16:57,278 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:17:05,265 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4555#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (< (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:17:05,266 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:17:05,266 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-26 00:17:05,266 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 9] total 16 [2022-11-26 00:17:05,266 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [931101046] [2022-11-26 00:17:05,267 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-26 00:17:05,267 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 16 states [2022-11-26 00:17:05,267 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:17:05,268 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 16 interpolants. [2022-11-26 00:17:05,269 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=202, Invalid=1204, Unknown=0, NotChecked=0, Total=1406 [2022-11-26 00:17:05,269 INFO L87 Difference]: Start difference. First operand 219 states and 268 transitions. Second operand has 16 states, 14 states have (on average 2.357142857142857) internal successors, (33), 16 states have internal predecessors, (33), 1 states have call successors, (6), 1 states have call predecessors, (6), 3 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) [2022-11-26 00:17:07,932 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:17:07,932 INFO L93 Difference]: Finished difference Result 239 states and 296 transitions. [2022-11-26 00:17:07,933 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2022-11-26 00:17:07,933 INFO L78 Accepts]: Start accepts. Automaton has has 16 states, 14 states have (on average 2.357142857142857) internal successors, (33), 16 states have internal predecessors, (33), 1 states have call successors, (6), 1 states have call predecessors, (6), 3 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) Word has length 72 [2022-11-26 00:17:07,933 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:17:07,934 INFO L225 Difference]: With dead ends: 239 [2022-11-26 00:17:07,934 INFO L226 Difference]: Without dead ends: 233 [2022-11-26 00:17:07,936 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 232 GetRequests, 172 SyntacticMatches, 6 SemanticMatches, 54 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 818 ImplicationChecksByTransitivity, 10.3s TimeCoverageRelationStatistics Valid=465, Invalid=2615, Unknown=0, NotChecked=0, Total=3080 [2022-11-26 00:17:07,936 INFO L413 NwaCegarLoop]: 136 mSDtfsCounter, 42 mSDsluCounter, 974 mSDsCounter, 0 mSdLazyCounter, 451 mSolverCounterSat, 17 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 42 SdHoareTripleChecker+Valid, 1110 SdHoareTripleChecker+Invalid, 468 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 17 IncrementalHoareTripleChecker+Valid, 451 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.7s IncrementalHoareTripleChecker+Time [2022-11-26 00:17:07,937 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [42 Valid, 1110 Invalid, 468 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [17 Valid, 451 Invalid, 0 Unknown, 0 Unchecked, 0.7s Time] [2022-11-26 00:17:07,938 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 233 states. [2022-11-26 00:17:07,951 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 233 to 233. [2022-11-26 00:17:07,952 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 233 states, 145 states have (on average 1.7793103448275862) internal successors, (258), 216 states have internal predecessors, (258), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-26 00:17:07,953 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 233 states to 233 states and 282 transitions. [2022-11-26 00:17:07,954 INFO L78 Accepts]: Start accepts. Automaton has 233 states and 282 transitions. Word has length 72 [2022-11-26 00:17:07,954 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:17:07,954 INFO L495 AbstractCegarLoop]: Abstraction has 233 states and 282 transitions. [2022-11-26 00:17:07,954 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 16 states, 14 states have (on average 2.357142857142857) internal successors, (33), 16 states have internal predecessors, (33), 1 states have call successors, (6), 1 states have call predecessors, (6), 3 states have return successors, (7), 2 states have call predecessors, (7), 1 states have call successors, (7) [2022-11-26 00:17:07,955 INFO L276 IsEmpty]: Start isEmpty. Operand 233 states and 282 transitions. [2022-11-26 00:17:07,956 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 84 [2022-11-26 00:17:07,956 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:17:07,956 INFO L195 NwaCegarLoop]: trace histogram [35, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:17:07,968 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Forceful destruction successful, exit code 0 [2022-11-26 00:17:08,162 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,8 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:17:08,163 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:17:08,163 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:17:08,163 INFO L85 PathProgramCache]: Analyzing trace with hash -296064156, now seen corresponding path program 3 times [2022-11-26 00:17:08,163 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:17:08,164 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2078343110] [2022-11-26 00:17:08,164 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:17:08,164 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:17:08,204 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:17:08,204 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [810695072] [2022-11-26 00:17:08,205 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-26 00:17:08,205 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:17:08,205 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:17:08,206 INFO L229 MonitoredProcess]: Starting monitored process 9 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:17:08,216 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2022-11-26 00:17:12,841 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-26 00:17:12,841 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-26 00:17:12,849 INFO L263 TraceCheckSpWp]: Trace formula consists of 1052 conjuncts, 47 conjunts are in the unsatisfiable core [2022-11-26 00:17:12,853 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:17:12,868 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:17:12,882 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:17:13,095 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~ptr~0#1.base| Int)) (and (exists ((v_ArrVal_1083 Int)) (= (store |c_old(#length)| |zalloc_or_die_calloc_model_~ptr~0#1.base| v_ArrVal_1083) |c_#length|)) (= (select |c_old(#valid)| |zalloc_or_die_calloc_model_~ptr~0#1.base|) 0))) is different from true [2022-11-26 00:17:13,196 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:17:13,198 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 14 [2022-11-26 00:17:13,209 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-26 00:17:13,210 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-26 00:17:13,233 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 437 proven. 0 refuted. 0 times theorem prover too weak. 374 trivial. 69 not checked. [2022-11-26 00:17:13,233 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:17:15,386 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:17:15,387 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2078343110] [2022-11-26 00:17:15,387 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:17:15,387 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [810695072] [2022-11-26 00:17:15,387 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [810695072] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-26 00:17:15,387 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [662177333] [2022-11-26 00:17:15,390 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2022-11-26 00:17:15,391 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:17:15,391 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:17:15,391 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:17:15,392 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:17:15,426 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:17:15,436 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:17:15,459 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:17:15,471 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:17:15,483 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:17:15,567 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:17:15,567 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 182 treesize of output 185 [2022-11-26 00:17:15,611 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:17:15,612 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-26 00:17:15,649 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-26 00:17:15,650 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 176 treesize of output 179 [2022-11-26 00:17:15,783 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:15,795 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:17:15,803 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:15,875 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:17:15,881 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:17:15,931 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:17:15,940 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:17:17,376 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:17:17,446 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:17:17,469 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:17:17,577 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:17:17,623 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:17:17,660 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:17:17,709 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:17,720 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:17,732 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:17:17,744 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:17:24,058 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '5349#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (< (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:17:24,059 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:17:24,059 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-26 00:17:24,059 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9] total 9 [2022-11-26 00:17:24,059 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [87584972] [2022-11-26 00:17:24,059 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-26 00:17:24,060 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2022-11-26 00:17:24,060 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:17:24,060 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2022-11-26 00:17:24,061 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=151, Invalid=908, Unknown=1, NotChecked=62, Total=1122 [2022-11-26 00:17:24,061 INFO L87 Difference]: Start difference. First operand 233 states and 282 transitions. Second operand has 10 states, 7 states have (on average 3.857142857142857) internal successors, (27), 7 states have internal predecessors, (27), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-26 00:17:24,946 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:17:24,946 INFO L93 Difference]: Finished difference Result 282 states and 339 transitions. [2022-11-26 00:17:24,947 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2022-11-26 00:17:24,947 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 7 states have (on average 3.857142857142857) internal successors, (27), 7 states have internal predecessors, (27), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) Word has length 83 [2022-11-26 00:17:24,948 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:17:24,950 INFO L225 Difference]: With dead ends: 282 [2022-11-26 00:17:24,951 INFO L226 Difference]: Without dead ends: 282 [2022-11-26 00:17:24,951 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 170 GetRequests, 129 SyntacticMatches, 6 SemanticMatches, 35 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 257 ImplicationChecksByTransitivity, 8.6s TimeCoverageRelationStatistics Valid=166, Invalid=1097, Unknown=1, NotChecked=68, Total=1332 [2022-11-26 00:17:24,952 INFO L413 NwaCegarLoop]: 93 mSDtfsCounter, 175 mSDsluCounter, 410 mSDsCounter, 0 mSdLazyCounter, 768 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 175 SdHoareTripleChecker+Valid, 503 SdHoareTripleChecker+Invalid, 970 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 768 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 191 IncrementalHoareTripleChecker+Unchecked, 0.7s IncrementalHoareTripleChecker+Time [2022-11-26 00:17:24,952 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [175 Valid, 503 Invalid, 970 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 768 Invalid, 0 Unknown, 191 Unchecked, 0.7s Time] [2022-11-26 00:17:24,953 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 282 states. [2022-11-26 00:17:24,962 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 282 to 231. [2022-11-26 00:17:24,963 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 231 states, 145 states have (on average 1.7517241379310344) internal successors, (254), 214 states have internal predecessors, (254), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-26 00:17:24,965 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 231 states to 231 states and 278 transitions. [2022-11-26 00:17:24,965 INFO L78 Accepts]: Start accepts. Automaton has 231 states and 278 transitions. Word has length 83 [2022-11-26 00:17:24,969 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:17:24,969 INFO L495 AbstractCegarLoop]: Abstraction has 231 states and 278 transitions. [2022-11-26 00:17:24,969 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 7 states have (on average 3.857142857142857) internal successors, (27), 7 states have internal predecessors, (27), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-26 00:17:24,970 INFO L276 IsEmpty]: Start isEmpty. Operand 231 states and 278 transitions. [2022-11-26 00:17:24,976 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 85 [2022-11-26 00:17:24,976 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:17:24,977 INFO L195 NwaCegarLoop]: trace histogram [35, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:17:25,010 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Forceful destruction successful, exit code 0 [2022-11-26 00:17:25,197 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,9 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:17:25,197 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:17:25,198 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:17:25,198 INFO L85 PathProgramCache]: Analyzing trace with hash -588044657, now seen corresponding path program 1 times [2022-11-26 00:17:25,198 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:17:25,198 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [894193027] [2022-11-26 00:17:25,198 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:17:25,198 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:17:25,262 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:17:25,274 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1304002369] [2022-11-26 00:17:25,275 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:17:25,275 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:17:25,275 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:17:25,281 INFO L229 MonitoredProcess]: Starting monitored process 10 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:17:25,304 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2022-11-26 00:17:25,663 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:17:25,669 INFO L263 TraceCheckSpWp]: Trace formula consists of 1068 conjuncts, 33 conjunts are in the unsatisfiable core [2022-11-26 00:17:25,673 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:17:25,753 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_1543 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_1543))) is different from true [2022-11-26 00:17:25,859 INFO L321 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2022-11-26 00:17:25,860 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2022-11-26 00:17:25,882 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_1544 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_1544))) is different from true [2022-11-26 00:17:26,017 INFO L321 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2022-11-26 00:17:26,017 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2022-11-26 00:17:26,036 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 449 proven. 106 refuted. 0 times theorem prover too weak. 322 trivial. 3 not checked. [2022-11-26 00:17:26,036 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:17:26,514 INFO L321 Elim1Store]: treesize reduction 5, result has 37.5 percent of original size [2022-11-26 00:17:26,514 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 11 [2022-11-26 00:17:26,536 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 449 proven. 108 refuted. 0 times theorem prover too weak. 323 trivial. 0 not checked. [2022-11-26 00:17:26,537 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:17:26,537 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [894193027] [2022-11-26 00:17:26,537 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:17:26,537 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1304002369] [2022-11-26 00:17:26,537 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1304002369] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-26 00:17:26,538 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1017476709] [2022-11-26 00:17:26,541 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2022-11-26 00:17:26,541 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:17:26,541 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:17:26,542 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:17:26,542 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:17:26,576 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:17:26,585 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:17:26,606 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:17:26,616 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:17:26,629 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:17:26,736 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-26 00:17:26,737 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-26 00:17:26,778 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:17:26,779 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-26 00:17:26,814 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:17:26,814 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-26 00:17:26,940 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:26,953 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:17:26,962 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:27,003 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:17:27,014 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:17:27,101 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:17:27,108 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:17:28,513 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-26 00:17:28,542 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:17:28,561 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:17:28,708 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:17:28,771 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:17:28,802 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:17:28,944 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:17:28,986 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:17:29,008 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:17:29,060 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:29,069 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:17:29,081 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:29,093 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:17:36,273 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6402#(and (not (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1)) (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:17:36,274 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:17:36,274 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-26 00:17:36,274 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 9] total 13 [2022-11-26 00:17:36,274 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [213255668] [2022-11-26 00:17:36,275 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-26 00:17:36,275 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-11-26 00:17:36,275 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:17:36,276 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-11-26 00:17:36,276 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=167, Invalid=1029, Unknown=2, NotChecked=134, Total=1332 [2022-11-26 00:17:36,277 INFO L87 Difference]: Start difference. First operand 231 states and 278 transitions. Second operand has 14 states, 12 states have (on average 2.9166666666666665) internal successors, (35), 12 states have internal predecessors, (35), 2 states have call successors, (8), 3 states have call predecessors, (8), 4 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2022-11-26 00:17:36,960 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:17:36,960 INFO L93 Difference]: Finished difference Result 260 states and 307 transitions. [2022-11-26 00:17:36,960 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-11-26 00:17:36,961 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 12 states have (on average 2.9166666666666665) internal successors, (35), 12 states have internal predecessors, (35), 2 states have call successors, (8), 3 states have call predecessors, (8), 4 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) Word has length 84 [2022-11-26 00:17:36,961 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:17:36,962 INFO L225 Difference]: With dead ends: 260 [2022-11-26 00:17:36,963 INFO L226 Difference]: Without dead ends: 260 [2022-11-26 00:17:36,963 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 259 GetRequests, 204 SyntacticMatches, 14 SemanticMatches, 41 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 334 ImplicationChecksByTransitivity, 7.6s TimeCoverageRelationStatistics Valid=205, Invalid=1441, Unknown=2, NotChecked=158, Total=1806 [2022-11-26 00:17:36,964 INFO L413 NwaCegarLoop]: 116 mSDtfsCounter, 172 mSDsluCounter, 675 mSDsCounter, 0 mSdLazyCounter, 675 mSolverCounterSat, 28 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 172 SdHoareTripleChecker+Valid, 791 SdHoareTripleChecker+Invalid, 1107 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 28 IncrementalHoareTripleChecker+Valid, 675 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 404 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2022-11-26 00:17:36,965 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [172 Valid, 791 Invalid, 1107 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [28 Valid, 675 Invalid, 0 Unknown, 404 Unchecked, 0.5s Time] [2022-11-26 00:17:36,966 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 260 states. [2022-11-26 00:17:36,971 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 260 to 228. [2022-11-26 00:17:36,971 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 228 states, 145 states have (on average 1.710344827586207) internal successors, (248), 211 states have internal predecessors, (248), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-26 00:17:36,973 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 228 states to 228 states and 272 transitions. [2022-11-26 00:17:36,973 INFO L78 Accepts]: Start accepts. Automaton has 228 states and 272 transitions. Word has length 84 [2022-11-26 00:17:36,973 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:17:36,974 INFO L495 AbstractCegarLoop]: Abstraction has 228 states and 272 transitions. [2022-11-26 00:17:36,974 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 12 states have (on average 2.9166666666666665) internal successors, (35), 12 states have internal predecessors, (35), 2 states have call successors, (8), 3 states have call predecessors, (8), 4 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2022-11-26 00:17:36,974 INFO L276 IsEmpty]: Start isEmpty. Operand 228 states and 272 transitions. [2022-11-26 00:17:36,975 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 85 [2022-11-26 00:17:36,975 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:17:36,975 INFO L195 NwaCegarLoop]: trace histogram [35, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:17:36,989 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Forceful destruction successful, exit code 0 [2022-11-26 00:17:37,184 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 10 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2022-11-26 00:17:37,184 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:17:37,185 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:17:37,185 INFO L85 PathProgramCache]: Analyzing trace with hash -588044656, now seen corresponding path program 1 times [2022-11-26 00:17:37,185 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:17:37,185 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [469773323] [2022-11-26 00:17:37,185 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:17:37,185 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:17:37,237 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:17:37,238 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [408456691] [2022-11-26 00:17:37,238 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:17:37,238 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:17:37,238 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:17:37,239 INFO L229 MonitoredProcess]: Starting monitored process 11 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:17:37,246 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Waiting until timeout for monitored process [2022-11-26 00:17:38,645 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:17:38,652 INFO L263 TraceCheckSpWp]: Trace formula consists of 1068 conjuncts, 73 conjunts are in the unsatisfiable core [2022-11-26 00:17:38,658 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:17:38,705 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:17:48,208 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (v_ArrVal_2009 Int) (v_ArrVal_2008 Int)) (and (= |c_#length| (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2009)) (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2008)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-26 00:17:48,457 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-26 00:17:48,458 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-26 00:17:48,521 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:17:48,747 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~ptr~0#1.base| Int)) (and (exists ((v_ArrVal_2010 Int)) (= (store |c_old(#length)| |zalloc_or_die_calloc_model_~ptr~0#1.base| v_ArrVal_2010) |c_#length|)) (= (select |c_old(#valid)| |zalloc_or_die_calloc_model_~ptr~0#1.base|) 0))) is different from true [2022-11-26 00:17:48,884 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:17:48,885 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:17:49,018 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-26 00:17:49,019 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-26 00:17:49,651 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 383 proven. 77 refuted. 0 times theorem prover too weak. 192 trivial. 228 not checked. [2022-11-26 00:17:49,651 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:17:52,281 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:17:52,281 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [469773323] [2022-11-26 00:17:52,282 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:17:52,282 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [408456691] [2022-11-26 00:17:52,282 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [408456691] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-26 00:17:52,282 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2042507562] [2022-11-26 00:17:52,284 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2022-11-26 00:17:52,284 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:17:52,285 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:17:52,285 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:17:52,285 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:17:52,329 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:17:52,337 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:17:52,358 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:52,371 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:52,386 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:17:52,441 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:17:52,455 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:17:52,472 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-26 00:17:52,520 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:52,526 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:17:52,535 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:52,577 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:17:52,584 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:17:52,618 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:17:52,625 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:17:53,489 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-26 00:17:53,505 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:17:53,527 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:17:53,661 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:17:53,708 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:17:53,751 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:17:53,847 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:17:53,896 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:17:53,946 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:17:54,006 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:54,016 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:17:54,028 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:17:54,038 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:18:30,447 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '7208#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (< (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:18:30,447 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:18:30,447 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-26 00:18:30,447 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19] total 19 [2022-11-26 00:18:30,447 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1820251992] [2022-11-26 00:18:30,447 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-26 00:18:30,448 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2022-11-26 00:18:30,448 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:18:30,449 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2022-11-26 00:18:30,450 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=189, Invalid=1619, Unknown=6, NotChecked=166, Total=1980 [2022-11-26 00:18:30,450 INFO L87 Difference]: Start difference. First operand 228 states and 272 transitions. Second operand has 20 states, 18 states have (on average 2.2777777777777777) internal successors, (41), 18 states have internal predecessors, (41), 2 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-26 00:18:32,472 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:18:34,498 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:18:36,624 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:18:40,761 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:18:43,101 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:18:47,357 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:18:51,558 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:19:11,688 WARN L233 SmtUtils]: Spent 6.49s on a formula simplification. DAG size of input: 56 DAG size of output: 48 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-26 00:19:25,690 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:19:29,783 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:19:29,783 INFO L93 Difference]: Finished difference Result 257 states and 302 transitions. [2022-11-26 00:19:29,783 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2022-11-26 00:19:29,783 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 18 states have (on average 2.2777777777777777) internal successors, (41), 18 states have internal predecessors, (41), 2 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 2 states have call successors, (6) Word has length 84 [2022-11-26 00:19:29,784 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:19:29,785 INFO L225 Difference]: With dead ends: 257 [2022-11-26 00:19:29,785 INFO L226 Difference]: Without dead ends: 257 [2022-11-26 00:19:29,786 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 182 GetRequests, 122 SyntacticMatches, 6 SemanticMatches, 54 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 654 ImplicationChecksByTransitivity, 84.3s TimeCoverageRelationStatistics Valid=269, Invalid=2586, Unknown=15, NotChecked=210, Total=3080 [2022-11-26 00:19:29,787 INFO L413 NwaCegarLoop]: 94 mSDtfsCounter, 336 mSDsluCounter, 935 mSDsCounter, 0 mSdLazyCounter, 1370 mSolverCounterSat, 20 mSolverCounterUnsat, 8 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 22.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 336 SdHoareTripleChecker+Valid, 1029 SdHoareTripleChecker+Invalid, 1768 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 20 IncrementalHoareTripleChecker+Valid, 1370 IncrementalHoareTripleChecker+Invalid, 8 IncrementalHoareTripleChecker+Unknown, 370 IncrementalHoareTripleChecker+Unchecked, 22.9s IncrementalHoareTripleChecker+Time [2022-11-26 00:19:29,787 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [336 Valid, 1029 Invalid, 1768 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [20 Valid, 1370 Invalid, 8 Unknown, 370 Unchecked, 22.9s Time] [2022-11-26 00:19:29,788 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 257 states. [2022-11-26 00:19:29,793 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 257 to 226. [2022-11-26 00:19:29,794 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 226 states, 145 states have (on average 1.6827586206896552) internal successors, (244), 209 states have internal predecessors, (244), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-26 00:19:29,795 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 226 states to 226 states and 268 transitions. [2022-11-26 00:19:29,795 INFO L78 Accepts]: Start accepts. Automaton has 226 states and 268 transitions. Word has length 84 [2022-11-26 00:19:29,796 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:19:29,796 INFO L495 AbstractCegarLoop]: Abstraction has 226 states and 268 transitions. [2022-11-26 00:19:29,796 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 18 states have (on average 2.2777777777777777) internal successors, (41), 18 states have internal predecessors, (41), 2 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 4 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-26 00:19:29,796 INFO L276 IsEmpty]: Start isEmpty. Operand 226 states and 268 transitions. [2022-11-26 00:19:29,797 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 89 [2022-11-26 00:19:29,797 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:19:29,797 INFO L195 NwaCegarLoop]: trace histogram [35, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:19:29,821 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Forceful destruction successful, exit code 0 [2022-11-26 00:19:30,012 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10,11 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:19:30,012 INFO L420 AbstractCegarLoop]: === Iteration 12 === Targeting ULTIMATE.startErr8REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:19:30,013 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:19:30,013 INFO L85 PathProgramCache]: Analyzing trace with hash 1264675266, now seen corresponding path program 1 times [2022-11-26 00:19:30,013 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:19:30,013 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1191546844] [2022-11-26 00:19:30,013 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:19:30,013 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:19:30,055 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:19:30,055 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1556599429] [2022-11-26 00:19:30,055 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:19:30,056 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:19:30,056 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:19:30,057 INFO L229 MonitoredProcess]: Starting monitored process 12 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:19:30,062 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Waiting until timeout for monitored process [2022-11-26 00:19:30,466 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:19:30,472 INFO L263 TraceCheckSpWp]: Trace formula consists of 1112 conjuncts, 42 conjunts are in the unsatisfiable core [2022-11-26 00:19:30,476 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:19:30,678 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-26 00:19:30,679 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-26 00:19:30,735 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_2495 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2495)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-26 00:19:30,804 INFO L321 Elim1Store]: treesize reduction 36, result has 34.5 percent of original size [2022-11-26 00:19:30,805 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 3 select indices, 3 select index equivalence classes, 1 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 4 case distinctions, treesize of input 22 treesize of output 33 [2022-11-26 00:19:30,834 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_2496 Int)) (= |c_#valid| (store |c_old(#valid)| |c_zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2496))) is different from true [2022-11-26 00:19:30,958 INFO L321 Elim1Store]: treesize reduction 28, result has 28.2 percent of original size [2022-11-26 00:19:30,959 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 1 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 22 [2022-11-26 00:19:31,032 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 381 proven. 175 refuted. 0 times theorem prover too weak. 175 trivial. 149 not checked. [2022-11-26 00:19:31,032 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:19:31,342 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:19:31,342 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1191546844] [2022-11-26 00:19:31,342 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:19:31,343 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1556599429] [2022-11-26 00:19:31,343 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1556599429] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-26 00:19:31,343 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [229443950] [2022-11-26 00:19:31,345 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-26 00:19:31,345 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:19:31,346 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:19:31,346 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:19:31,346 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:19:31,393 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:19:31,402 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:19:31,420 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:19:31,430 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:19:31,442 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:19:31,503 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-26 00:19:31,504 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-26 00:19:31,542 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:19:31,542 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-26 00:19:31,579 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:19:31,580 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-26 00:19:31,690 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:31,697 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:19:31,707 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:31,760 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:19:31,766 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:19:31,807 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:19:31,830 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:19:33,027 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:19:33,048 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-26 00:19:33,066 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:19:33,133 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:33,134 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:19:33,153 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:19:33,153 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-26 00:19:33,203 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:33,206 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:19:33,224 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:19:33,225 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-26 00:19:33,248 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:19:33,311 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:19:33,345 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:33,346 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:33,347 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:19:33,368 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:19:33,368 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-26 00:19:33,398 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:33,400 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:33,401 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:19:33,423 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:19:33,424 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-26 00:19:33,601 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:19:33,629 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:19:33,673 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:19:33,785 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:19:33,833 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:33,877 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:33,936 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:19:33,951 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:33,966 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:33,980 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:19:45,119 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '8088#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (not (= (select |#valid| |ULTIMATE.start_l3_insert_~list#1.base|) 1)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:19:45,120 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:19:45,120 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-26 00:19:45,120 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14] total 14 [2022-11-26 00:19:45,120 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [628155038] [2022-11-26 00:19:45,120 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-26 00:19:45,121 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2022-11-26 00:19:45,121 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:19:45,121 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2022-11-26 00:19:45,122 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=233, Invalid=1579, Unknown=2, NotChecked=166, Total=1980 [2022-11-26 00:19:45,122 INFO L87 Difference]: Start difference. First operand 226 states and 268 transitions. Second operand has 15 states, 12 states have (on average 3.5) internal successors, (42), 13 states have internal predecessors, (42), 3 states have call successors, (6), 2 states have call predecessors, (6), 5 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) [2022-11-26 00:19:46,458 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:19:46,458 INFO L93 Difference]: Finished difference Result 253 states and 295 transitions. [2022-11-26 00:19:46,459 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-11-26 00:19:46,459 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 12 states have (on average 3.5) internal successors, (42), 13 states have internal predecessors, (42), 3 states have call successors, (6), 2 states have call predecessors, (6), 5 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) Word has length 88 [2022-11-26 00:19:46,459 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:19:46,460 INFO L225 Difference]: With dead ends: 253 [2022-11-26 00:19:46,461 INFO L226 Difference]: Without dead ends: 253 [2022-11-26 00:19:46,461 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 209 GetRequests, 149 SyntacticMatches, 11 SemanticMatches, 49 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 578 ImplicationChecksByTransitivity, 11.7s TimeCoverageRelationStatistics Valid=277, Invalid=2081, Unknown=2, NotChecked=190, Total=2550 [2022-11-26 00:19:46,462 INFO L413 NwaCegarLoop]: 111 mSDtfsCounter, 231 mSDsluCounter, 723 mSDsCounter, 0 mSdLazyCounter, 722 mSolverCounterSat, 31 mSolverCounterUnsat, 31 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 231 SdHoareTripleChecker+Valid, 834 SdHoareTripleChecker+Invalid, 1128 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 31 IncrementalHoareTripleChecker+Valid, 722 IncrementalHoareTripleChecker+Invalid, 31 IncrementalHoareTripleChecker+Unknown, 344 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2022-11-26 00:19:46,462 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [231 Valid, 834 Invalid, 1128 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [31 Valid, 722 Invalid, 31 Unknown, 344 Unchecked, 1.0s Time] [2022-11-26 00:19:46,463 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 253 states. [2022-11-26 00:19:46,468 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 253 to 223. [2022-11-26 00:19:46,469 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 223 states, 145 states have (on average 1.6413793103448275) internal successors, (238), 206 states have internal predecessors, (238), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-26 00:19:46,470 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 223 states to 223 states and 262 transitions. [2022-11-26 00:19:46,470 INFO L78 Accepts]: Start accepts. Automaton has 223 states and 262 transitions. Word has length 88 [2022-11-26 00:19:46,470 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:19:46,470 INFO L495 AbstractCegarLoop]: Abstraction has 223 states and 262 transitions. [2022-11-26 00:19:46,471 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 12 states have (on average 3.5) internal successors, (42), 13 states have internal predecessors, (42), 3 states have call successors, (6), 2 states have call predecessors, (6), 5 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) [2022-11-26 00:19:46,471 INFO L276 IsEmpty]: Start isEmpty. Operand 223 states and 262 transitions. [2022-11-26 00:19:46,471 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 89 [2022-11-26 00:19:46,472 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:19:46,472 INFO L195 NwaCegarLoop]: trace histogram [35, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:19:46,481 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Forceful destruction successful, exit code 0 [2022-11-26 00:19:46,684 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,12 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:19:46,684 INFO L420 AbstractCegarLoop]: === Iteration 13 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:19:46,685 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:19:46,685 INFO L85 PathProgramCache]: Analyzing trace with hash 1264675267, now seen corresponding path program 1 times [2022-11-26 00:19:46,685 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:19:46,685 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1597672244] [2022-11-26 00:19:46,685 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:19:46,685 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:19:46,728 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:19:46,728 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [201780697] [2022-11-26 00:19:46,728 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:19:46,728 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:19:46,729 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:19:46,730 INFO L229 MonitoredProcess]: Starting monitored process 13 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:19:46,738 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Waiting until timeout for monitored process [2022-11-26 00:19:48,380 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:19:48,388 INFO L263 TraceCheckSpWp]: Trace formula consists of 1112 conjuncts, 62 conjunts are in the unsatisfiable core [2022-11-26 00:19:48,392 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:19:48,440 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:19:49,290 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_2984 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= |c_#length| (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_2984)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-26 00:19:49,385 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:49,386 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:19:49,395 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-26 00:19:49,396 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-26 00:19:49,472 INFO L134 CoverageAnalysis]: Checked inductivity of 880 backedges. 357 proven. 145 refuted. 0 times theorem prover too weak. 254 trivial. 124 not checked. [2022-11-26 00:19:49,472 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:19:49,634 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:19:49,634 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1597672244] [2022-11-26 00:19:49,634 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:19:49,634 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [201780697] [2022-11-26 00:19:49,634 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [201780697] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-26 00:19:49,634 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1568173516] [2022-11-26 00:19:49,637 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-26 00:19:49,637 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:19:49,638 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:19:49,638 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:19:49,638 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:19:49,679 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:19:49,686 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:19:49,779 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:49,846 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:19:49,860 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:49,909 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-26 00:19:49,924 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:19:49,939 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:19:49,990 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:19:50,000 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:50,008 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:50,038 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:19:50,047 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:19:50,084 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:19:50,095 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:19:51,003 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:19:51,034 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-26 00:19:51,053 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:19:51,117 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:51,118 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:19:51,136 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:19:51,137 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-26 00:19:51,161 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:51,162 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:19:51,182 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:19:51,182 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-26 00:19:51,220 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:19:51,288 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:51,289 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:51,290 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:19:51,312 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:19:51,312 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-26 00:19:51,341 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:19:51,369 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:51,371 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:19:51,372 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:19:51,393 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:19:51,394 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-26 00:19:51,568 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:19:51,608 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:19:51,648 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:19:51,778 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:19:51,842 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:51,881 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:51,936 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:51,949 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:19:51,960 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:19:51,973 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:20:26,082 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '8912#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:20:26,082 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:20:26,082 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-26 00:20:26,082 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [21] total 21 [2022-11-26 00:20:26,083 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1764744106] [2022-11-26 00:20:26,083 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-26 00:20:26,083 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2022-11-26 00:20:26,083 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:20:26,084 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2022-11-26 00:20:26,085 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=245, Invalid=2110, Unknown=1, NotChecked=94, Total=2450 [2022-11-26 00:20:26,085 INFO L87 Difference]: Start difference. First operand 223 states and 262 transitions. Second operand has 21 states, 19 states have (on average 2.210526315789474) internal successors, (42), 18 states have internal predecessors, (42), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-26 00:20:28,140 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.03s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:20:35,258 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:20:37,513 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:20:39,232 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:20:39,233 INFO L93 Difference]: Finished difference Result 233 states and 282 transitions. [2022-11-26 00:20:39,233 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 16 states. [2022-11-26 00:20:39,233 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 19 states have (on average 2.210526315789474) internal successors, (42), 18 states have internal predecessors, (42), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) Word has length 88 [2022-11-26 00:20:39,233 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:20:39,235 INFO L225 Difference]: With dead ends: 233 [2022-11-26 00:20:39,235 INFO L226 Difference]: Without dead ends: 229 [2022-11-26 00:20:39,236 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 192 GetRequests, 128 SyntacticMatches, 6 SemanticMatches, 58 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 840 ImplicationChecksByTransitivity, 40.3s TimeCoverageRelationStatistics Valid=322, Invalid=3103, Unknown=1, NotChecked=114, Total=3540 [2022-11-26 00:20:39,237 INFO L413 NwaCegarLoop]: 131 mSDtfsCounter, 18 mSDsluCounter, 1216 mSDsCounter, 0 mSdLazyCounter, 958 mSolverCounterSat, 6 mSolverCounterUnsat, 3 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 7.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 1347 SdHoareTripleChecker+Invalid, 1123 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 958 IncrementalHoareTripleChecker+Invalid, 3 IncrementalHoareTripleChecker+Unknown, 156 IncrementalHoareTripleChecker+Unchecked, 7.5s IncrementalHoareTripleChecker+Time [2022-11-26 00:20:39,237 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 1347 Invalid, 1123 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 958 Invalid, 3 Unknown, 156 Unchecked, 7.5s Time] [2022-11-26 00:20:39,238 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 229 states. [2022-11-26 00:20:39,245 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 229 to 229. [2022-11-26 00:20:39,245 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 229 states, 148 states have (on average 1.6418918918918919) internal successors, (243), 211 states have internal predecessors, (243), 13 states have call successors, (13), 4 states have call predecessors, (13), 6 states have return successors, (21), 13 states have call predecessors, (21), 12 states have call successors, (21) [2022-11-26 00:20:39,246 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 229 states to 229 states and 277 transitions. [2022-11-26 00:20:39,247 INFO L78 Accepts]: Start accepts. Automaton has 229 states and 277 transitions. Word has length 88 [2022-11-26 00:20:39,247 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:20:39,247 INFO L495 AbstractCegarLoop]: Abstraction has 229 states and 277 transitions. [2022-11-26 00:20:39,247 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 19 states have (on average 2.210526315789474) internal successors, (42), 18 states have internal predecessors, (42), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-26 00:20:39,248 INFO L276 IsEmpty]: Start isEmpty. Operand 229 states and 277 transitions. [2022-11-26 00:20:39,248 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 90 [2022-11-26 00:20:39,249 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:20:39,249 INFO L195 NwaCegarLoop]: trace histogram [36, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:20:39,272 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Forceful destruction successful, exit code 0 [2022-11-26 00:20:39,468 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 13 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2022-11-26 00:20:39,468 INFO L420 AbstractCegarLoop]: === Iteration 14 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:20:39,469 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:20:39,469 INFO L85 PathProgramCache]: Analyzing trace with hash 343643551, now seen corresponding path program 2 times [2022-11-26 00:20:39,469 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:20:39,469 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1888935482] [2022-11-26 00:20:39,469 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:20:39,469 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:20:39,511 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:20:39,511 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [174748481] [2022-11-26 00:20:39,512 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-26 00:20:39,512 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:20:39,512 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:20:39,513 INFO L229 MonitoredProcess]: Starting monitored process 14 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:20:39,516 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Waiting until timeout for monitored process [2022-11-26 00:20:49,385 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 5 check-sat command(s) [2022-11-26 00:20:49,385 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-26 00:20:49,396 INFO L263 TraceCheckSpWp]: Trace formula consists of 719 conjuncts, 58 conjunts are in the unsatisfiable core [2022-11-26 00:20:49,399 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:20:49,412 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:20:51,464 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (v_ArrVal_3481 Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_3481) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-26 00:20:51,683 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:20:51,684 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:20:51,755 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-26 00:20:51,755 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-26 00:21:00,300 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 17 treesize of output 13 [2022-11-26 00:21:05,200 INFO L134 CoverageAnalysis]: Checked inductivity of 921 backedges. 461 proven. 28 refuted. 0 times theorem prover too weak. 349 trivial. 83 not checked. [2022-11-26 00:21:05,200 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:21:05,698 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:21:05,698 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1888935482] [2022-11-26 00:21:05,698 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:21:05,698 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [174748481] [2022-11-26 00:21:05,698 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [174748481] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-26 00:21:05,699 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1383949977] [2022-11-26 00:21:05,701 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-26 00:21:05,701 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:21:05,702 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:21:05,702 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:21:05,702 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:21:05,736 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:21:05,742 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:21:05,764 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:21:05,777 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:21:05,821 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:21:05,860 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-26 00:21:05,873 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:21:05,886 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:21:05,930 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:21:05,937 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:21:05,945 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:21:05,967 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:21:05,972 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:21:06,019 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:21:06,027 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:21:06,756 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:21:06,774 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:21:06,789 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-26 00:21:06,846 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:21:06,871 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:21:06,872 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:21:06,890 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:21:06,890 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-26 00:21:06,909 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:21:06,910 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:21:06,925 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:21:06,926 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-26 00:21:06,976 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:21:06,977 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:21:06,978 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:21:06,996 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:21:06,996 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-26 00:21:07,022 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:21:07,025 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:21:07,026 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:21:07,044 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:21:07,044 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-26 00:21:07,066 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:21:07,192 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:21:07,221 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:21:07,249 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:21:07,364 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:21:07,385 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:21:07,434 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:21:07,478 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:21:07,487 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:21:07,499 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:21:07,509 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:22:17,798 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '9728#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:22:17,798 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:22:17,798 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-26 00:22:17,798 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19] total 19 [2022-11-26 00:22:17,798 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1562597439] [2022-11-26 00:22:17,799 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-26 00:22:17,800 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 19 states [2022-11-26 00:22:17,800 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:22:17,801 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 19 interpolants. [2022-11-26 00:22:17,801 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=240, Invalid=2014, Unknown=6, NotChecked=92, Total=2352 [2022-11-26 00:22:17,802 INFO L87 Difference]: Start difference. First operand 229 states and 277 transitions. Second operand has 19 states, 17 states have (on average 2.235294117647059) internal successors, (38), 16 states have internal predecessors, (38), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-26 00:22:19,830 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:21,856 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:23,864 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:28,180 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.05s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:30,199 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:34,350 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:36,402 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:38,562 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:40,593 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:42,761 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:44,793 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:50,934 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:52,972 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:55,121 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:22:57,153 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:01,308 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:03,342 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:10,171 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:12,235 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:14,250 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:16,292 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:18,339 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:19,399 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.02s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:21,414 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:32,565 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:34,596 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:36,664 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:38,706 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:40,741 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:42,812 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:44,847 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:47,084 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:49,984 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:52,679 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:55,078 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:56,854 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.60s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:23:59,705 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:24:01,760 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:24:03,818 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:24:05,881 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:24:07,926 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:24:10,164 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:24:12,424 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:24:15,576 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:24:17,787 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:24:19,859 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:24:21,881 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:24:23,908 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:24:27,973 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:24:27,973 INFO L93 Difference]: Finished difference Result 243 states and 301 transitions. [2022-11-26 00:24:27,973 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2022-11-26 00:24:27,974 INFO L78 Accepts]: Start accepts. Automaton has has 19 states, 17 states have (on average 2.235294117647059) internal successors, (38), 16 states have internal predecessors, (38), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) Word has length 89 [2022-11-26 00:24:27,974 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:24:27,975 INFO L225 Difference]: With dead ends: 243 [2022-11-26 00:24:27,975 INFO L226 Difference]: Without dead ends: 235 [2022-11-26 00:24:27,977 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 196 GetRequests, 131 SyntacticMatches, 6 SemanticMatches, 59 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 941 ImplicationChecksByTransitivity, 114.8s TimeCoverageRelationStatistics Valid=328, Invalid=3209, Unknown=7, NotChecked=116, Total=3660 [2022-11-26 00:24:27,977 INFO L413 NwaCegarLoop]: 135 mSDtfsCounter, 22 mSDsluCounter, 1100 mSDsCounter, 0 mSdLazyCounter, 1456 mSolverCounterSat, 7 mSolverCounterUnsat, 46 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 100.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 22 SdHoareTripleChecker+Valid, 1235 SdHoareTripleChecker+Invalid, 1672 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 1456 IncrementalHoareTripleChecker+Invalid, 46 IncrementalHoareTripleChecker+Unknown, 163 IncrementalHoareTripleChecker+Unchecked, 100.7s IncrementalHoareTripleChecker+Time [2022-11-26 00:24:27,978 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [22 Valid, 1235 Invalid, 1672 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 1456 Invalid, 46 Unknown, 163 Unchecked, 100.7s Time] [2022-11-26 00:24:27,978 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 235 states. [2022-11-26 00:24:27,985 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 235 to 231. [2022-11-26 00:24:27,986 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 231 states, 150 states have (on average 1.6466666666666667) internal successors, (247), 213 states have internal predecessors, (247), 13 states have call successors, (13), 4 states have call predecessors, (13), 6 states have return successors, (21), 13 states have call predecessors, (21), 12 states have call successors, (21) [2022-11-26 00:24:27,987 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 231 states to 231 states and 281 transitions. [2022-11-26 00:24:27,987 INFO L78 Accepts]: Start accepts. Automaton has 231 states and 281 transitions. Word has length 89 [2022-11-26 00:24:27,988 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:24:27,988 INFO L495 AbstractCegarLoop]: Abstraction has 231 states and 281 transitions. [2022-11-26 00:24:27,988 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 19 states, 17 states have (on average 2.235294117647059) internal successors, (38), 16 states have internal predecessors, (38), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-26 00:24:27,988 INFO L276 IsEmpty]: Start isEmpty. Operand 231 states and 281 transitions. [2022-11-26 00:24:27,989 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 91 [2022-11-26 00:24:27,989 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:24:27,989 INFO L195 NwaCegarLoop]: trace histogram [37, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:24:28,003 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Forceful destruction successful, exit code 0 [2022-11-26 00:24:28,192 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 14 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable13 [2022-11-26 00:24:28,192 INFO L420 AbstractCegarLoop]: === Iteration 15 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:24:28,193 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:24:28,193 INFO L85 PathProgramCache]: Analyzing trace with hash 1856431427, now seen corresponding path program 3 times [2022-11-26 00:24:28,193 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:24:28,193 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1312292121] [2022-11-26 00:24:28,194 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:24:28,194 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:24:28,235 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:24:28,235 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [398520147] [2022-11-26 00:24:28,235 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-26 00:24:28,235 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:24:28,236 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:24:28,237 INFO L229 MonitoredProcess]: Starting monitored process 15 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:24:28,248 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Waiting until timeout for monitored process [2022-11-26 00:24:30,280 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-26 00:24:30,280 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-26 00:24:30,287 INFO L263 TraceCheckSpWp]: Trace formula consists of 1142 conjuncts, 69 conjunts are in the unsatisfiable core [2022-11-26 00:24:30,291 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:24:30,301 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:24:30,310 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:24:36,939 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~ptr~0#1.base| Int)) (and (exists ((v_ArrVal_3991 Int)) (= (store |c_old(#length)| |zalloc_or_die_calloc_model_~ptr~0#1.base| v_ArrVal_3991) |c_#length|)) (= (select |c_old(#valid)| |zalloc_or_die_calloc_model_~ptr~0#1.base|) 0))) is different from true [2022-11-26 00:24:37,230 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~ptr~0#1.base| Int) (v_ArrVal_3991 Int)) (and (= (store |c_old(#length)| |zalloc_or_die_calloc_model_~ptr~0#1.base| v_ArrVal_3991) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_calloc_model_~ptr~0#1.base|) 0))) is different from true [2022-11-26 00:24:37,273 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:24:37,274 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:24:37,291 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-26 00:24:37,292 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-26 00:24:37,411 INFO L134 CoverageAnalysis]: Checked inductivity of 963 backedges. 485 proven. 105 refuted. 0 times theorem prover too weak. 310 trivial. 63 not checked. [2022-11-26 00:24:37,411 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:24:37,574 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:24:37,575 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1312292121] [2022-11-26 00:24:37,575 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:24:37,575 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [398520147] [2022-11-26 00:24:37,575 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [398520147] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-26 00:24:37,575 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1249450584] [2022-11-26 00:24:37,577 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-26 00:24:37,577 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:24:37,578 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:24:37,578 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:24:37,578 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:24:37,608 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:24:37,615 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:24:37,633 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:24:37,673 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:24:37,739 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:24:37,876 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:24:37,876 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 182 treesize of output 185 [2022-11-26 00:24:37,907 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:24:37,907 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-26 00:24:37,970 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-26 00:24:37,971 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 176 treesize of output 179 [2022-11-26 00:24:38,085 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:24:38,092 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:24:38,099 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:24:38,147 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:24:38,152 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:24:38,184 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:24:38,190 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:24:39,168 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:24:39,190 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:24:39,205 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-26 00:24:39,278 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:24:39,279 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:24:39,296 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:24:39,296 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-26 00:24:39,314 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:24:39,334 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:24:39,335 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:24:39,352 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:24:39,353 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-26 00:24:39,411 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:24:39,412 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:24:39,413 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:24:39,433 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:24:39,433 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-26 00:24:39,463 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:24:39,465 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:24:39,465 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:24:39,485 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:24:39,485 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-26 00:24:39,508 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:24:39,645 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:24:39,676 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:24:39,721 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:24:39,865 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:24:39,920 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:24:39,983 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:24:40,059 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:24:40,072 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:24:40,083 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:24:40,094 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:25:02,675 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10568#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:25:02,675 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:25:02,675 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-26 00:25:02,675 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [25] total 25 [2022-11-26 00:25:02,675 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [537334192] [2022-11-26 00:25:02,675 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-26 00:25:02,676 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2022-11-26 00:25:02,676 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:25:02,676 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2022-11-26 00:25:02,677 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=248, Invalid=2404, Unknown=8, NotChecked=202, Total=2862 [2022-11-26 00:25:02,677 INFO L87 Difference]: Start difference. First operand 231 states and 281 transitions. Second operand has 25 states, 23 states have (on average 1.9565217391304348) internal successors, (45), 22 states have internal predecessors, (45), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-26 00:25:14,352 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:25:15,868 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:25:15,868 INFO L93 Difference]: Finished difference Result 243 states and 310 transitions. [2022-11-26 00:25:15,869 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2022-11-26 00:25:15,869 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 23 states have (on average 1.9565217391304348) internal successors, (45), 22 states have internal predecessors, (45), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) Word has length 90 [2022-11-26 00:25:15,869 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:25:15,870 INFO L225 Difference]: With dead ends: 243 [2022-11-26 00:25:15,871 INFO L226 Difference]: Without dead ends: 239 [2022-11-26 00:25:15,872 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 199 GetRequests, 128 SyntacticMatches, 7 SemanticMatches, 64 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 956 ImplicationChecksByTransitivity, 37.9s TimeCoverageRelationStatistics Valid=321, Invalid=3707, Unknown=12, NotChecked=250, Total=4290 [2022-11-26 00:25:15,872 INFO L413 NwaCegarLoop]: 141 mSDtfsCounter, 12 mSDsluCounter, 1095 mSDsCounter, 0 mSdLazyCounter, 1522 mSolverCounterSat, 8 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 12 SdHoareTripleChecker+Valid, 1236 SdHoareTripleChecker+Invalid, 1891 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 1522 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 360 IncrementalHoareTripleChecker+Unchecked, 4.6s IncrementalHoareTripleChecker+Time [2022-11-26 00:25:15,872 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [12 Valid, 1236 Invalid, 1891 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 1522 Invalid, 1 Unknown, 360 Unchecked, 4.6s Time] [2022-11-26 00:25:15,873 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 239 states. [2022-11-26 00:25:15,880 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 239 to 233. [2022-11-26 00:25:15,881 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 233 states, 152 states have (on average 1.6513157894736843) internal successors, (251), 215 states have internal predecessors, (251), 13 states have call successors, (13), 4 states have call predecessors, (13), 6 states have return successors, (21), 13 states have call predecessors, (21), 12 states have call successors, (21) [2022-11-26 00:25:15,882 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 233 states to 233 states and 285 transitions. [2022-11-26 00:25:15,883 INFO L78 Accepts]: Start accepts. Automaton has 233 states and 285 transitions. Word has length 90 [2022-11-26 00:25:15,883 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:25:15,883 INFO L495 AbstractCegarLoop]: Abstraction has 233 states and 285 transitions. [2022-11-26 00:25:15,883 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 23 states have (on average 1.9565217391304348) internal successors, (45), 22 states have internal predecessors, (45), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-26 00:25:15,883 INFO L276 IsEmpty]: Start isEmpty. Operand 233 states and 285 transitions. [2022-11-26 00:25:15,884 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 92 [2022-11-26 00:25:15,884 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:25:15,884 INFO L195 NwaCegarLoop]: trace histogram [38, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:25:15,908 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Forceful destruction successful, exit code 0 [2022-11-26 00:25:16,100 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 15 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable14 [2022-11-26 00:25:16,100 INFO L420 AbstractCegarLoop]: === Iteration 16 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:25:16,101 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:25:16,101 INFO L85 PathProgramCache]: Analyzing trace with hash 1508215327, now seen corresponding path program 4 times [2022-11-26 00:25:16,101 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:25:16,101 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [879872393] [2022-11-26 00:25:16,101 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:25:16,101 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:25:16,144 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:25:16,144 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [2033420150] [2022-11-26 00:25:16,144 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2022-11-26 00:25:16,144 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:25:16,145 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:25:16,146 INFO L229 MonitoredProcess]: Starting monitored process 16 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:25:16,152 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (16)] Waiting until timeout for monitored process [2022-11-26 00:25:20,333 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:25:20,340 INFO L263 TraceCheckSpWp]: Trace formula consists of 1157 conjuncts, 34 conjunts are in the unsatisfiable core [2022-11-26 00:25:20,343 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:25:20,350 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:25:20,380 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:25:20,522 INFO L134 CoverageAnalysis]: Checked inductivity of 1006 backedges. 248 proven. 15 refuted. 0 times theorem prover too weak. 743 trivial. 0 not checked. [2022-11-26 00:25:20,522 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:25:21,105 INFO L134 CoverageAnalysis]: Checked inductivity of 1006 backedges. 0 proven. 258 refuted. 0 times theorem prover too weak. 748 trivial. 0 not checked. [2022-11-26 00:25:21,106 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:25:21,106 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [879872393] [2022-11-26 00:25:21,106 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:25:21,106 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2033420150] [2022-11-26 00:25:21,106 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2033420150] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-26 00:25:21,106 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1438973331] [2022-11-26 00:25:21,108 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-26 00:25:21,108 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:25:21,109 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:25:21,109 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:25:21,109 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:25:21,135 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:25:21,142 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:25:21,160 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:25:21,198 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:25:21,240 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:25:21,328 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:25:21,329 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 182 treesize of output 185 [2022-11-26 00:25:21,360 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-26 00:25:21,361 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 180 treesize of output 183 [2022-11-26 00:25:21,428 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:25:21,428 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-26 00:25:21,537 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:25:21,546 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:25:21,553 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:25:21,605 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:25:21,610 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:25:21,654 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:25:21,660 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:25:22,660 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:25:22,673 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-26 00:25:22,687 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:25:22,760 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:25:22,783 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:25:22,784 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:25:22,798 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:25:22,798 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-26 00:25:22,820 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:25:22,821 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:25:22,835 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:25:22,836 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-26 00:25:22,884 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:25:22,886 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:25:22,886 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:25:22,904 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:25:22,904 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-26 00:25:22,930 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:25:22,931 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:25:22,932 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:25:22,949 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:25:22,949 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-26 00:25:22,972 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:25:23,095 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:25:23,127 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:25:23,157 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:25:23,230 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:25:23,256 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:25:23,316 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:25:23,362 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:25:23,373 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:25:23,383 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:25:23,393 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:25:33,733 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '11654#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:25:33,734 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:25:33,734 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-26 00:25:33,734 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 10] total 18 [2022-11-26 00:25:33,734 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [631657944] [2022-11-26 00:25:33,734 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-26 00:25:33,735 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 18 states [2022-11-26 00:25:33,735 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:25:33,735 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 18 interpolants. [2022-11-26 00:25:33,736 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=274, Invalid=1706, Unknown=0, NotChecked=0, Total=1980 [2022-11-26 00:25:33,736 INFO L87 Difference]: Start difference. First operand 233 states and 285 transitions. Second operand has 18 states, 16 states have (on average 2.8125) internal successors, (45), 18 states have internal predecessors, (45), 2 states have call successors, (11), 2 states have call predecessors, (11), 4 states have return successors, (12), 1 states have call predecessors, (12), 2 states have call successors, (12) [2022-11-26 00:25:34,817 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:25:34,817 INFO L93 Difference]: Finished difference Result 233 states and 274 transitions. [2022-11-26 00:25:34,818 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 20 states. [2022-11-26 00:25:34,818 INFO L78 Accepts]: Start accepts. Automaton has has 18 states, 16 states have (on average 2.8125) internal successors, (45), 18 states have internal predecessors, (45), 2 states have call successors, (11), 2 states have call predecessors, (11), 4 states have return successors, (12), 1 states have call predecessors, (12), 2 states have call successors, (12) Word has length 91 [2022-11-26 00:25:34,818 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:25:34,819 INFO L225 Difference]: With dead ends: 233 [2022-11-26 00:25:34,819 INFO L226 Difference]: Without dead ends: 229 [2022-11-26 00:25:34,820 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 288 GetRequests, 223 SyntacticMatches, 6 SemanticMatches, 59 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 922 ImplicationChecksByTransitivity, 11.2s TimeCoverageRelationStatistics Valid=485, Invalid=3175, Unknown=0, NotChecked=0, Total=3660 [2022-11-26 00:25:34,821 INFO L413 NwaCegarLoop]: 127 mSDtfsCounter, 52 mSDsluCounter, 931 mSDsCounter, 0 mSdLazyCounter, 490 mSolverCounterSat, 20 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 52 SdHoareTripleChecker+Valid, 1058 SdHoareTripleChecker+Invalid, 510 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 20 IncrementalHoareTripleChecker+Valid, 490 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2022-11-26 00:25:34,821 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [52 Valid, 1058 Invalid, 510 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [20 Valid, 490 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2022-11-26 00:25:34,822 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 229 states. [2022-11-26 00:25:34,826 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 229 to 229. [2022-11-26 00:25:34,827 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 229 states, 151 states have (on average 1.6158940397350994) internal successors, (244), 212 states have internal predecessors, (244), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-26 00:25:34,828 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 229 states to 229 states and 268 transitions. [2022-11-26 00:25:34,828 INFO L78 Accepts]: Start accepts. Automaton has 229 states and 268 transitions. Word has length 91 [2022-11-26 00:25:34,828 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:25:34,828 INFO L495 AbstractCegarLoop]: Abstraction has 229 states and 268 transitions. [2022-11-26 00:25:34,829 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 18 states, 16 states have (on average 2.8125) internal successors, (45), 18 states have internal predecessors, (45), 2 states have call successors, (11), 2 states have call predecessors, (11), 4 states have return successors, (12), 1 states have call predecessors, (12), 2 states have call successors, (12) [2022-11-26 00:25:34,829 INFO L276 IsEmpty]: Start isEmpty. Operand 229 states and 268 transitions. [2022-11-26 00:25:34,830 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 104 [2022-11-26 00:25:34,830 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:25:34,830 INFO L195 NwaCegarLoop]: trace histogram [50, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:25:34,854 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (16)] Forceful destruction successful, exit code 0 [2022-11-26 00:25:35,036 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 16 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable15 [2022-11-26 00:25:35,036 INFO L420 AbstractCegarLoop]: === Iteration 17 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:25:35,037 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:25:35,037 INFO L85 PathProgramCache]: Analyzing trace with hash 1495218635, now seen corresponding path program 5 times [2022-11-26 00:25:35,037 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:25:35,037 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1882313211] [2022-11-26 00:25:35,037 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:25:35,038 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:25:35,103 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:25:35,103 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [156849438] [2022-11-26 00:25:35,103 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-26 00:25:35,104 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:25:35,104 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:25:35,105 INFO L229 MonitoredProcess]: Starting monitored process 17 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:25:35,112 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (17)] Waiting until timeout for monitored process [2022-11-26 00:26:06,189 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 6 check-sat command(s) [2022-11-26 00:26:06,189 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-26 00:26:06,205 INFO L263 TraceCheckSpWp]: Trace formula consists of 839 conjuncts, 85 conjunts are in the unsatisfiable core [2022-11-26 00:26:06,208 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:26:06,375 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:26:06,433 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:26:06,969 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 811 proven. 369 refuted. 0 times theorem prover too weak. 420 trivial. 0 not checked. [2022-11-26 00:26:06,970 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:26:09,100 INFO L134 CoverageAnalysis]: Checked inductivity of 1600 backedges. 510 proven. 55 refuted. 0 times theorem prover too weak. 1035 trivial. 0 not checked. [2022-11-26 00:26:09,100 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:26:09,101 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1882313211] [2022-11-26 00:26:09,101 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:26:09,101 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [156849438] [2022-11-26 00:26:09,101 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [156849438] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-26 00:26:09,101 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1682767952] [2022-11-26 00:26:09,103 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-26 00:26:09,103 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:26:09,103 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:26:09,103 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:26:09,104 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:26:09,133 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:26:09,140 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:26:09,194 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:26:09,206 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:26:09,247 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:26:09,354 INFO L321 Elim1Store]: treesize reduction 15, result has 42.3 percent of original size [2022-11-26 00:26:09,354 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 184 treesize of output 187 [2022-11-26 00:26:09,431 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:26:09,432 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 178 treesize of output 181 [2022-11-26 00:26:09,496 INFO L321 Elim1Store]: treesize reduction 13, result has 45.8 percent of original size [2022-11-26 00:26:09,496 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 174 treesize of output 177 [2022-11-26 00:26:09,592 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:26:09,602 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:26:09,609 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:26:09,637 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:26:09,659 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:26:09,708 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:26:09,714 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:26:10,824 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:26:10,843 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-26 00:26:10,861 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:26:10,916 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:26:10,917 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:26:10,931 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:26:10,931 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-26 00:26:10,960 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:26:10,976 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:26:10,977 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:26:10,991 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:26:10,991 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-26 00:26:11,031 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:26:11,058 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:26:11,059 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:26:11,060 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:26:11,077 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:26:11,077 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-26 00:26:11,100 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:26:11,101 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:26:11,102 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:26:11,119 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:26:11,119 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-26 00:26:11,246 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:26:11,281 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:26:11,305 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:26:11,418 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:26:11,456 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:26:11,495 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:26:11,534 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:26:11,542 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:26:11,552 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:26:11,561 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:26:24,357 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '12829#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:26:24,358 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:26:24,358 INFO L184 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2022-11-26 00:26:24,358 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [28, 15] total 41 [2022-11-26 00:26:24,358 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [834096068] [2022-11-26 00:26:24,358 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2022-11-26 00:26:24,359 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 41 states [2022-11-26 00:26:24,359 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:26:24,359 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 41 interpolants. [2022-11-26 00:26:24,361 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=454, Invalid=4102, Unknown=0, NotChecked=0, Total=4556 [2022-11-26 00:26:24,361 INFO L87 Difference]: Start difference. First operand 229 states and 268 transitions. Second operand has 41 states, 38 states have (on average 1.763157894736842) internal successors, (67), 40 states have internal predecessors, (67), 1 states have call successors, (6), 1 states have call predecessors, (6), 4 states have return successors, (8), 3 states have call predecessors, (8), 1 states have call successors, (8) [2022-11-26 00:26:54,852 WARN L233 SmtUtils]: Spent 28.17s on a formula simplification. DAG size of input: 81 DAG size of output: 72 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-26 00:27:14,409 WARN L233 SmtUtils]: Spent 19.05s on a formula simplification. DAG size of input: 75 DAG size of output: 67 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-26 00:27:22,976 WARN L233 SmtUtils]: Spent 8.15s on a formula simplification. DAG size of input: 69 DAG size of output: 62 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-26 00:27:39,121 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:27:39,122 INFO L93 Difference]: Finished difference Result 276 states and 373 transitions. [2022-11-26 00:27:39,122 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 46 states. [2022-11-26 00:27:39,122 INFO L78 Accepts]: Start accepts. Automaton has has 41 states, 38 states have (on average 1.763157894736842) internal successors, (67), 40 states have internal predecessors, (67), 1 states have call successors, (6), 1 states have call predecessors, (6), 4 states have return successors, (8), 3 states have call predecessors, (8), 1 states have call successors, (8) Word has length 103 [2022-11-26 00:27:39,123 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:27:39,124 INFO L225 Difference]: With dead ends: 276 [2022-11-26 00:27:39,124 INFO L226 Difference]: Without dead ends: 272 [2022-11-26 00:27:39,127 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 349 GetRequests, 236 SyntacticMatches, 6 SemanticMatches, 107 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3224 ImplicationChecksByTransitivity, 86.1s TimeCoverageRelationStatistics Valid=1565, Invalid=10207, Unknown=0, NotChecked=0, Total=11772 [2022-11-26 00:27:39,127 INFO L413 NwaCegarLoop]: 133 mSDtfsCounter, 235 mSDsluCounter, 3537 mSDsCounter, 0 mSdLazyCounter, 2038 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 252 SdHoareTripleChecker+Valid, 3670 SdHoareTripleChecker+Invalid, 2045 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 2038 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.9s IncrementalHoareTripleChecker+Time [2022-11-26 00:27:39,128 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [252 Valid, 3670 Invalid, 2045 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 2038 Invalid, 0 Unknown, 0 Unchecked, 2.9s Time] [2022-11-26 00:27:39,128 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 272 states. [2022-11-26 00:27:39,136 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 272 to 253. [2022-11-26 00:27:39,137 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 253 states, 175 states have (on average 1.5314285714285714) internal successors, (268), 236 states have internal predecessors, (268), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-26 00:27:39,138 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 253 states to 253 states and 292 transitions. [2022-11-26 00:27:39,138 INFO L78 Accepts]: Start accepts. Automaton has 253 states and 292 transitions. Word has length 103 [2022-11-26 00:27:39,139 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:27:39,139 INFO L495 AbstractCegarLoop]: Abstraction has 253 states and 292 transitions. [2022-11-26 00:27:39,139 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 41 states, 38 states have (on average 1.763157894736842) internal successors, (67), 40 states have internal predecessors, (67), 1 states have call successors, (6), 1 states have call predecessors, (6), 4 states have return successors, (8), 3 states have call predecessors, (8), 1 states have call successors, (8) [2022-11-26 00:27:39,139 INFO L276 IsEmpty]: Start isEmpty. Operand 253 states and 292 transitions. [2022-11-26 00:27:39,140 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 116 [2022-11-26 00:27:39,140 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:27:39,141 INFO L195 NwaCegarLoop]: trace histogram [62, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:27:39,168 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (17)] Forceful destruction successful, exit code 0 [2022-11-26 00:27:39,361 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 17 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable16 [2022-11-26 00:27:39,361 INFO L420 AbstractCegarLoop]: === Iteration 18 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:27:39,361 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:27:39,361 INFO L85 PathProgramCache]: Analyzing trace with hash -671799221, now seen corresponding path program 6 times [2022-11-26 00:27:39,362 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:27:39,362 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [970700464] [2022-11-26 00:27:39,362 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:27:39,362 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:27:39,416 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:27:39,416 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1155520191] [2022-11-26 00:27:39,417 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-26 00:27:39,417 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:27:39,417 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:27:39,418 INFO L229 MonitoredProcess]: Starting monitored process 18 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:27:39,420 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (18)] Waiting until timeout for monitored process [2022-11-26 00:27:43,511 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-26 00:27:43,511 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-26 00:27:43,520 INFO L263 TraceCheckSpWp]: Trace formula consists of 1517 conjuncts, 129 conjunts are in the unsatisfiable core [2022-11-26 00:27:43,527 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:27:43,530 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:27:43,602 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:27:43,614 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:27:50,206 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-26 00:27:50,206 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-26 00:27:50,269 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:27:52,960 INFO L321 Elim1Store]: treesize reduction 36, result has 34.5 percent of original size [2022-11-26 00:27:52,960 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 3 select indices, 3 select index equivalence classes, 1 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 4 case distinctions, treesize of input 22 treesize of output 33 [2022-11-26 00:27:52,987 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:27:55,122 WARN L859 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~ptr~0#1.base| Int)) (and (exists ((v_ArrVal_5988 Int)) (= |c_#length| (store |c_old(#length)| |zalloc_or_die_calloc_model_~ptr~0#1.base| v_ArrVal_5988))) (= (select |c_old(#valid)| |zalloc_or_die_calloc_model_~ptr~0#1.base|) 0))) is different from true [2022-11-26 00:27:55,293 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:27:55,294 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 3 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:27:55,315 INFO L321 Elim1Store]: treesize reduction 12, result has 52.0 percent of original size [2022-11-26 00:27:55,315 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 4 select indices, 4 select index equivalence classes, 3 disjoint index pairs (out of 6 index pairs), introduced 4 new quantified variables, introduced 3 case distinctions, treesize of input 21 treesize of output 25 [2022-11-26 00:27:56,781 INFO L134 CoverageAnalysis]: Checked inductivity of 2338 backedges. 590 proven. 484 refuted. 0 times theorem prover too weak. 473 trivial. 791 not checked. [2022-11-26 00:27:56,781 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:27:57,230 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:27:57,230 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [970700464] [2022-11-26 00:27:57,230 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:27:57,230 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1155520191] [2022-11-26 00:27:57,230 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1155520191] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-26 00:27:57,230 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1375105339] [2022-11-26 00:27:57,232 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2022-11-26 00:27:57,232 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:27:57,233 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:27:57,233 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:27:57,233 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:27:57,259 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:27:57,266 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:27:57,282 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:27:57,294 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:27:57,306 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:27:57,341 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:27:57,353 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-26 00:27:57,365 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:27:57,402 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:27:57,414 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:27:57,424 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:27:57,466 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:27:57,472 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:27:57,500 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:27:57,506 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:27:58,236 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-26 00:27:58,257 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:27:58,278 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:27:58,347 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:27:58,348 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:27:58,363 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:27:58,363 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-26 00:27:58,382 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:27:58,382 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:27:58,397 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:27:58,398 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-26 00:27:58,418 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:27:58,468 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:27:58,484 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:27:58,485 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:27:58,486 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:27:58,504 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:27:58,505 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-26 00:27:58,529 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:27:58,530 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:27:58,531 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:27:58,549 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:27:58,549 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-26 00:27:58,673 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:27:58,708 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:27:58,763 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:27:58,832 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:27:58,882 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:27:58,926 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:27:58,963 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:27:58,973 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:27:58,982 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:27:58,993 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-26 00:28:35,588 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '13866#(and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (<= 4 |ULTIMATE.start_l3_insert_~list#1.offset|) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |~#list~0.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l2_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |ULTIMATE.start_l4_insert_#in~list#1.base|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (<= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l0_insert_~item~4#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|) |ULTIMATE.start_l4_insert_~item~0#1.offset|) (<= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= (select |#valid| |ULTIMATE.start_l4_insert_~list#1.base|) 1) (= |ULTIMATE.start_l4_insert_~item~0#1.base| (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~list#1.base|) |ULTIMATE.start_l4_insert_~list#1.offset|)) (<= 0 |ULTIMATE.start_l0_insert_#in~list#1.offset|) (<= (+ 4 |ULTIMATE.start_l4_insert_~list#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~list#1.base|)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l1_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= |ULTIMATE.start_l4_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_#in~list#1.base| |~#list~0.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (<= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= |ULTIMATE.start_l0_insert_~list#1.base| |ULTIMATE.start_l0_insert_#in~list#1.base|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (<= 4 |ULTIMATE.start_l1_insert_~list#1.offset|) (<= 3 |ULTIMATE.start_l0_insert_~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (< (select |#length| |ULTIMATE.start_l3_insert_~list#1.base|) (+ |ULTIMATE.start_l3_insert_~list#1.offset| 4)) (= |ULTIMATE.start_l0_insert_~list#1.offset| |ULTIMATE.start_l0_insert_#in~list#1.offset|) (= (+ |ULTIMATE.start_l0_insert_~item~4#1.offset| 4) |ULTIMATE.start_l1_insert_#in~list#1.offset|) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| |ULTIMATE.start_l2_insert_#in~list#1.offset|) (= |#NULL.offset| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= |ULTIMATE.start_l4_insert_#in~list#1.offset| 0) (<= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= (+ |ULTIMATE.start_l2_insert_~item~2#1.offset| 4) |ULTIMATE.start_l3_insert_#in~list#1.offset|) (<= 0 |ULTIMATE.start_l4_insert_#in~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l3_insert_#in~list#1.base|) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |ULTIMATE.start_l2_insert_#in~list#1.base|) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0) (< 0 |#StackHeapBarrier|) (= |#NULL.base| 0))' at error location [2022-11-26 00:28:35,588 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-26 00:28:35,588 INFO L184 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2022-11-26 00:28:35,588 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [32] total 32 [2022-11-26 00:28:35,588 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [272908488] [2022-11-26 00:28:35,588 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2022-11-26 00:28:35,589 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 33 states [2022-11-26 00:28:35,589 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-26 00:28:35,589 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 33 interpolants. [2022-11-26 00:28:35,590 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=297, Invalid=3364, Unknown=3, NotChecked=118, Total=3782 [2022-11-26 00:28:35,590 INFO L87 Difference]: Start difference. First operand 253 states and 292 transitions. Second operand has 33 states, 27 states have (on average 1.9259259259259258) internal successors, (52), 29 states have internal predecessors, (52), 4 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 5 states have call predecessors, (6), 4 states have call successors, (6) [2022-11-26 00:28:37,633 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:28:41,769 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:28:45,954 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:28:48,134 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:28:50,315 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:28:52,488 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:28:56,688 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:29:00,889 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:29:03,071 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:29:17,040 WARN L233 SmtUtils]: Spent 8.08s on a formula simplification. DAG size of input: 41 DAG size of output: 33 (called from [L 361] de.uni_freiburg.informatik.ultimate.lib.modelcheckerutils.smt.predicates.PredicateUnifier.getOrConstructPredicate) [2022-11-26 00:29:43,832 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2022-11-26 00:29:45,901 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-26 00:29:45,901 INFO L93 Difference]: Finished difference Result 282 states and 322 transitions. [2022-11-26 00:29:45,902 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 26 states. [2022-11-26 00:29:45,902 INFO L78 Accepts]: Start accepts. Automaton has has 33 states, 27 states have (on average 1.9259259259259258) internal successors, (52), 29 states have internal predecessors, (52), 4 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 5 states have call predecessors, (6), 4 states have call successors, (6) Word has length 115 [2022-11-26 00:29:45,902 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-26 00:29:45,904 INFO L225 Difference]: With dead ends: 282 [2022-11-26 00:29:45,904 INFO L226 Difference]: Without dead ends: 282 [2022-11-26 00:29:45,905 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 258 GetRequests, 170 SyntacticMatches, 8 SemanticMatches, 80 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 1837 ImplicationChecksByTransitivity, 89.7s TimeCoverageRelationStatistics Valid=471, Invalid=6005, Unknown=8, NotChecked=158, Total=6642 [2022-11-26 00:29:45,905 INFO L413 NwaCegarLoop]: 89 mSDtfsCounter, 385 mSDsluCounter, 1496 mSDsCounter, 0 mSdLazyCounter, 2384 mSolverCounterSat, 35 mSolverCounterUnsat, 10 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 28.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 385 SdHoareTripleChecker+Valid, 1585 SdHoareTripleChecker+Invalid, 2600 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 35 IncrementalHoareTripleChecker+Valid, 2384 IncrementalHoareTripleChecker+Invalid, 10 IncrementalHoareTripleChecker+Unknown, 171 IncrementalHoareTripleChecker+Unchecked, 28.3s IncrementalHoareTripleChecker+Time [2022-11-26 00:29:45,905 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [385 Valid, 1585 Invalid, 2600 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [35 Valid, 2384 Invalid, 10 Unknown, 171 Unchecked, 28.3s Time] [2022-11-26 00:29:45,906 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 282 states. [2022-11-26 00:29:45,911 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 282 to 250. [2022-11-26 00:29:45,911 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 250 states, 175 states have (on average 1.497142857142857) internal successors, (262), 233 states have internal predecessors, (262), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-26 00:29:45,913 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 250 states to 250 states and 286 transitions. [2022-11-26 00:29:45,913 INFO L78 Accepts]: Start accepts. Automaton has 250 states and 286 transitions. Word has length 115 [2022-11-26 00:29:45,913 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-26 00:29:45,914 INFO L495 AbstractCegarLoop]: Abstraction has 250 states and 286 transitions. [2022-11-26 00:29:45,914 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 33 states, 27 states have (on average 1.9259259259259258) internal successors, (52), 29 states have internal predecessors, (52), 4 states have call successors, (6), 2 states have call predecessors, (6), 4 states have return successors, (6), 5 states have call predecessors, (6), 4 states have call successors, (6) [2022-11-26 00:29:45,914 INFO L276 IsEmpty]: Start isEmpty. Operand 250 states and 286 transitions. [2022-11-26 00:29:45,915 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 117 [2022-11-26 00:29:45,915 INFO L187 NwaCegarLoop]: Found error trace [2022-11-26 00:29:45,915 INFO L195 NwaCegarLoop]: trace histogram [62, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-26 00:29:45,966 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (18)] Forceful destruction successful, exit code 0 [2022-11-26 00:29:46,136 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 18 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable17 [2022-11-26 00:29:46,136 INFO L420 AbstractCegarLoop]: === Iteration 19 === Targeting ULTIMATE.startErr11REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2022-11-26 00:29:46,137 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-26 00:29:46,137 INFO L85 PathProgramCache]: Analyzing trace with hash 649060632, now seen corresponding path program 1 times [2022-11-26 00:29:46,137 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-26 00:29:46,137 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [220724700] [2022-11-26 00:29:46,137 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:29:46,137 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-26 00:29:46,207 ERROR L245 FreeRefinementEngine]: Caught known exception: Unsupported non-linear arithmetic [2022-11-26 00:29:46,207 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1782212097] [2022-11-26 00:29:46,207 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-26 00:29:46,207 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-26 00:29:46,208 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 [2022-11-26 00:29:46,209 INFO L229 MonitoredProcess]: Starting monitored process 19 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-26 00:29:46,213 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_41561f04-21cb-47ca-a016-ae847dcfebd6/bin/utaipan-ByfvJB40ur/z3 -smt2 -in SMTLIB2_COMPLIANT=true (19)] Waiting until timeout for monitored process [2022-11-26 00:29:50,520 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-26 00:29:50,529 INFO L263 TraceCheckSpWp]: Trace formula consists of 1525 conjuncts, 87 conjunts are in the unsatisfiable core [2022-11-26 00:29:50,533 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-26 00:29:50,594 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2022-11-26 00:29:57,330 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_6798 Int) (v_ArrVal_6797 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6797) |c_#length|) (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6798)) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-26 00:29:57,493 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:29:57,494 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:29:57,569 INFO L321 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2022-11-26 00:29:57,569 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2022-11-26 00:29:57,768 WARN L859 $PredicateComparison]: unable to prove that (exists ((v_ArrVal_6799 Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| v_ArrVal_6799) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2022-11-26 00:29:57,909 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:29:57,911 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 18 [2022-11-26 00:29:57,919 INFO L321 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2022-11-26 00:29:57,919 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2022-11-26 00:29:58,904 INFO L134 CoverageAnalysis]: Checked inductivity of 2338 backedges. 862 proven. 253 refuted. 0 times theorem prover too weak. 495 trivial. 728 not checked. [2022-11-26 00:29:58,905 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-26 00:30:03,264 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-26 00:30:03,264 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [220724700] [2022-11-26 00:30:03,264 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2022-11-26 00:30:03,264 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1782212097] [2022-11-26 00:30:03,264 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1782212097] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-26 00:30:03,264 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1874041638] [2022-11-26 00:30:03,269 INFO L159 IcfgInterpreter]: Started Sifa with 30 locations of interest [2022-11-26 00:30:03,269 INFO L166 IcfgInterpreter]: Building call graph [2022-11-26 00:30:03,269 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-26 00:30:03,269 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-26 00:30:03,269 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-26 00:30:03,300 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:30:03,307 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:30:03,383 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:30:03,424 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:30:03,464 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:30:03,497 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 197 treesize of output 196 [2022-11-26 00:30:03,510 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:30:03,522 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 195 treesize of output 194 [2022-11-26 00:30:03,562 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:30:03,568 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:30:03,575 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:30:03,595 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:30:03,600 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:30:03,629 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:30:03,636 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 7 treesize of output 3 [2022-11-26 00:30:04,351 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:30:04,375 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:30:04,389 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 19 treesize of output 1 [2022-11-26 00:30:04,438 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:30:04,438 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:30:04,452 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:30:04,452 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 25 treesize of output 27 [2022-11-26 00:30:04,482 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:30:04,501 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:30:04,501 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:30:04,516 INFO L321 Elim1Store]: treesize reduction 17, result has 29.2 percent of original size [2022-11-26 00:30:04,516 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 2 select indices, 2 select index equivalence classes, 2 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 26 treesize of output 28 [2022-11-26 00:30:04,583 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:30:04,584 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:30:04,585 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:30:04,602 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:30:04,602 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 32 treesize of output 34 [2022-11-26 00:30:04,638 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:30:04,640 INFO L190 IndexEqualityManager]: detected not equals via solver [2022-11-26 00:30:04,640 INFO L173 IndexEqualityManager]: detected equality via solver [2022-11-26 00:30:04,657 INFO L321 Elim1Store]: treesize reduction 21, result has 34.4 percent of original size [2022-11-26 00:30:04,657 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 3 select indices, 3 select index equivalence classes, 2 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 33 treesize of output 35 [2022-11-26 00:30:04,676 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 15 treesize of output 1 [2022-11-26 00:30:04,807 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 80 for LOIs [2022-11-26 00:30:04,839 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 12 treesize of output 9 [2022-11-26 00:30:04,857 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2022-11-26 00:30:04,954 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2022-11-26 00:30:05,000 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:30:05,047 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 11 treesize of output 7 [2022-11-26 00:30:05,085 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:30:05,094 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 10 [2022-11-26 00:30:05,104 INFO L350 Elim1Store]: Elim1 eliminated variable of array dimension 2, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 12 [2022-11-26 00:30:05,114 INFO L180 IcfgInterpreter]: Interpretation finished